Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/9bxJblmbGPv9lr6XcVQzEdvAr_c.roa
File: 9bxJblmbGPv9lr6XcVQzEdvAr_c.roa (raw, json)
Hash identifier: oEI6+WT4qPNHYeaMKQYu9VpJCFqSOH8slQxJE1cFaFQ=
Subject key identifier: F5:BC:49:6E:59:9B:18:FB:FD:96:BE:97:71:54:33:11:DB:C0:AF:F7
Certificate issuer: /CN=a6f13d680ce480591bf8b37ddca0faeb3bbe744e
Certificate serial: 019344D10801F86ADB9E78B772D102D4448B
Authority key identifier: A6:F1:3D:68:0C:E4:80:59:1B:F8:B3:7D:DC:A0:FA:EB:3B:BE:74:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/9bxJblmbGPv9lr6XcVQzEdvAr_c.roa
Signing time: Tue 19 Nov 2024 14:26:09 +0000
ROA not before: Tue 19 Nov 2024 14:26:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33915
IP address blocks: 31.136.0.0/14 maxlen: 14
62.72.192.0/19 maxlen: 19
62.140.128.0/20 maxlen: 20
62.140.140.0/23 maxlen: 23
62.140.156.0/23 maxlen: 23
109.32.0.0/13 maxlen: 13
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/pvE9aAzkgFkb-LN93KD66zu-dE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/pvE9aAzkgFkb-LN93KD66zu-dE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:44:d1:08:01:f8:6a:db:9e:78:b7:72:d1:02:d4:44:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f13d680ce480591bf8b37ddca0faeb3bbe744e
Validity
Not Before: Nov 19 14:26:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5bc496e599b18fbfd96be9771543311dbc0aff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:38:10:7b:e7:e6:a7:d2:12:31:db:aa:b1:
80:66:b2:d8:2f:89:ff:fc:72:9c:3e:08:32:d0:1d:
c1:66:f5:c5:44:46:ba:b0:1a:ac:a5:25:4a:42:56:
3c:be:0a:e1:91:20:16:bb:36:e8:49:71:c8:5a:2f:
a1:75:a1:3e:45:7b:ee:1a:19:4a:34:6b:34:f7:38:
b5:22:74:63:c6:2c:d4:cf:a3:39:7b:a4:03:3a:63:
bb:5a:c2:78:a1:43:f6:57:bc:2d:29:c0:a0:43:11:
59:9b:ae:3d:33:b4:be:19:4d:a0:31:df:78:db:49:
bd:e4:15:af:75:0e:06:1a:83:91:99:7e:81:e6:c9:
e4:06:f6:24:91:9a:70:35:64:a5:f4:5b:84:92:cb:
ac:1d:a8:a7:2b:60:de:b8:a7:ab:86:ec:4f:45:73:
12:4e:14:59:be:9e:66:13:06:58:76:11:77:99:20:
b6:da:b7:0e:b9:db:ba:5a:7e:9b:d7:d8:7c:8c:89:
2f:8d:63:5a:b7:97:bb:7f:05:55:6d:ef:d3:39:29:
29:59:4b:41:be:2e:51:0b:22:1d:84:7c:ea:9f:6b:
a8:bf:42:9f:83:7d:d9:07:87:b5:5e:1f:4b:83:ca:
1b:29:30:0f:22:94:95:62:ed:34:39:85:54:a4:d5:
b9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BC:49:6E:59:9B:18:FB:FD:96:BE:97:71:54:33:11:DB:C0:AF:F7
X509v3 Authority Key Identifier:
keyid:A6:F1:3D:68:0C:E4:80:59:1B:F8:B3:7D:DC:A0:FA:EB:3B:BE:74:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/9bxJblmbGPv9lr6XcVQzEdvAr_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/pvE9aAzkgFkb-LN93KD66zu-dE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.136.0.0/14
62.72.192.0/19
