Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/n4VBQQv_gdS4dqFQ5X-txG6lUBI.roa
File: n4VBQQv_gdS4dqFQ5X-txG6lUBI.roa (raw, json)
Hash identifier: UIGtIl4FIPZrFXAWgZHyN7SQhr0BJUp4kV9UC4avs7M=
Subject key identifier: 9F:85:41:41:0B:FF:81:D4:B8:76:A1:50:E5:7F:AD:C4:6E:A5:50:12
Certificate issuer: /CN=6dbd51576b4a93460a465af35e6bf550f5548894
Certificate serial: 018CC8DED8CEF21A51BE2D7AEF893D070561
Authority key identifier: 6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/n4VBQQv_gdS4dqFQ5X-txG6lUBI.roa
Signing time: Tue 02 Jan 2024 06:31:36 +0000
ROA not before: Tue 02 Jan 2024 06:31:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35815
IP address blocks: 31.25.24.0/21 maxlen: 21
109.198.96.0/19 maxlen: 19
109.198.104.0/24 maxlen: 24
45.9.212.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:d8:ce:f2:1a:51:be:2d:7a:ef:89:3d:07:05:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbd51576b4a93460a465af35e6bf550f5548894
Validity
Not Before: Jan 2 06:31:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f8541410bff81d4b876a150e57fadc46ea55012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6e:e9:8b:23:3b:be:51:d9:21:cb:e9:b5:34:
64:c9:9c:11:21:e7:74:11:71:3f:1c:b2:5c:1f:1d:
60:65:ab:b1:88:c1:02:f9:3e:56:eb:b5:78:71:66:
96:a2:4f:9c:d2:4c:be:73:cc:5c:b6:4f:d8:19:63:
72:2b:29:30:72:7a:bf:1b:54:a0:a6:b6:55:77:7a:
0c:8b:80:46:70:f2:26:f7:2e:2b:2b:1d:92:52:14:
6c:e9:7e:84:d1:5a:b2:93:09:ad:e7:7f:a8:26:44:
04:f2:2d:71:bd:39:00:fa:46:39:17:74:2c:31:1c:
97:45:4f:d0:ff:ec:9d:15:2b:91:93:74:37:06:be:
0f:fb:76:54:89:12:68:9e:7a:1d:8b:12:9f:8a:d7:
29:9e:18:ec:4b:ef:73:0d:2a:c7:89:08:e1:1e:da:
04:a0:b6:45:79:5d:ec:37:29:da:70:7a:ea:0b:98:
0d:fd:ee:9e:ef:96:11:4d:7c:ca:ae:28:df:9d:57:
b3:7e:df:16:0d:05:16:6c:8a:21:51:8d:07:27:e8:
2b:7a:08:b8:f1:71:0c:45:17:8c:b6:c5:06:ba:e7:
57:a5:87:67:e3:cb:24:32:be:27:2c:4f:84:fd:3c:
40:1d:04:74:dc:92:86:a1:52:84:2c:e5:34:77:68:
a5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:85:41:41:0B:FF:81:D4:B8:76:A1:50:E5:7F:AD:C4:6E:A5:50:12
X509v3 Authority Key Identifier:
keyid:6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/n4VBQQv_gdS4dqFQ5X-txG6lUBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.24.0/21
45.9.212.0/22
109.198.96.0/19
Signature Algorithm: sha256WithRSAEncryption
54:a7:c1:29:42:23:18:a7:f5:a6:44:3a:5f:45:35:19:b2:c7:
b8:6c:68:ec:06:f8:cd:b1:df:67:c7:fb:f6:6f:db:19:da:63:
