Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/6HGvJhPTSHKhj-Ke01VnWAwMa34.roa
File: 6HGvJhPTSHKhj-Ke01VnWAwMa34.roa (raw, json)
Hash identifier: UgmXZJH+EdQ8BT9OxJ4wV2fJtNSoJfBSdSHRTC9/adA=
Subject key identifier: E8:71:AF:26:13:D3:48:72:A1:8F:E2:9E:D3:55:67:58:0C:0C:6B:7E
Certificate issuer: /CN=fb79c26f31575345159c840ed278a878a9256615
Certificate serial: 0190DEAF759177E698D7A4EFA132F3FAA5EC
Authority key identifier: FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/6HGvJhPTSHKhj-Ke01VnWAwMa34.roa
Signing time: Tue 23 Jul 2024 08:22:39 +0000
ROA not before: Tue 23 Jul 2024 08:22:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61295
IP address blocks: 91.214.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:de:af:75:91:77:e6:98:d7:a4:ef:a1:32:f3:fa:a5:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb79c26f31575345159c840ed278a878a9256615
Validity
Not Before: Jul 23 08:22:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e871af2613d34872a18fe29ed35567580c0c6b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b1:23:5f:93:7f:16:54:37:7f:1e:e2:b8:9b:
57:cb:01:41:fa:f6:2d:03:55:aa:40:9f:57:95:1d:
cf:04:91:09:a1:26:de:7a:cf:da:f7:d3:fd:a0:a8:
7e:87:c8:84:88:b4:d1:ea:71:d3:eb:f8:93:b9:9e:
46:de:0a:b7:46:bf:35:09:ba:d1:54:db:a9:8c:17:
15:6d:15:6b:f2:a1:e6:eb:ae:78:36:41:8d:c3:0d:
23:fa:58:57:31:57:10:f9:54:b2:48:6c:3b:05:4b:
41:12:fe:32:0c:bc:a5:a4:0d:ce:76:6e:e5:40:23:
9b:ba:0c:b7:1f:ff:39:cc:98:69:20:33:d6:85:ad:
3a:58:27:68:6f:20:1b:d4:c9:43:9b:b5:b7:a4:1e:
63:dd:4d:5e:2e:63:2c:54:58:07:e6:15:e9:c4:d0:
2b:e1:65:2d:ee:fa:97:d0:f2:bf:03:10:ec:68:87:
27:81:c1:35:ab:fd:df:08:bd:6e:d2:b0:3e:70:ed:
47:83:da:b5:b8:59:ca:3e:97:21:d2:f8:6d:e8:6a:
fa:e6:2c:40:86:36:46:bb:e1:db:1a:13:33:3e:6f:
f8:cd:2a:ed:23:a0:41:3a:ac:e6:a7:b0:81:40:3d:
33:c6:f1:d9:27:32:23:04:ea:57:ad:6f:ab:2f:04:
61:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:71:AF:26:13:D3:48:72:A1:8F:E2:9E:D3:55:67:58:0C:0C:6B:7E
X509v3 Authority Key Identifier:
keyid:FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/6HGvJhPTSHKhj-Ke01VnWAwMa34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.46.0/24
Signature Algorithm: sha256WithRSAEncryption
73:1b:85:6d:4d:44:d4:63:d8:f5:0b:de:20:01:89:ab:0d:47:
ff:2f:91:8b:0e:0d:bb:c0:44:f3:f0:c0:2b:47:49:77:79:da:
b1:7b:f2:8d:66:e4:a1:29:6e:a9:20:75:99:5c:00:40:ec:66:
