Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Jo5elBx60EUo8X_BFPYYo9PsLmk.roa
File: Jo5elBx60EUo8X_BFPYYo9PsLmk.roa (raw, json)
Hash identifier: rSFsU+Eg+zhdXjwhkbvZybdi/0Tig2u/GSh2UBEOuQE=
Subject key identifier: 26:8E:5E:94:1C:7A:D0:45:28:F1:7F:C1:14:F6:18:A3:D3:EC:2E:69
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192AE72E0C9D610F412F8152B049B54E3E0
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Jo5elBx60EUo8X_BFPYYo9PsLmk.roa
Signing time: Mon 21 Oct 2024 09:40:17 +0000
ROA not before: Mon 21 Oct 2024 09:40:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214024
IP address blocks: 31.56.59.0/24 maxlen: 24
31.56.67.0/24 maxlen: 24
31.56.69.0/24 maxlen: 24
31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.88.0/24 maxlen: 24
31.56.120.0/24 maxlen: 24
31.56.121.0/24 maxlen: 24
31.56.122.0/24 maxlen: 24
31.56.123.0/24 maxlen: 24
31.56.126.0/24 maxlen: 24
31.57.104.0/21 maxlen: 24
31.57.132.0/24 maxlen: 24
31.57.133.0/24 maxlen: 24
31.57.151.0/24 maxlen: 24
31.57.152.0/24 maxlen: 24
31.58.66.0/24 maxlen: 24
31.58.67.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
31.59.42.0/24 maxlen: 24
31.59.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:72:e0:c9:d6:10:f4:12:f8:15:2b:04:9b:54:e3:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 21 09:40:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=268e5e941c7ad04528f17fc114f618a3d3ec2e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e7:13:7b:3d:56:93:df:79:84:f3:d3:85:1a:
98:2e:96:60:c9:62:d4:24:45:c9:c7:36:31:cd:b8:
ba:35:79:6c:a0:7e:c5:f1:03:74:b7:48:2c:15:99:
3b:40:31:a7:38:7c:8b:44:e8:63:fe:cc:1c:54:cd:
74:d2:25:14:63:39:b9:b6:a8:b3:d8:6d:57:0b:c9:
a6:be:06:17:b9:3b:c9:59:b9:49:c6:83:5a:f7:8e:
18:04:d9:1a:bc:b7:61:fe:2a:b4:ca:7e:e8:50:f9:
c4:2f:ec:24:0d:27:2d:e0:0f:c6:11:ff:dd:64:b6:
75:4e:d2:32:8f:62:74:d6:bb:c1:a4:34:9e:01:11:
fa:9b:17:d8:e9:cc:6e:c8:93:b4:86:e2:c0:d0:06:
21:82:91:84:da:4f:aa:cc:f8:a1:0a:7a:c1:6e:21:
dc:00:05:4a:b7:84:8a:97:df:f8:a1:e7:24:33:dd:
ed:5e:12:2c:49:95:97:af:14:be:da:d0:07:8b:c7:
b3:12:44:91:02:b7:5e:4d:66:09:28:39:18:0d:a0:
f7:da:07:3a:1e:ca:94:c8:16:c9:1a:8b:1a:4c:a1:
bb:97:c2:14:09:06:09:80:e0:09:04:4b:81:18:f2:
b9:12:fa:37:07:c5:af:ea:fb:47:5d:b4:91:9e:8e:
86:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:8E:5E:94:1C:7A:D0:45:28:F1:7F:C1:14:F6:18:A3:D3:EC:2E:69
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Jo5elBx60EUo8X_BFPYYo9PsLmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.56.67.0/24
