Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/2Ux2-sFMGqNkq9YisOui_zRiQXw.roa
File: 2Ux2-sFMGqNkq9YisOui_zRiQXw.roa (raw, json)
Hash identifier: KNpS3h73/l3mdTU4hV8Hw6XcAGf+fKEqpJulN9z3NHo=
Subject key identifier: D9:4C:76:FA:C1:4C:1A:A3:64:AB:D6:22:B0:EB:A2:FF:34:62:41:7C
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0192C47D46462106B8931F0867C1E8E32DD7
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/2Ux2-sFMGqNkq9YisOui_zRiQXw.roa
Signing time: Fri 25 Oct 2024 16:23:17 +0000
ROA not before: Fri 25 Oct 2024 16:23:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 92.50.0.0/24 maxlen: 24
92.50.1.0/24 maxlen: 24
92.50.2.0/24 maxlen: 24
92.50.3.0/24 maxlen: 24
92.50.4.0/24 maxlen: 24
92.50.5.0/24 maxlen: 24
92.50.6.0/24 maxlen: 24
92.50.7.0/24 maxlen: 24
92.50.8.0/24 maxlen: 24
92.50.9.0/24 maxlen: 24
92.50.10.0/24 maxlen: 24
92.50.11.0/24 maxlen: 24
92.50.12.0/24 maxlen: 24
92.50.13.0/24 maxlen: 24
147.136.72.0/22 maxlen: 24
147.136.80.0/22 maxlen: 24
147.136.92.0/22 maxlen: 24
185.171.253.0/24 maxlen: 24
192.95.92.0/24 maxlen: 24
192.95.93.0/24 maxlen: 24
192.95.94.0/24 maxlen: 24
192.95.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 15:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c4:7d:46:46:21:06:b8:93:1f:08:67:c1:e8:e3:2d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Oct 25 16:23:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d94c76fac14c1aa364abd622b0eba2ff3462417c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:95:71:c7:d7:85:a7:66:c6:39:bf:bf:24:cf:
65:18:a0:a1:cf:b4:65:8a:4a:17:60:42:4d:a3:b6:
b2:92:6f:16:b0:3f:48:bb:09:6f:2a:88:6c:63:0d:
8f:3f:38:7f:ac:07:d8:56:aa:cd:99:46:c8:32:ed:
90:ec:6e:35:14:0c:34:82:e0:3c:e8:44:b8:02:0a:
0a:c3:ce:32:bc:b3:94:9d:49:16:18:b5:26:0a:a3:
7d:e8:1e:d9:ce:f0:18:51:98:2f:b2:ca:38:34:55:
ed:65:fe:dd:6b:92:74:a8:10:34:ed:71:8e:e5:2a:
2f:f7:4c:80:0d:e3:96:c1:4e:e7:49:6c:7e:bd:e6:
60:26:a2:ad:3f:44:a0:a3:56:f9:dc:3a:a2:8b:d0:
b7:6d:18:9a:82:e6:41:cf:b0:f1:06:88:d9:d2:61:
8e:be:6e:7d:c3:3e:3e:35:68:f3:0e:c5:1a:28:63:
f6:05:70:95:99:f3:26:e1:c3:01:9c:f9:73:8e:a8:
be:b3:a5:ac:5d:67:56:93:be:31:22:61:16:10:d1:
4a:31:cb:c9:14:66:6f:bf:83:f3:74:be:83:dc:bf:
e6:45:6e:cb:65:72:1b:c6:85:b8:1f:1c:89:bb:81:
4f:b9:1f:91:02:8a:c5:12:51:1f:c8:f8:41:1e:40:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4C:76:FA:C1:4C:1A:A3:64:AB:D6:22:B0:EB:A2:FF:34:62:41:7C
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/2Ux2-sFMGqNkq9YisOui_zRiQXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.50.0.0-92.50.13.255