85:6e:9c:56:c4:db:b6:e9:c7:a8:47:8f:6e:34:07:54:67:d4:
79:57:41:9f:21:b4:27:2a:2b:e2:b1:ac:b4:9b:57:6e:b8:bf:
f2:91:5f:a6:e4:77:67:5e:b0:ba:60:25:ee:29:e3:5f:6a:40:
82:12:b3:1c:5e:64:20:0a:1a:bf:f7:7e:ec:ea:99:8e:58:2c:
0d:0a:62:7f:bd:46:78:8f:4e:32:25:15:5a:17:2d:90:01:db:
1a:18:86:b0:bf:c7:f0:58:52:5c:cf:23:f8:04:83:09:58:6a:
13:2a:97:e2:a1:3a:50:0c:53:12:7d:e1:15:48:1f:19:36:0c:
41:55:2d:35:41:e4:e0:02:5f:04:a2:ff:5b:e1:c8:75:2a:55:
41:86:42:04:48:d5:a9:30:8f:5a:82:a9:c3:69:5a:e1:82:4c:
25:b2:e7:f2:03:5f:b1:d0:45:9c:dc:36:bf:c5:40:ed:fd:0c:
8a:a5:16:d5:7f:b9:62:ec:89:78:ff:97:58:4b:08:61:50:02:
90:fc:72:0e:55:95:77:0e:d4:d7:61:65:7f:ba:9b:37:18:8e:
45:ea:9d:15
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzI3tjO8hpRvi1674k9BwVhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkYmQ1MTU3NmI0YTkzNDYwYTQ2NWFmMzVlNmJmNTUwZjU1
NDg4OTQwHhcNMjQwMTAyMDYzMTM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Zjg1NDE0MTBiZmY4MWQ0Yjg3NmExNTBlNTdmYWRjNDZlYTU1MDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlW7piyM7vlHZIcvptTRkyZwRIed0
EXE/HLJcHx1gZauxiMEC+T5W67V4cWaWok+c0ky+c8xctk/YGWNyKykwcnq/G1Sg
prZVd3oMi4BGcPIm9y4rKx2SUhRs6X6E0Vqykwmt53+oJkQE8i1xvTkA+kY5F3Qs
MRyXRU/Q/+ydFSuRk3Q3Br4P+3ZUiRJonnodixKfitcpnhjsS+9zDSrHiQjhHtoE
oLZFeV3sNynacHrqC5gN/e6e75YRTXzKrijfnVezft8WDQUWbIohUY0HJ+gregi4
8XEMRReMtsUGuudXpYdn48skMr4nLE+E/TxAHQR03JKGoVKELOU0d2ilRwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFJ+FQUEL/4HUuHahUOV/rcRupVASMB8GA1UdIwQY
MBaAFG29UVdrSpNGCkZa815r9VD1VIiUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmIxUlYydEtrMFlLUmxyelhtdjFVUFZVaUpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS84ZmY1MzctNzFlMC00MDNiLTk3OWUt
MWVmN2VmMTdmYTQzLzEvbjRWQlFRdl9nZFM0ZHFGUTVYLXR4RzZsVUJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS84ZmY1MzctNzFlMC00MDNiLTk3OWUtMWVmN2VmMTdmYTQz
LzEvYmIxUlYydEtrMFlLUmxyelhtdjFVUFZVaUpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDHxkYAwQC
LQnUAwQFbcZgMA0GCSqGSIb3DQEBCwUAA4IBAQBUp8EpQiMYp/WmRDpfRTUZsse4
bGjsBvjNsd9nx/v2b9sZ2mOFbpxWxNu26ceoR49uNAdUZ9R5V0GfIbQnKivisay0
m1duuL/ykV+m5HdnXrC6YCXuKeNfakCCErMcXmQgChq/937s6pmOWCwNCmJ/vUZ4
j04yJRVaFy2QAdsaGIawv8fwWFJczyP4BIMJWGoTKpfioTpQDFMSfeEVSB8ZNgxB
VS01QeTgAl8Eov9b4ch1KlVBhkIESNWpMI9agqnDaVrhgkwlsufyA1+x0EWc3Da/
xUDt/QyKpRbVf7li7Il4/5dYSwhhUAKQ/HIOVZV3DtTXYWV/ups3GI5F6p0V
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:02:06 2024 by rpki-client on console-fra.rpki-client.org