62.140.128.0/20
62.140.156.0/23
109.32.0.0/13
Signature Algorithm: sha256WithRSAEncryption
03:51:9d:c3:8c:bb:f3:e3:fb:5b:0f:24:e9:9a:e8:71:94:dc:
79:4b:93:29:1e:60:6e:d7:01:d9:af:ea:cd:22:b1:6f:28:5a:
69:1a:13:a7:9c:c6:f6:36:79:00:4f:c4:a1:ef:7e:9a:0a:2e:
5b:a4:04:1d:72:78:9d:41:0d:03:16:f4:5d:d4:0b:0e:25:1c:
71:b0:8e:54:ec:bf:85:7d:51:93:70:7a:29:e3:e3:53:17:e1:
98:c9:7f:ad:f7:f9:57:57:77:db:36:58:7b:45:5c:18:cc:77:
02:1a:76:00:20:c2:c8:1a:07:35:c7:6e:cd:55:5c:fc:7d:a8:
f6:1e:33:de:54:6a:0f:7c:8d:45:7e:cb:b0:25:d8:7a:1d:dd:
99:21:db:68:26:48:de:83:91:cd:0e:fb:69:42:8c:cf:86:dc:
c9:ad:bd:3b:48:bd:81:9e:b3:8e:3b:f2:24:81:8e:c0:80:01:
5e:bb:b4:43:a0:f2:fe:3b:22:00:30:d1:2a:84:d9:a6:cc:75:
fc:13:9d:5b:96:7c:80:88:c6:d0:04:7f:03:00:36:ee:9e:71:
04:6b:2b:7a:a1:6c:2f:aa:27:94:7a:f4:23:7d:75:fa:92:3e:
83:26:ec:95:99:70:08:32:bb:18:a5:03:a0:a0:d4:ff:a7:a8:
af:9b:9d:15
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAZNE0QgB+Grbnni3ctEC1ESLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ZjEzZDY4MGNlNDgwNTkxYmY4YjM3ZGRjYTBmYWViM2Ji
ZTc0NGUwHhcNMjQxMTE5MTQyNjA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWJjNDk2ZTU5OWIxOGZiZmQ5NmJlOTc3MTU0MzMxMWRiYzBhZmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEo4EHvn5qfSEjHbqrGAZrLYL4n/
/HKcPggy0B3BZvXFREa6sBqspSVKQlY8vgrhkSAWuzboSXHIWi+hdaE+RXvuGhlK
NGs09zi1InRjxizUz6M5e6QDOmO7WsJ4oUP2V7wtKcCgQxFZm649M7S+GU2gMd94
20m95BWvdQ4GGoORmX6B5snkBvYkkZpwNWSl9FuEksusHainK2DeuKerhuxPRXMS
ThRZvp5mEwZYdhF3mSC22rcOudu6Wn6b19h8jIkvjWNat5e7fwVVbe/TOSkpWUtB
vi5RCyIdhHzqn2uov0Kfg33ZB4e1Xh9Lg8obKTAPIpSVYu00OYVUpNW5dwIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFPW8SW5Zmxj7/Za+l3FUMxHbwK/3MB8GA1UdIwQY
MBaAFKbxPWgM5IBZG/izfdyg+us7vnROMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHZFOWFBemtnRmtiLUxOOTNLRDY2enUtZEU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ZDFiMDItYjBmOS00ZTBlLWE0NTct
MzBiZGI0OGRhNTIxLzEvOWJ4SmJsbWJHUHY5bHI2WGNWUXpFZHZBcl9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ZDFiMDItYjBmOS00ZTBlLWE0NTctMzBiZGI0OGRhNTIx
LzEvcHZFOWFBemtnRmtiLUxOOTNLRDY2enUtZEU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcAwMCH4gDBAU+
SMADBAQ+jIADBAE+jJwDAwNtIDANBgkqhkiG9w0BAQsFAAOCAQEAA1Gdw4y78+P7
Ww8k6ZrocZTceUuTKR5gbtcB2a/qzSKxbyhaaRoTp5zG9jZ5AE/Eoe9+mgouW6QE
HXJ4nUENAxb0XdQLDiUccbCOVOy/hX1Rk3B6KePjUxfhmMl/rff5V1d32zZYe0Vc
GMx3Ahp2ACDCyBoHNcduzVVc/H2o9h4z3lRqD3yNRX7LsCXYeh3dmSHbaCZI3oOR
zQ77aUKMz4bcya29O0i9gZ6zjjvyJIGOwIABXru0Q6Dy/jsiADDRKoTZpsx1/BOd
W5Z8gIjG0AR/AwA27p5xBGsreqFsL6onlHr0I311+pI+gybslZlwCDK7GKUDoKDU
/6eor5udFQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 01:18:06 2024 by rpki-client on console-fra.rpki-client.org