Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/CIDnbPy9QTNAe9tykiHEGKEG6Cs.roa
File: CIDnbPy9QTNAe9tykiHEGKEG6Cs.roa (raw, json)
Hash identifier: BduNMg0Fi17B9lctb6qJGai7nuzOhXM5ycK+PeyY/vk=
Subject key identifier: 08:80:E7:6C:FC:BD:41:33:40:7B:DB:72:92:21:C4:18:A1:06:E8:2B
Certificate issuer: /CN=6be39c31be93f56e63bd26d5b1c072dc775319e6
Certificate serial: 0190EF9E1CA464D68C80436F5C382AB33DA2
Authority key identifier: 6B:E3:9C:31:BE:93:F5:6E:63:BD:26:D5:B1:C0:72:DC:77:53:19:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-OcMb6T9W5jvSbVscBy3HdTGeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/CIDnbPy9QTNAe9tykiHEGKEG6Cs.roa
Signing time: Fri 26 Jul 2024 15:17:14 +0000
ROA not before: Fri 26 Jul 2024 15:17:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51597
IP address blocks: 91.219.80.0/22 maxlen: 22
91.219.80.0/24 maxlen: 24
91.219.81.0/24 maxlen: 24
91.219.82.0/24 maxlen: 24
91.219.83.0/24 maxlen: 24
176.116.192.0/21 maxlen: 21
176.116.192.0/24 maxlen: 24
176.116.193.0/24 maxlen: 24
176.116.194.0/24 maxlen: 24
176.116.195.0/24 maxlen: 24
176.116.196.0/24 maxlen: 24
176.116.197.0/24 maxlen: 24
2001:678:318::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-OcMb6T9W5jvSbVscBy3HdTGeY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 15:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:9e:1c:a4:64:d6:8c:80:43:6f:5c:38:2a:b3:3d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6be39c31be93f56e63bd26d5b1c072dc775319e6
Validity
Not Before: Jul 26 15:17:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0880e76cfcbd4133407bdb729221c418a106e82b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:39:6c:0d:01:50:50:f1:43:f0:da:f2:03:4e:
a3:dc:4a:2b:7c:c9:8f:7a:65:08:07:32:04:42:88:
cd:f8:fa:e6:04:52:0b:ec:ce:a6:50:b8:6d:78:af:
55:5c:05:20:3f:0b:9b:79:53:2e:8d:64:ef:38:84:
92:1f:24:17:18:23:4a:b4:d8:4c:57:e6:85:de:33:
b1:a7:f1:21:18:3a:e8:d7:51:ed:18:79:df:7b:97:
d7:d3:41:c7:85:02:c7:2a:b5:ba:22:7c:40:23:82:
e3:28:da:2a:53:11:14:56:ac:66:96:35:63:f5:34:
99:c7:d5:2e:22:57:1b:25:f1:14:c7:3f:dd:c5:15:
e5:bd:4d:82:97:83:d2:88:19:ab:57:a5:50:f6:53:
fb:32:75:db:aa:a4:a3:7c:24:29:1b:2a:14:6f:b9:
37:75:8e:5f:89:3d:d0:e1:c6:5b:62:e6:ef:8f:49:
fd:b5:9d:2f:f3:b6:ba:4b:dd:0f:51:69:c4:38:e1:
79:29:2e:08:ae:86:e0:be:58:75:e2:e9:3e:ff:40:
23:71:f9:3c:10:02:36:b1:11:85:72:5d:1f:7d:f0:
e9:25:ad:36:34:db:7c:af:a1:ce:7a:be:73:28:f0:
b7:36:b9:f8:9d:ae:9b:23:9a:c0:5e:42:ba:37:11:
e7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:80:E7:6C:FC:BD:41:33:40:7B:DB:72:92:21:C4:18:A1:06:E8:2B
X509v3 Authority Key Identifier:
keyid:6B:E3:9C:31:BE:93:F5:6E:63:BD:26:D5:B1:C0:72:DC:77:53:19:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-OcMb6T9W5jvSbVscBy3HdTGeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/CIDnbPy9QTNAe9tykiHEGKEG6Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.80.0/22