31.56.69.0/24
31.56.72.0/24
31.56.84.0/24
31.56.88.0/24
31.56.120.0/22
31.56.126.0/24
31.57.104.0/21
31.57.132.0/23
31.57.151.0-31.57.152.255
31.58.66.0/23
31.58.88.0/23
31.59.42.0/23
Signature Algorithm: sha256WithRSAEncryption
27:c4:ae:8e:fc:f0:2b:6c:98:c6:53:b6:da:f5:eb:64:4f:45:
d6:f7:f6:03:75:61:b2:60:83:e0:d5:cb:28:79:1a:c7:8f:40:
28:ba:5b:6b:1c:f6:52:f1:c8:29:1c:e4:29:ea:3d:83:e0:2a:
9b:fe:8c:ed:0a:d7:c4:f7:7b:87:e4:dc:4c:fd:2e:f3:76:25:
3e:77:4c:b3:a5:91:5a:8a:4d:e0:c0:c3:bc:6f:27:3b:b1:0a:
68:01:35:fe:cf:24:dc:8e:59:7b:1c:9e:0a:0b:43:44:94:99:
6f:fd:9f:a0:d7:6f:17:84:70:50:ff:b8:4b:0d:17:0a:97:5d:
02:f2:c1:c0:01:a5:bf:83:06:05:71:78:db:e4:0a:2c:44:5e:
04:07:45:08:6e:ad:1b:60:3e:a2:d8:b6:c2:b1:9d:2e:13:60:
92:69:5a:37:9a:a9:32:4e:d5:7c:d1:b0:7a:07:b5:bf:46:78:
7d:2a:74:8a:ea:f7:42:72:78:24:5e:fe:a9:dc:98:a9:77:a1:
a2:65:1e:17:e1:96:c7:f4:a2:92:77:78:d0:8f:7c:49:91:ba:
59:4a:84:b4:90:7e:cd:ae:5f:74:77:27:fc:a2:60:dd:ba:33:
23:cf:a4:ce:b9:6d:6a:33:b9:4e:2b:2c:23:08:b1:d9:b1:34:
cf:b3:dc:98
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgISAZKucuDJ1hD0EvgVKwSbVOPgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjQxMDIxMDk0MDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjhlNWU5NDFjN2FkMDQ1MjhmMTdmYzExNGY2MThhM2QzZWMyZTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOcTez1Wk995hPPThRqYLpZgyWLU
JEXJxzYxzbi6NXlsoH7F8QN0t0gsFZk7QDGnOHyLROhj/swcVM100iUUYzm5tqiz
2G1XC8mmvgYXuTvJWblJxoNa944YBNkavLdh/iq0yn7oUPnEL+wkDSct4A/GEf/d
ZLZ1TtIyj2J01rvBpDSeARH6mxfY6cxuyJO0huLA0AYhgpGE2k+qzPihCnrBbiHc
AAVKt4SKl9/4oeckM93tXhIsSZWXrxS+2tAHi8ezEkSRArdeTWYJKDkYDaD32gc6
HsqUyBbJGosaTKG7l8IUCQYJgOAJBEuBGPK5Evo3B8Wv6vtHXbSRno6GCQIDAQAB
o4ICXzCCAlswHQYDVR0OBBYEFCaOXpQcetBFKPF/wRT2GKPT7C5pMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvSm81ZWxCeDYwRVVvOFhfQkZQWVlvOVBzTG1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAATBcAwQAHzg7AwQA
HzhDAwQAHzhFAwQAHzhIAwQAHzhUAwQAHzhYAwQCHzh4AwQAHzh+AwQDHzloAwQB
HzmEMAwDBAAfOZcDBAAfOZgDBAEfOkIDBAEfOlgDBAEfOyowDQYJKoZIhvcNAQEL
BQADggEBACfEro788CtsmMZTttr162RPRdb39gN1YbJgg+DVyyh5GsePQCi6W2sc
9lLxyCkc5CnqPYPgKpv+jO0K18T3e4fk3Ez9LvN2JT53TLOlkVqKTeDAw7xvJzux
CmgBNf7PJNyOWXscngoLQ0SUmW/9n6DXbxeEcFD/uEsNFwqXXQLywcABpb+DBgVx
eNvkCixEXgQHRQhurRtgPqLYtsKxnS4TYJJpWjeaqTJO1XzRsHoHtb9GeH0qdIrq
90JyeCRe/qncmKl3oaJlHhfhlsf0opJ3eNCPfEmRullKhLSQfs2uX3R3J/yiYN26
MyPPpM65bWozuU4rLCMIsdmxNM+z3Jg=
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:45:42 2024 by rpki-client on console-fra.rpki-client.org