Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/ZLUwrIoziKZU-m7mylQFjz-HZZA.roa
File: ZLUwrIoziKZU-m7mylQFjz-HZZA.roa (raw, json)
Hash identifier: u5xaQ54zmdZA5WDHsezyJTWHshp7SsMrlMX0dgzwtsQ=
Subject key identifier: 64:B5:30:AC:8A:33:88:A6:54:FA:6E:E6:CA:54:05:8F:3F:87:65:90
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 0192B4ADB9930545FE31D92CB9D8D2066445
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/ZLUwrIoziKZU-m7mylQFjz-HZZA.roa
Signing time: Tue 22 Oct 2024 14:42:17 +0000
ROA not before: Tue 22 Oct 2024 14:42:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396356
IP address blocks: 45.132.115.0/24 maxlen: 24
2a10:5a81::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b4:ad:b9:93:05:45:fe:31:d9:2c:b9:d8:d2:06:64:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Oct 22 14:42:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64b530ac8a3388a654fa6ee6ca54058f3f876590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:24:f0:0b:cb:c6:80:93:6a:23:7a:e2:b7:f6:
47:00:f5:77:24:5f:d4:cf:3a:4a:07:e3:14:d4:bf:
8e:e6:08:91:eb:26:b9:e7:da:a6:57:fd:be:ac:6f:
9c:22:e2:e3:34:0b:7d:5a:f2:0b:75:f8:cc:49:ad:
44:9d:b9:07:8f:83:98:04:6d:3b:1d:bf:d4:a0:21:
57:ef:dd:5f:a1:b4:ce:ec:23:12:19:ef:60:46:fd:
09:35:41:95:b9:2c:d3:8f:50:89:ac:6c:01:d7:e3:
dc:18:f7:c4:df:d2:ff:ec:03:97:26:0f:0d:f3:07:
88:ee:14:a2:76:7e:85:82:79:8d:33:9c:5b:62:b8:
27:1b:2e:85:c6:70:f0:03:c8:4f:89:bb:b4:82:c9:
6c:6e:4f:37:e6:59:1c:2e:da:9d:f8:0f:de:d4:44:
e6:d4:a7:d3:6c:a3:e5:f1:30:ed:c9:f7:ea:d3:d0:
ae:30:f9:d0:93:94:2b:a6:d4:37:a9:43:9e:34:93:
a0:7e:c8:2f:1d:82:00:0a:fb:af:5a:84:e3:e2:34:
02:e2:15:e8:db:84:e9:e6:55:dd:13:d0:fa:a4:5a:
56:75:5e:eb:b7:fe:89:9f:4a:cb:11:94:22:00:33:
55:01:04:07:d5:94:d2:dc:f8:9d:96:54:13:43:39:
d9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B5:30:AC:8A:33:88:A6:54:FA:6E:E6:CA:54:05:8F:3F:87:65:90
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/ZLUwrIoziKZU-m7mylQFjz-HZZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.115.0/24
IPv6:
2a10:5a81::/32
Signature Algorithm: sha256WithRSAEncryption
0f:ba:62:a1:40:17:c6:99:6b:4b:98:68:94:0e:8a:89:f3:8b:
33:6c:10:a3:d5:97:7c:3c:c1:e6:22:5c:43:11:0d:59:c5:69:
a5:d1:0b:d2:00:ca:37:d5:d6:08:93:48:47:62:05:5a:db:a2:
4b:82:a1:47:e4:c7:47:fd:7d:3c:99:59:91:14:e8:ac:c2:e9:
69:ec:30:de:88:1d:84:cd:c2:bd:d5:d1:60:24:02:3e:20:3c:
17:18:5f:c6:eb:0f:27:f7:1f:e1:d5:89:09:4c:49:3d:7c:c2:
cc:e7:b4:aa:90:a5:4f:a1:fa:02:cd:2c:4a:d8:73:69:15:fa:
80:ab:06:30:c4:a7:44:53:74:04:ac:76:af:ea:b1:57:78:43:
8b:4d:77:93:7c:74:06:31:68:57:e1:c8:50:08:ce:36:7b:61:
9a:df:1b:bc:95:6d:ec:77:49:dd:e3:21:9a:b4:48:01:0a:79:
6f:4e:4c:9f:67:78:5e:71:56:bf:5f:6a:e6:b0:07:cc:a9:b3:
ae:67:83:6f:5a:0a:ad:fa:8f:9e:a6:44:65:cf:42:a4:49:b2:
70:a0:92:14:32:22:9f:49:5f:68:2e:46:cd:dc:21:a1:74:33:
c2:0d:24:e1:9f:cc:0a:4a:ab:95:82:28:37:62:94:ae:a1:81:
cb:03:86:ac
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZK0rbmTBUX+MdksudjSBmRFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZDIxZTgwNGFiNzcxM2FkNzg3N2RkZTYwM2FhNzgyNGIz
MTk4M2MwHhcNMjQxMDIyMTQ0MjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGI1MzBhYzhhMzM4OGE2NTRmYTZlZTZjYTU0MDU4ZjNmODc2NTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCTwC8vGgJNqI3rit/ZHAPV3JF/U
zzpKB+MU1L+O5giR6ya559qmV/2+rG+cIuLjNAt9WvILdfjMSa1EnbkHj4OYBG07
Hb/UoCFX791fobTO7CMSGe9gRv0JNUGVuSzTj1CJrGwB1+PcGPfE39L/7AOXJg8N
8weI7hSidn6FgnmNM5xbYrgnGy6FxnDwA8hPibu0gslsbk835lkcLtqd+A/e1ETm
1KfTbKPl8TDtyffq09CuMPnQk5QrptQ3qUOeNJOgfsgvHYIACvuvWoTj4jQC4hXo
24Tp5lXdE9D6pFpWdV7rt/6Jn0rLEZQiADNVAQQH1ZTS3PidllQTQznZwwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGS1MKyKM4imVPpu5spUBY8/h2WQMB8GA1UdIwQY
MBaAFMLSHoBKt3E614d93mA6p4JLMZg8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYt
NTlhZTA5ZWRiZWI5LzEvWkxVd3JJb3ppS1pVLW03bXlsUUZqei1IWlpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYtNTlhZTA5ZWRiZWI5
LzEvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYRzMA0E
AgACMAcDBQAqEFqBMA0GCSqGSIb3DQEBCwUAA4IBAQAPumKhQBfGmWtLmGiUDoqJ
84szbBCj1Zd8PMHmIlxDEQ1ZxWml0QvSAMo31dYIk0hHYgVa26JLgqFH5MdH/X08
mVmRFOiswulp7DDeiB2EzcK91dFgJAI+IDwXGF/G6w8n9x/h1YkJTEk9fMLM57Sq
kKVPofoCzSxK2HNpFfqAqwYwxKdEU3QErHav6rFXeEOLTXeTfHQGMWhX4chQCM42
e2Ga3xu8lW3sd0nd4yGatEgBCnlvTkyfZ3hecVa/X2rmsAfMqbOuZ4NvWgqt+o+e
pkRlz0KkSbJwoJIUMiKfSV9oLkbN3CGhdDPCDSThn8wKSquVgig3YpSuoYHLA4as
-----END CERTIFICATE-----
Generated at Mon Nov 25 01:31:42 2024 by rpki-client on console-ams.rpki-client.org