Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/AmqRoR07D0LEd5HUgiwurSwUMaQ.roa
File: AmqRoR07D0LEd5HUgiwurSwUMaQ.roa (raw, json)
Hash identifier: wjcDd+s0fjb/hKVmbdSamStxknMhw0XG97mlqwPMpzs=
Subject key identifier: 02:6A:91:A1:1D:3B:0F:42:C4:77:91:D4:82:2C:2E:AD:2C:14:31:A4
Certificate issuer: /CN=afab1e48def14b29d21d34234c448ea808e618bf
Certificate serial: 018CC801B60F3F8066477B81A102E54B969E
Authority key identifier: AF:AB:1E:48:DE:F1:4B:29:D2:1D:34:23:4C:44:8E:A8:08:E6:18:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6seSN7xSynSHTQjTESOqAjmGL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/AmqRoR07D0LEd5HUgiwurSwUMaQ.roa
Signing time: Tue 02 Jan 2024 02:30:04 +0000
ROA not before: Tue 02 Jan 2024 02:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6730
IP address blocks: 193.246.31.0/24 maxlen: 24
193.246.28.0/24 maxlen: 24
193.246.29.0/24 maxlen: 24
193.246.30.0/24 maxlen: 24
193.246.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/r6seSN7xSynSHTQjTESOqAjmGL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/r6seSN7xSynSHTQjTESOqAjmGL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/r6seSN7xSynSHTQjTESOqAjmGL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:b6:0f:3f:80:66:47:7b:81:a1:02:e5:4b:96:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afab1e48def14b29d21d34234c448ea808e618bf
Validity
Not Before: Jan 2 02:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=026a91a11d3b0f42c47791d4822c2ead2c1431a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:29:da:b5:fc:ca:f4:00:99:20:03:e1:4f:6e:
f6:ad:e6:4b:e8:a2:e3:73:63:9d:47:d8:e9:0f:eb:
f8:89:c2:62:04:52:7c:5f:60:19:c7:ca:da:8e:1b:
1b:1a:dd:c2:bf:18:b4:c4:96:c4:93:03:41:85:6a:
f9:25:c6:b4:0e:e1:ae:69:d6:b0:24:55:24:e8:8c:
77:a3:23:0b:63:06:02:0b:03:5e:ca:cd:98:59:f2:
99:47:7b:9b:b9:46:0c:71:7b:e7:0b:10:e6:71:33:
5c:43:d5:53:af:eb:3e:24:35:2c:46:99:f9:b6:51:
c8:8d:21:41:bf:7f:a9:fe:23:e6:76:85:cf:e7:f1:
3b:64:66:b7:25:77:b3:9d:ed:1d:b7:5f:dc:26:5f:
a6:11:76:d5:e7:c4:e1:ad:48:49:e0:1a:d4:2c:1a:
64:35:3e:56:e9:09:93:ca:66:24:7e:a5:42:4c:f1:
f8:ad:d7:e5:f1:93:58:46:c3:a0:93:67:b6:7b:04:
ea:3a:35:ee:45:2c:da:ac:60:0d:61:ad:fe:54:82:
2e:61:5b:f1:08:7c:85:6a:3a:b6:d4:dd:36:36:40:
d9:65:c7:df:44:cc:47:73:2f:46:e0:c0:cc:41:0a:
69:41:00:76:d4:74:e9:e8:a7:55:f8:d8:1c:0c:58:
2a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6A:91:A1:1D:3B:0F:42:C4:77:91:D4:82:2C:2E:AD:2C:14:31:A4
X509v3 Authority Key Identifier:
keyid:AF:AB:1E:48:DE:F1:4B:29:D2:1D:34:23:4C:44:8E:A8:08:E6:18:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6seSN7xSynSHTQjTESOqAjmGL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/AmqRoR07D0LEd5HUgiwurSwUMaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0e607f-e21f-4cfa-a336-9314860c2c7f/1/r6seSN7xSynSHTQjTESOqAjmGL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.246.24.0/24
