Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/SYuFJgDj9_E1i5PeieqeRBYIMMA.roa
File: SYuFJgDj9_E1i5PeieqeRBYIMMA.roa (raw, json)
Hash identifier: HT0t0xbFIPOy9V5zIZh294dN0AiQZSKbVy9BtIO0dSE=
Subject key identifier: 49:8B:85:26:00:E3:F7:F1:35:8B:93:DE:89:EA:9E:44:16:08:30:C0
Certificate issuer: /CN=315955c4af3eb1a8d3400a86625e365c26298d6a
Certificate serial: 018CC80120E85F4655AA9876F913F7294C70
Authority key identifier: 31:59:55:C4:AF:3E:B1:A8:D3:40:0A:86:62:5E:36:5C:26:29:8D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MVlVxK8-sajTQAqGYl42XCYpjWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/SYuFJgDj9_E1i5PeieqeRBYIMMA.roa
Signing time: Tue 02 Jan 2024 02:29:26 +0000
ROA not before: Tue 02 Jan 2024 02:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47160
IP address blocks: 176.124.40.0/22 maxlen: 24
45.147.208.0/22 maxlen: 24
2a0f:3400::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/MVlVxK8-sajTQAqGYl42XCYpjWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/MVlVxK8-sajTQAqGYl42XCYpjWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/MVlVxK8-sajTQAqGYl42XCYpjWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:20:e8:5f:46:55:aa:98:76:f9:13:f7:29:4c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=315955c4af3eb1a8d3400a86625e365c26298d6a
Validity
Not Before: Jan 2 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=498b852600e3f7f1358b93de89ea9e44160830c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e9:ac:bc:7a:db:ef:a5:08:61:3b:80:0b:08:
45:15:21:a5:db:be:f9:cd:ba:bc:15:90:02:83:b9:
f7:55:de:d3:71:13:df:14:ef:9a:da:43:bf:e3:34:
23:0a:05:c8:73:31:40:c0:72:fa:4b:a7:c0:36:39:
37:78:19:8b:58:f2:12:35:6a:1b:46:9c:40:33:9f:
53:dc:9b:39:cf:06:c8:7c:17:44:a4:a0:62:8c:01:
65:2c:30:57:f7:80:34:fc:b1:9f:d1:52:67:e3:b7:
e3:4e:69:4f:ae:03:57:7f:33:8f:94:5f:20:4a:0b:
d5:7b:df:84:8b:89:33:9f:d9:03:15:f0:ef:ef:f4:
67:31:6b:10:6e:f4:6b:2c:fb:05:d2:49:1e:8c:d3:
66:de:99:32:58:d5:8a:d0:9b:61:c0:b7:a4:e7:64:
c8:89:10:c6:df:9a:66:aa:8a:58:04:16:6c:c7:19:
f3:04:1a:f9:89:0a:d7:c6:03:9a:4f:1d:c9:c3:66:
20:31:06:31:49:c6:d3:b4:93:16:81:5b:01:db:12:
a2:e2:d9:c6:0a:d5:1e:0e:25:31:11:cd:5d:83:58:
19:30:52:d9:6d:d2:05:a9:99:17:25:43:9b:41:d4:
ce:c6:a2:b2:52:a0:0a:7a:db:dc:3b:c2:f0:7c:fe:
38:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8B:85:26:00:E3:F7:F1:35:8B:93:DE:89:EA:9E:44:16:08:30:C0
X509v3 Authority Key Identifier:
keyid:31:59:55:C4:AF:3E:B1:A8:D3:40:0A:86:62:5E:36:5C:26:29:8D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MVlVxK8-sajTQAqGYl42XCYpjWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/SYuFJgDj9_E1i5PeieqeRBYIMMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/MVlVxK8-sajTQAqGYl42XCYpjWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.208.0/22