0c:65:95:b9:eb:71:b1:ab:aa:44:5c:33:52:03:ed:92:8f:95:
b1:9a:1d:ac:dc:11:b8:01:17:25:1f:17:88:28:88:7a:9e:49:
6f:e3:a2:b9:1a:06:f3:71:fa:f4:b9:cf:54:a6:a7:22:2f:f5:
40:91:70:a9:56:97:18:21:b3:83:32:06:8d:fa:d2:b2:92:64:
9a:ee:a8:2a:9c:3a:6b:2a:5b:93:ff:e0:98:a2:35:03:2b:f1:
62:d4:78:d6:89:a5:23:1a:e3:8c:86:97:46:c8:c1:82:68:71:
a6:73:7a:e3:c9:40:28:8b:b1:9d:07:b9:4e:04:0a:07:b7:8c:
9c:1e:cb:5c:ee:d7:40:99:a6:33:84:a5:0c:5d:d9:37:6f:93:
e9:73:a5:c9:14:06:79:b6:ad:f2:b8:3d:8e:e0:ca:0f:72:78:
2f:12:ce:a7:cd:b2:f6:18:34:5f:1c:5a:eb:9f:28:9e:9b:40:
f2:8b:a3:3c:6d:5c:e9:38:24:cb:2c:01:47:5f:93:a4:db:34:
18:87:01:08
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZDer3WRd+aY16TvoTLz+qXsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiNzljMjZmMzE1NzUzNDUxNTljODQwZWQyNzhhODc4YTky
NTY2MTUwHhcNMjQwNzIzMDgyMjM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODcxYWYyNjEzZDM0ODcyYTE4ZmUyOWVkMzU1Njc1ODBjMGM2YjdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7EjX5N/FlQ3fx7iuJtXywFB+vYt
A1WqQJ9XlR3PBJEJoSbees/a99P9oKh+h8iEiLTR6nHT6/iTuZ5G3gq3Rr81CbrR
VNupjBcVbRVr8qHm6654NkGNww0j+lhXMVcQ+VSySGw7BUtBEv4yDLylpA3Odm7l
QCObugy3H/85zJhpIDPWha06WCdobyAb1MlDm7W3pB5j3U1eLmMsVFgH5hXpxNAr
4WUt7vqX0PK/AxDsaIcngcE1q/3fCL1u0rA+cO1Hg9q1uFnKPpch0vht6Gr65ixA
hjZGu+HbGhMzPm/4zSrtI6BBOqzmp7CBQD0zxvHZJzIjBOpXrW+rLwRhTwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFOhxryYT00hyoY/intNVZ1gMDGt+MB8GA1UdIwQY
MBaAFPt5wm8xV1NFFZyEDtJ4qHipJWYVMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS0zbkNiekZYVTBVVm5JUU8wbmlvZUtrbFpoVS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAvMTJkNjkxLTM3YTQtNGIxNS1hN2Vh
LWJkMzdkYTBlNDQ3Yy8xLzZIR3ZKaFBUU0hLaGotS2UwMVZuV0F3TWEzNC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODAvMTJkNjkxLTM3YTQtNGIxNS1hN2VhLWJkMzdkYTBlNDQ3
Yy8xLzEtM25DYnpGWFUwVVZuSVFPMG5pb2VLa2xaaFUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABb1i4w
DQYJKoZIhvcNAQELBQADggEBAHMbhW1NRNRj2PUL3iABiasNR/8vkYsODbvARPPw
wCtHSXd52rF78o1m5KEpbqkgdZlcAEDsZgxllbnrcbGrqkRcM1ID7ZKPlbGaHazc
EbgBFyUfF4goiHqeSW/jorkaBvNx+vS5z1SmpyIv9UCRcKlWlxghs4MyBo360rKS
ZJruqCqcOmsqW5P/4JiiNQMr8WLUeNaJpSMa44yGl0bIwYJocaZzeuPJQCiLsZ0H
uU4ECge3jJwey1zu10CZpjOEpQxd2Tdvk+lzpckUBnm2rfK4PY7gyg9yeC8SzqfN
svYYNF8cWuufKJ6bQPKLozxtXOk4JMssAUdfk6TbNBiHAQg=
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:09:12 2024 by rpki-client on console-ams.rpki-client.org