Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Bb_yhs_hyVTHnsRCtjOTxuA9sZs.roa
File: Bb_yhs_hyVTHnsRCtjOTxuA9sZs.roa (raw, json)
Hash identifier: XDNS/f3wUa4lSh70FbpEbv4be11KTKxMgkcRziGOto4=
Subject key identifier: 05:BF:F2:86:CF:E1:C9:54:C7:9E:C4:42:B6:33:93:C6:E0:3D:B1:9B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 019427B396CCCACA17089B275BDBEFB6277E
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Bb_yhs_hyVTHnsRCtjOTxuA9sZs.roa
Signing time: Thu 02 Jan 2025 15:47:48 +0000
ROA not before: Thu 02 Jan 2025 15:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30848
IP address blocks: 45.83.204.0/24 maxlen: 24
45.130.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:96:cc:ca:ca:17:08:9b:27:5b:db:ef:b6:27:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 15:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=05bff286cfe1c954c79ec442b63393c6e03db19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1c:8f:0d:72:7d:f3:80:6e:14:ce:1d:a0:18:
fb:b5:87:4a:c4:c2:79:07:49:c7:42:f8:e9:1b:b3:
a9:52:d9:34:24:b7:92:9e:77:63:35:7d:28:46:51:
1d:50:24:0f:a2:b8:53:46:d2:32:17:7f:68:1a:fc:
ff:4b:78:a8:b1:4f:7e:80:a0:ed:7a:fa:f0:27:ea:
fd:3b:cc:7a:4e:6a:7b:82:a8:13:5f:ec:e4:41:4a:
54:21:6e:79:3f:1c:d4:9e:bc:82:87:62:95:2a:96:
a9:7a:8a:cb:d3:ea:db:30:26:7e:68:e5:c3:8e:22:
40:16:b9:6a:5e:ea:d5:87:2a:f1:9e:fc:f4:35:8c:
89:d7:f8:26:53:3d:2f:d7:0f:09:a9:40:c8:86:36:
29:f0:da:92:56:e4:1b:b5:a2:76:01:99:cd:8d:d1:
ec:11:cc:e8:be:65:af:a2:74:28:25:87:52:22:74:
56:20:0d:e0:6b:03:04:45:15:02:5e:7f:2e:b1:53:
ea:a8:04:b6:7e:b1:ff:21:19:a7:64:d1:6c:9f:4f:
d1:7c:20:b5:65:a4:bb:33:bb:51:1a:3a:ef:48:45:
b3:40:ab:07:80:29:d6:0b:7e:83:82:e0:61:43:71:
79:9e:1c:ef:03:46:3a:48:db:e3:db:03:d5:d2:b1:
ac:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BF:F2:86:CF:E1:C9:54:C7:9E:C4:42:B6:33:93:C6:E0:3D:B1:9B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Bb_yhs_hyVTHnsRCtjOTxuA9sZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.204.0/24
45.130.116.0/23
Signature Algorithm: sha256WithRSAEncryption
04:ea:50:ab:85:0a:b8:ec:3d:91:c9:d9:57:0d:d7:b6:4d:d7:
b6:9e:5b:3c:4d:7d:c6:42:ce:c9:06:32:49:0e:8c:59:db:08:
01:21:13:0f:49:a1:9f:c6:90:7a:da:6c:6e:3f:4c:a8:24:94:
1b:3a:ff:9b:99:c0:0c:49:0c:71:24:a2:8c:ce:31:91:9c:23:
d0:0b:d8:8b:16:3b:48:a8:aa:b2:1b:66:4b:d1:48:df:cd:a1:
bd:2e:1c:b2:06:14:bb:a6:c5:e5:5f:1c:c3:f9:ea:38:07:58:
9b:97:6e:ca:d3:13:97:0d:af:ce:3a:0c:0b:3e:88:f9:17:93:
01:02:b8:4b:c3:44:da:75:f3:8f:b0:a9:68:0f:0a:a0:92:d3:
9a:51:47:60:f6:82:8b:49:00:ea:62:ca:06:a8:69:ab:1d:8a:
84:ba:2d:63:56:17:8a:cd:38:e1:28:cc:a9:00:89:f5:7c:0a:
9d:8a:a0:be:43:0d:42:60:ac:0f:f0:7e:62:31:47:c9:93:ef:
bc:43:02:55:ce:97:b4:95:d2:cb:5c:b7:a5:eb:36:53:7a:75:
51:ce:3c:08:75:df:69:cf:78:d5:fe:f5:c0:ef:7f:30:2a:f2:
dc:22:39:18:84:c8:ab:10:9d:ed:4d:88:25:b6:6e:f5:6a:0a:
5b:9d:07:09
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQns5bMysoXCJsnW9vvtid+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjUwMTAyMTU0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNWJmZjI4NmNmZTFjOTU0Yzc5ZWM0NDJiNjMzOTNjNmUwM2RiMTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhyPDXJ984BuFM4doBj7tYdKxMJ5
B0nHQvjpG7OpUtk0JLeSnndjNX0oRlEdUCQPorhTRtIyF39oGvz/S3iosU9+gKDt
evrwJ+r9O8x6Tmp7gqgTX+zkQUpUIW55PxzUnryCh2KVKpapeorL0+rbMCZ+aOXD
jiJAFrlqXurVhyrxnvz0NYyJ1/gmUz0v1w8JqUDIhjYp8NqSVuQbtaJ2AZnNjdHs
EczovmWvonQoJYdSInRWIA3gawMERRUCXn8usVPqqAS2frH/IRmnZNFsn0/RfCC1
ZaS7M7tRGjrvSEWzQKsHgCnWC36DguBhQ3F5nhzvA0Y6SNvj2wPV0rGskwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAW/8obP4clUx57EQrYzk8bgPbGbMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvQmJfeWhzX2h5VlRIbnNSQ3RqT1R4dUE5c1pzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALVPMAwQB
LYJ0MA0GCSqGSIb3DQEBCwUAA4IBAQAE6lCrhQq47D2RydlXDde2Tde2nls8TX3G
Qs7JBjJJDoxZ2wgBIRMPSaGfxpB62mxuP0yoJJQbOv+bmcAMSQxxJKKMzjGRnCPQ
C9iLFjtIqKqyG2ZL0UjfzaG9LhyyBhS7psXlXxzD+eo4B1ibl27K0xOXDa/OOgwL
Poj5F5MBArhLw0TadfOPsKloDwqgktOaUUdg9oKLSQDqYsoGqGmrHYqEui1jVheK
zTjhKMypAIn1fAqdiqC+Qw1CYKwP8H5iMUfJk++8QwJVzpe0ldLLXLel6zZTenVR
zjwIdd9pz3jV/vXA738wKvLcIjkYhMirEJ3tTYgltm71agpbnQcJ
-----END CERTIFICATE-----
Generated at Wed Feb 5 10:42:58 2025 by rpki-client