176.124.40.0/22
IPv6:
2a0f:3400::/29
Signature Algorithm: sha256WithRSAEncryption
2b:9e:75:7d:c9:ca:dd:03:39:b4:6a:58:41:6a:d1:92:14:79:
8e:85:e6:8d:e7:d5:03:93:5a:2b:a6:66:bb:a7:1e:7d:57:56:
0f:dc:9d:35:c9:5a:41:1b:d2:dd:13:1d:96:60:87:e2:cb:d5:
48:be:05:73:c7:df:2b:3a:12:7c:db:45:47:e6:fd:2f:a6:90:
a5:39:f8:1a:0f:b1:99:a7:53:16:0a:ef:0c:bc:7e:00:21:93:
cb:37:cc:76:81:68:cf:9a:82:b6:cd:ab:a5:9d:03:3b:9e:a4:
31:39:bb:84:5c:fe:cc:5b:df:c5:5f:0b:c9:17:11:5b:1c:0f:
3e:0f:f7:b8:bc:be:ba:a6:c9:93:ce:b3:81:2d:69:02:eb:46:
02:94:04:6f:de:58:da:24:61:f7:54:93:c6:db:ce:97:f8:62:
4a:e5:81:3c:d6:f2:93:6c:29:83:76:82:be:b3:61:f5:2a:f9:
a7:e4:27:36:00:e6:85:dd:52:bb:20:19:89:66:be:cd:ac:b4:
96:f1:35:19:6f:50:54:94:05:66:12:4c:b4:b5:d6:4e:49:f7:
a2:f8:0a:9e:43:cf:62:7b:fd:b0:48:69:5e:41:1e:e7:bd:0b:
7d:1c:32:80:ac:c5:ae:ac:95:cc:ff:21:ce:5c:5c:d9:ca:90:
63:ed:8b:39
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYzIASDoX0ZVqph2+RP3KUxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxNTk1NWM0YWYzZWIxYThkMzQwMGE4NjYyNWUzNjVjMjYy
OThkNmEwHhcNMjQwMTAyMDIyOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OThiODUyNjAwZTNmN2YxMzU4YjkzZGU4OWVhOWU0NDE2MDgzMGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgumsvHrb76UIYTuACwhFFSGl2775
zbq8FZACg7n3Vd7TcRPfFO+a2kO/4zQjCgXIczFAwHL6S6fANjk3eBmLWPISNWob
RpxAM59T3Js5zwbIfBdEpKBijAFlLDBX94A0/LGf0VJn47fjTmlPrgNXfzOPlF8g
SgvVe9+Ei4kzn9kDFfDv7/RnMWsQbvRrLPsF0kkejNNm3pkyWNWK0JthwLek52TI
iRDG35pmqopYBBZsxxnzBBr5iQrXxgOaTx3Jw2YgMQYxScbTtJMWgVsB2xKi4tnG
CtUeDiUxEc1dg1gZMFLZbdIFqZkXJUObQdTOxqKyUqAKetvcO8LwfP44WwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFEmLhSYA4/fxNYuT3onqnkQWCDDAMB8GA1UdIwQY
MBaAFDFZVcSvPrGo00AKhmJeNlwmKY1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVZsVnhLOC1zYWpUUUFxR1lsNDJYQ1lwaldvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy8yMWM2MWEtZDZiMS00YWNhLTk3ODIt
OTczNDgzMzZmMzNhLzEvU1l1RkpnRGo5X0UxaTVQZWllcWVSQllJTU1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy8yMWM2MWEtZDZiMS00YWNhLTk3ODItOTczNDgzMzZmMzNh
LzEvTVZsVnhLOC1zYWpUUUFxR1lsNDJYQ1lwaldvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLZPQAwQC
sHwoMA0EAgACMAcDBQMqDzQAMA0GCSqGSIb3DQEBCwUAA4IBAQArnnV9ycrdAzm0
alhBatGSFHmOheaN59UDk1orpma7px59V1YP3J01yVpBG9LdEx2WYIfiy9VIvgVz
x98rOhJ820VH5v0vppClOfgaD7GZp1MWCu8MvH4AIZPLN8x2gWjPmoK2zaulnQM7
nqQxObuEXP7MW9/FXwvJFxFbHA8+D/e4vL66psmTzrOBLWkC60YClARv3ljaJGH3
VJPG286X+GJK5YE81vKTbCmDdoK+s2H1Kvmn5Cc2AOaF3VK7IBmJZr7NrLSW8TUZ
b1BUlAVmEky0tdZOSfei+AqeQ89ie/2wSGleQR7nvQt9HDKArMWurJXM/yHOXFzZ
ypBj7Ys5
-----END CERTIFICATE-----
Generated at Sat Jun 8 05:31:55 2024 by rpki-client on console-fra.rpki-client.org