Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/vAW17GDaUkTUMZuOdGo8sHl_ETY.roa
File: vAW17GDaUkTUMZuOdGo8sHl_ETY.roa (raw, json)
Hash identifier: GrIhvYqH2pNqXS9qR0GcsVok7mJKdJvSyFUUcQBmyPc=
Subject key identifier: BC:05:B5:EC:60:DA:52:44:D4:31:9B:8E:74:6A:3C:B0:79:7F:11:36
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 018CC50108001ABE99B5130A166E67FEC574
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/vAW17GDaUkTUMZuOdGo8sHl_ETY.roa
Signing time: Mon 01 Jan 2024 12:30:28 +0000
ROA not before: Mon 01 Jan 2024 12:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21075
IP address blocks: 193.109.80.0/24 maxlen: 24
46.164.138.0/24 maxlen: 24
93.183.236.0/24 maxlen: 24
93.183.238.0/24 maxlen: 24
193.238.96.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.mft
rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:08:00:1a:be:99:b5:13:0a:16:6e:67:fe:c5:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 12:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc05b5ec60da5244d4319b8e746a3cb0797f1136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f9:98:81:16:a7:64:71:b4:16:3c:33:8c:98:
b9:37:80:99:5d:07:f6:c2:cf:45:08:4d:8b:6c:13:
d8:23:2f:cd:5c:ca:81:04:30:36:31:13:00:30:0a:
1c:d1:57:68:ef:9b:9d:9a:df:09:a9:5a:ec:09:63:
ff:b0:ce:94:4d:ee:f5:0e:06:fc:b4:d8:86:5e:8e:
57:88:24:ef:24:52:6d:17:3e:3e:1a:7c:90:a8:57:
06:be:c3:82:96:79:11:cd:54:a3:5d:a8:25:d4:24:
71:d4:1e:66:f3:97:b1:90:97:1f:dc:62:d1:f0:9c:
48:40:cc:9d:a4:18:bd:65:1f:c4:3b:19:bf:8a:e2:
38:f3:6f:e2:77:a1:ff:7d:b2:f6:89:9c:79:02:96:
e6:a8:86:dd:51:3a:97:19:d3:03:b4:93:ae:ae:8b:
81:fe:39:92:89:b1:dc:e5:29:ca:43:dc:16:93:9c:
41:56:5c:a7:48:d3:3e:2c:19:10:62:b8:ce:40:d8:
96:3b:a2:b1:e6:6c:da:e5:1a:83:15:fd:24:c9:1d:
5a:84:f6:f0:9f:69:09:e4:19:66:a0:90:ba:dd:f1:
af:1b:4c:15:dd:23:3e:06:37:9f:e2:1f:a3:02:12:
d9:f0:d3:5e:b2:a9:79:25:ba:57:e7:51:ef:cd:cb:
c4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:05:B5:EC:60:DA:52:44:D4:31:9B:8E:74:6A:3C:B0:79:7F:11:36
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/vAW17GDaUkTUMZuOdGo8sHl_ETY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.164.138.0/24
93.183.236.0/24
93.183.238.0/24
193.109.80.0/24
193.238.96.0/22
Signature Algorithm: sha256WithRSAEncryption
24:7d:b1:a9:a6:6b:78:b9:17:de:39:3b:33:81:b9:03:03:11:
5f:1c:33:8a:9c:20:0b:3a:4d:59:b7:8f:17:e8:9e:ff:3a:2c:
20:d7:ff:11:8e:1a:b5:aa:0c:7e:71:7f:90:cd:7e:6b:e9:f8:
8c:12:91:fe:d0:a7:9a:36:f8:2c:a4:81:49:5d:b7:6e:1f:cf:
ee:8b:83:21:87:b3:28:f0:a4:66:11:22:65:5b:f2:d3:74:3f:
37:b9:1c:9f:91:2d:06:03:ec:da:e1:f6:61:fd:bb:b0:1f:98:
b2:76:fd:2c:d7:02:8f:cf:67:18:49:80:1e:24:17:fd:17:36:
bc:05:6d:f2:32:69:2a:0d:76:92:8d:02:dc:b0:90:34:71:67:
8f:1c:8f:e0:5c:69:a4:af:8b:76:44:db:d3:39:6e:68:6b:3a:
03:57:ed:20:1f:49:4e:b4:f3:81:b8:07:ff:85:c2:89:4f:56:
cd:65:37:a9:39:b4:54:86:a1:3c:cc:e6:aa:bb:22:81:db:c6:
3a:46:72:ae:62:19:a2:3b:2a:69:a8:8b:f4:0f:a3:2e:f0:86:
a8:20:53:ea:3f:b4:35:bc:5f:f2:36:3f:7e:23:39:13:f2:7a:
ec:b5:d3:33:f7:ac:b8:d4:33:a8:26:e8:0d:32:de:38:8e:24:
77:a5:f7:fc
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYzFAQgAGr6ZtRMKFm5n/sV0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYzhkYmU1MjA4M2FkMzM1YzlmMWZkZTYwMTZlYzhiNDky
OTMxNDAwHhcNMjQwMTAxMTIzMDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzA1YjVlYzYwZGE1MjQ0ZDQzMTliOGU3NDZhM2NiMDc5N2YxMTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPmYgRanZHG0FjwzjJi5N4CZXQf2
ws9FCE2LbBPYIy/NXMqBBDA2MRMAMAoc0Vdo75udmt8JqVrsCWP/sM6UTe71Dgb8
tNiGXo5XiCTvJFJtFz4+GnyQqFcGvsOClnkRzVSjXagl1CRx1B5m85exkJcf3GLR
8JxIQMydpBi9ZR/EOxm/iuI482/id6H/fbL2iZx5ApbmqIbdUTqXGdMDtJOurouB
/jmSibHc5SnKQ9wWk5xBVlynSNM+LBkQYrjOQNiWO6Kx5mza5RqDFf0kyR1ahPbw
n2kJ5BlmoJC63fGvG0wV3SM+Bjef4h+jAhLZ8NNesql5JbpX51HvzcvEowIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFLwFtexg2lJE1DGbjnRqPLB5fxE2MB8GA1UdIwQY
MBaAFKvI2+Ugg60zXJ8f3mAW7ItJKTFAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2Qt
MzA1NmFmOWEzMzVlLzEvdkFXMTdHRGFVa1RVTVp1T2RHbzhzSGxfRVRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2QtMzA1NmFmOWEzMzVl
LzEvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALqSKAwQA
XbfsAwQAXbfuAwQAwW1QAwQCwe5gMA0GCSqGSIb3DQEBCwUAA4IBAQAkfbGppmt4
uRfeOTszgbkDAxFfHDOKnCALOk1Zt48X6J7/Oiwg1/8Rjhq1qgx+cX+QzX5r6fiM
EpH+0KeaNvgspIFJXbduH8/ui4Mhh7Mo8KRmESJlW/LTdD83uRyfkS0GA+za4fZh
/buwH5iydv0s1wKPz2cYSYAeJBf9Fza8BW3yMmkqDXaSjQLcsJA0cWePHI/gXGmk
r4t2RNvTOW5oazoDV+0gH0lOtPOBuAf/hcKJT1bNZTepObRUhqE8zOaquyKB28Y6
RnKuYhmiOyppqIv0D6Mu8IaoIFPqP7Q1vF/yNj9+IzkT8nrstdMz96y41DOoJugN
Mt44jiR3pff8
-----END CERTIFICATE-----
Generated at Fri Nov 22 13:49:36 2024 by rpki-client on console-fra.rpki-client.org