176.116.192.0/21
IPv6:
2001:678:318::/48
Signature Algorithm: sha256WithRSAEncryption
8c:02:24:2d:8a:07:a9:1c:fa:0d:66:31:f2:2a:0c:6f:0a:51:
46:e6:0f:4e:c2:8e:87:3c:83:a6:a5:55:ed:8a:5b:d1:b1:5d:
00:91:03:d8:d8:6f:3a:13:50:2e:d5:7e:87:57:07:e0:b1:61:
fa:44:97:dc:33:ca:97:84:13:b2:4b:65:ad:18:e8:01:27:05:
be:5a:e4:34:31:a4:13:81:42:f2:d8:7c:a6:74:93:7d:63:84:
fb:d7:80:ff:b2:d1:35:e2:af:24:3a:af:46:65:06:07:ab:bb:
b0:17:08:41:ec:51:19:7c:a2:60:c3:a4:3e:4e:6f:97:57:c9:
88:8b:e2:74:f2:56:15:c0:04:0c:b3:18:33:5a:0b:ba:4e:0a:
7b:34:6c:d2:f2:0a:47:a5:50:60:ca:1a:ac:04:38:97:b3:2d:
90:0a:34:d1:c1:fa:cb:89:a5:91:cc:4e:8c:97:67:df:3a:90:
28:16:91:f5:eb:6b:1d:9d:8f:54:76:3e:dc:5e:b5:19:c8:0d:
46:b9:6b:63:9a:0d:65:cf:51:5c:e5:ce:d9:e6:30:df:4e:38:
97:05:c8:58:ab:88:d5:27:95:84:6a:3a:bd:7f:01:8c:6d:10:
f2:ef:a4:33:98:41:d7:1c:76:b4:63:28:3d:2c:ca:fa:bb:15:
0f:fa:69:fe
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISAZDvnhykZNaMgENvXDgqsz2iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZTM5YzMxYmU5M2Y1NmU2M2JkMjZkNWIxYzA3MmRjNzc1
MzE5ZTYwHhcNMjQwNzI2MTUxNzE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODgwZTc2Y2ZjYmQ0MTMzNDA3YmRiNzI5MjIxYzQxOGExMDZlODJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4DlsDQFQUPFD8NryA06j3EorfMmP
emUIBzIEQojN+PrmBFIL7M6mULhteK9VXAUgPwubeVMujWTvOISSHyQXGCNKtNhM
V+aF3jOxp/EhGDro11HtGHnfe5fX00HHhQLHKrW6InxAI4LjKNoqUxEUVqxmljVj
9TSZx9UuIlcbJfEUxz/dxRXlvU2Cl4PSiBmrV6VQ9lP7MnXbqqSjfCQpGyoUb7k3
dY5fiT3Q4cZbYubvj0n9tZ0v87a6S90PUWnEOOF5KS4Irobgvlh14uk+/0Ajcfk8
EAI2sRGFcl0fffDpJa02NNt8r6HOer5zKPC3Nrn4na6bI5rAXkK6NxHn2QIDAQAB
o4ICIDCCAhwwHQYDVR0OBBYEFAiA52z8vUEzQHvbcpIhxBihBugrMB8GA1UdIwQY
MBaAFGvjnDG+k/VuY70m1bHActx3UxnmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYS1PY01iNlQ5VzVqdlNiVnNjQnkzSGRUR2VZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wM2M5ZDMtMGUyNS00Y2M3LTk2YTMt
MTE3YmY0Mjk0MWNhLzEvQ0lEbmJQeTlRVE5BZTl0eWtpSEVHS0VHNkNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8wM2M5ZDMtMGUyNS00Y2M3LTk2YTMtMTE3YmY0Mjk0MWNh
LzEvYS1PY01iNlQ5VzVqdlNiVnNjQnkzSGRUR2VZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCW9tQAwQD
sHTAMA8EAgACMAkDBwAgAQZ4AxgwDQYJKoZIhvcNAQELBQADggEBAIwCJC2KB6kc
+g1mMfIqDG8KUUbmD07Cjoc8g6alVe2KW9GxXQCRA9jYbzoTUC7VfodXB+CxYfpE
l9wzypeEE7JLZa0Y6AEnBb5a5DQxpBOBQvLYfKZ0k31jhPvXgP+y0TXiryQ6r0Zl
Bgeru7AXCEHsURl8omDDpD5Ob5dXyYiL4nTyVhXABAyzGDNaC7pOCns0bNLyCkel
UGDKGqwEOJezLZAKNNHB+suJpZHMToyXZ986kCgWkfXrax2dj1R2PtxetRnIDUa5
a2OaDWXPUVzlztnmMN9OOJcFyFiriNUnlYRqOr1/AYxtEPLvpDOYQdccdrRjKD0s
yvq7FQ/6af4=
-----END CERTIFICATE-----
Generated at Wed Sep 18 23:27:09 2024 by rpki-client on console-ams.rpki-client.org