147.136.72.0/22
147.136.80.0/22
147.136.92.0/22
185.171.253.0/24
192.95.92.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:be:d8:c1:ad:8d:7f:ce:c2:19:76:a7:a9:a2:ae:de:9d:ad:
d2:3b:86:a3:3f:0a:c6:b8:45:e7:a2:ba:53:6c:db:2a:42:ce:
b2:5b:01:76:0b:67:67:eb:d5:27:71:e9:9a:2c:89:1b:44:eb:
ef:bc:08:85:2b:ce:5f:24:a0:51:ef:be:fe:d4:ef:a4:e9:15:
57:de:70:e1:01:2a:5d:40:67:30:74:87:73:94:a9:1f:0e:47:
76:c6:2c:d5:de:af:a8:76:51:e1:d3:3e:5e:99:9b:26:0e:68:
ba:32:d6:62:56:95:dd:bb:59:fb:73:58:ac:c4:d0:ec:c5:b6:
94:92:1d:f2:da:91:10:de:47:29:07:5e:ad:e1:71:63:76:76:
ed:11:89:6e:c9:d5:d1:72:9e:a2:85:31:c7:dd:87:29:2f:92:
3d:47:b8:2b:d2:6c:74:c1:f6:4c:1a:fc:aa:61:24:57:bb:0d:
e9:8c:61:67:69:d7:7e:28:7b:55:03:35:ca:ad:90:ca:9e:96:
46:6f:eb:81:94:ed:fd:1c:33:59:f2:b5:49:21:6b:fc:69:74:
41:08:1a:8b:12:f4:15:c6:58:4c:ad:a3:21:0d:b9:77:d3:af:
12:db:e4:8a:2a:92:fc:5a:31:ed:de:db:a8:20:99:e9:83:88:
4b:66:20:08
-----BEGIN CERTIFICATE-----
MIIFIjCCBAqgAwIBAgISAZLEfUZGIQa4kx8IZ8Ho4y3XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNjYwNWI0ZDI3ZjEzOTY4ZTg3OTRlNmVmMDkxMjIzNzQ4
ODE3ZDgwHhcNMjQxMDI1MTYyMzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTRjNzZmYWMxNGMxYWEzNjRhYmQ2MjJiMGViYTJmZjM0NjI0MTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppVxx9eFp2bGOb+/JM9lGKChz7Rl
ikoXYEJNo7aykm8WsD9IuwlvKohsYw2PPzh/rAfYVqrNmUbIMu2Q7G41FAw0guA8
6ES4AgoKw84yvLOUnUkWGLUmCqN96B7ZzvAYUZgvsso4NFXtZf7da5J0qBA07XGO
5Sov90yADeOWwU7nSWx+veZgJqKtP0Sgo1b53Dqii9C3bRiaguZBz7DxBojZ0mGO
vm59wz4+NWjzDsUaKGP2BXCVmfMm4cMBnPlzjqi+s6WsXWdWk74xImEWENFKMcvJ
FGZvv4PzdL6D3L/mRW7LZXIbxoW4HxyJu4FPuR+RAorFElEfyPhBHkCxSQIDAQAB
o4ICLjCCAiowHQYDVR0OBBYEFNlMdvrBTBqjZKvWIrDrov80YkF8MB8GA1UdIwQY
MBaAFIJmBbTSfxOWjoeU5u8JEiN0iBfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEt
MmQxOTE4YmExYzBlLzEvMlV4Mi1zRk1HcU5rcTlZaXNPdWlfelJpUVh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEtMmQxOTE4YmExYzBl
LzEvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAxBAIAATArMAsDAwFcMgME
AVwyDAMEApOISAMEApOIUAMEApOIXAMEALmr/QMEAsBfXDANBgkqhkiG9w0BAQsF
AAOCAQEAjb7Ywa2Nf87CGXanqaKu3p2t0juGoz8KxrhF56K6U2zbKkLOslsBdgtn
Z+vVJ3HpmiyJG0Tr77wIhSvOXySgUe++/tTvpOkVV95w4QEqXUBnMHSHc5SpHw5H
dsYs1d6vqHZR4dM+XpmbJg5oujLWYlaV3btZ+3NYrMTQ7MW2lJId8tqREN5HKQde
reFxY3Z27RGJbsnV0XKeooUxx92HKS+SPUe4K9JsdMH2TBr8qmEkV7sN6YxhZ2nX
fih7VQM1yq2Qyp6WRm/rgZTt/RwzWfK1SSFr/Gl0QQgaixL0FcZYTK2jIQ25d9Ov
EtvkiiqS/Fox7d7bqCCZ6YOIS2YgCA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 23:55:55 2024 by rpki-client on console-ams.rpki-client.org