193.246.28.0/22
Signature Algorithm: sha256WithRSAEncryption
25:a8:1a:16:ea:20:d1:00:4c:c1:30:14:6f:a6:7c:4f:9d:0e:
12:a8:e9:85:ce:b8:a7:1a:1b:74:b4:71:02:ee:32:51:7e:de:
d9:79:75:1e:ee:86:66:fa:b2:60:e4:9e:88:9f:64:39:97:ba:
8a:57:a1:c0:42:09:7e:f7:a5:65:9c:53:67:d5:d2:9d:bb:4a:
e7:bf:53:ff:01:cc:96:de:79:a5:46:43:2d:77:6d:fc:eb:83:
3a:26:2f:3f:2d:20:31:cc:90:3a:d0:15:93:d8:fa:30:2c:2a:
4f:b7:8f:ac:50:5d:59:3a:4e:d0:43:d4:a4:2b:e0:b4:93:23:
27:a9:70:b0:50:69:e2:61:29:34:e2:fb:91:48:b5:51:d3:6e:
b4:1a:23:11:4d:59:f3:e7:ab:3f:0b:ac:e0:21:5e:05:01:4d:
cb:ea:2d:b2:62:e3:3f:49:8a:ff:eb:12:d4:76:d8:5c:89:e2:
b5:22:a4:6a:48:3f:3c:50:ee:62:ba:33:e5:34:ea:3d:8c:12:
14:5b:21:5a:34:29:7b:f4:61:4d:92:1b:36:3e:38:33:46:9a:
8f:15:37:1b:7e:24:e4:59:8a:08:26:49:72:e6:93:48:f2:55:
5b:8a:3b:f2:67:41:c7:c8:9f:2b:41:8f:23:49:98:84:c2:b9:
24:6e:55:ee
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzIAbYPP4BmR3uBoQLlS5aeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYWIxZTQ4ZGVmMTRiMjlkMjFkMzQyMzRjNDQ4ZWE4MDhl
NjE4YmYwHhcNMjQwMTAyMDIzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjZhOTFhMTFkM2IwZjQyYzQ3NzkxZDQ4MjJjMmVhZDJjMTQzMWE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCnatfzK9ACZIAPhT272reZL6KLj
c2OdR9jpD+v4icJiBFJ8X2AZx8rajhsbGt3Cvxi0xJbEkwNBhWr5Jca0DuGuadaw
JFUk6Ix3oyMLYwYCCwNeys2YWfKZR3ubuUYMcXvnCxDmcTNcQ9VTr+s+JDUsRpn5
tlHIjSFBv3+p/iPmdoXP5/E7ZGa3JXezne0dt1/cJl+mEXbV58ThrUhJ4BrULBpk
NT5W6QmTymYkfqVCTPH4rdfl8ZNYRsOgk2e2ewTqOjXuRSzarGANYa3+VIIuYVvx
CHyFajq21N02NkDZZcffRMxHcy9G4MDMQQppQQB21HTp6KdV+NgcDFgq1wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAJqkaEdOw9CxHeR1IIsLq0sFDGkMB8GA1UdIwQY
MBaAFK+rHkje8Usp0h00I0xEjqgI5hi/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjZzZVNON3hTeW5TSFRRalRFU09xQWptR0w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZTYwN2YtZTIxZi00Y2ZhLWEzMzYt
OTMxNDg2MGMyYzdmLzEvQW1xUm9SMDdEMExFZDVIVWdpd3VyU3dVTWFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8wZTYwN2YtZTIxZi00Y2ZhLWEzMzYtOTMxNDg2MGMyYzdm
LzEvcjZzZVNON3hTeW5TSFRRalRFU09xQWptR0w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwfYYAwQC
wfYcMA0GCSqGSIb3DQEBCwUAA4IBAQAlqBoW6iDRAEzBMBRvpnxPnQ4SqOmFzrin
Ght0tHEC7jJRft7ZeXUe7oZm+rJg5J6In2Q5l7qKV6HAQgl+96VlnFNn1dKdu0rn
v1P/AcyW3nmlRkMtd23864M6Ji8/LSAxzJA60BWT2PowLCpPt4+sUF1ZOk7QQ9Sk
K+C0kyMnqXCwUGniYSk04vuRSLVR0260GiMRTVnz56s/C6zgIV4FAU3L6i2yYuM/
SYr/6xLUdthcieK1IqRqSD88UO5iujPlNOo9jBIUWyFaNCl79GFNkhs2PjgzRpqP
FTcbfiTkWYoIJkly5pNI8lVbijvyZ0HHyJ8rQY8jSZiEwrkkblXu
-----END CERTIFICATE-----
Generated at Sat Nov 23 04:44:55 2024 by rpki-client on console-ams.rpki-client.org