Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/0W3WJ9T3_fIpLKmvIwu3m71oMj0.roa
File: 0W3WJ9T3_fIpLKmvIwu3m71oMj0.roa (raw, json)
Hash identifier: 4rZTrWCBPGrMHPFbcMJUHYf1m65fycVKByntwM/Ht60=
Subject key identifier: D1:6D:D6:27:D4:F7:FD:F2:29:2C:A9:AF:23:0B:B7:9B:BD:68:32:3D
Certificate issuer: /CN=fdad61d8e8c1abda8596930e21f18211a517681f
Certificate serial: 018FC85C98CCC50ED851CBB80C94B82CE1AE
Authority key identifier: FD:AD:61:D8:E8:C1:AB:DA:85:96:93:0E:21:F1:82:11:A5:17:68:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/0W3WJ9T3_fIpLKmvIwu3m71oMj0.roa
Signing time: Thu 30 May 2024 07:17:42 +0000
ROA not before: Thu 30 May 2024 07:17:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51178
IP address blocks: 5.61.13.0/24 maxlen: 24
5.61.14.0/23 maxlen: 24
91.219.64.0/22 maxlen: 24
92.249.4.0/24 maxlen: 24
185.218.68.0/23 maxlen: 24
185.218.70.0/24 maxlen: 24
188.68.184.0/22 maxlen: 23
188.68.187.0/24 maxlen: 24
2a00:9801::/32 maxlen: 32
2a0b:d0c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/_a1h2OjBq9qFlpMOIfGCEaUXaB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/_a1h2OjBq9qFlpMOIfGCEaUXaB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:5c:98:cc:c5:0e:d8:51:cb:b8:0c:94:b8:2c:e1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdad61d8e8c1abda8596930e21f18211a517681f
Validity
Not Before: May 30 07:17:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d16dd627d4f7fdf2292ca9af230bb79bbd68323d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:76:66:ce:bd:2a:6f:6e:35:28:8f:96:cb:03:
7c:21:95:f6:bc:a1:90:d4:11:5f:d3:c6:a9:40:eb:
83:96:96:0c:b8:0b:4b:9d:d5:98:9a:26:ae:cd:1d:
e0:f7:1b:43:b8:41:0c:d1:ca:68:a1:d5:48:7b:79:
6f:b2:46:3e:ca:be:92:5e:0e:24:fe:5b:06:33:95:
93:e6:d2:fd:04:55:32:19:ed:4e:15:8f:e9:dc:2f:
e4:46:c7:e2:68:88:27:84:d7:37:56:a5:21:a7:17:
a3:0e:4c:46:73:04:9d:4b:48:ae:7d:4c:0e:48:95:
cf:5e:db:91:b0:fd:35:0d:23:cc:a9:74:58:a0:af:
1c:09:36:38:a7:20:b8:ae:ff:f9:2d:8d:a9:31:51:
be:54:b9:4e:ea:3d:9c:ae:d9:a9:b9:05:b7:f4:8c:
9f:5f:36:c3:8e:8c:7a:72:29:af:9d:6e:42:dd:72:
bd:b7:68:22:ad:e8:b8:a5:c1:5c:f6:63:22:b1:b9:
a2:2c:42:56:f5:90:42:90:c4:3b:83:90:ea:13:8d:
1d:4f:cd:1a:b6:48:f7:66:4d:15:19:71:c4:8e:0f:
9b:11:5f:95:65:04:b0:18:0a:1a:d1:3d:ae:5d:a5:
8d:80:0d:f7:5b:bc:31:2a:f2:05:49:52:86:65:b7:
da:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6D:D6:27:D4:F7:FD:F2:29:2C:A9:AF:23:0B:B7:9B:BD:68:32:3D
X509v3 Authority Key Identifier:
keyid:FD:AD:61:D8:E8:C1:AB:DA:85:96:93:0E:21:F1:82:11:A5:17:68:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_a1h2OjBq9qFlpMOIfGCEaUXaB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/0W3WJ9T3_fIpLKmvIwu3m71oMj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a46c86-4b08-482b-92ca-84ee22a3ee5b/1/_a1h2OjBq9qFlpMOIfGCEaUXaB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.13.0-5.61.15.255
91.219.64.0/22
92.249.4.0/24
185.218.68.0-185.218.70.255
188.68.184.0/22
IPv6:
2a00:9801::/32
2a0b:d0c0::/29
Signature Algorithm: sha256WithRSAEncryption
1c:ee:9f:48:4c:2e:6e:a5:7f:2d:25:c9:58:5a:2c:3a:d8:c3:
17:b2:dc:ed:be:eb:ab:63:d4:03:15:e0:5a:c1:b0:b7:4a:0f:
80:58:c8:11:93:fd:c1:0a:f1:2d:fa:bd:8b:f4:76:1b:a9:af:
fb:91:8d:f5:9b:9b:8f:6d:45:24:56:69:37:e7:3c:5a:b4:04:
fc:b3:bd:4e:cf:c9:c7:ce:1c:50:00:15:04:25:37:3e:92:32:
b7:dc:7f:67:27:4b:16:43:97:52:92:72:3f:7f:33:77:cf:67:
ba:62:50:54:9f:52:57:8d:41:94:ba:15:1c:ea:8e:6d:ba:c6:
6b:b4:0d:5b:9f:44:dc:63:88:78:9e:e9:4e:19:be:81:b3:1b:
9f:96:84:28:fa:65:8a:cd:ca:3c:9e:4e:d0:ca:78:b2:b0:de:
b1:c1:4c:40:b1:37:e1:b7:ed:6e:57:a8:70:49:3a:7c:7b:0b:
c1:4d:6a:bb:20:38:34:26:99:4a:2c:c0:53:98:cd:33:ff:f9:
96:5d:e1:b8:15:48:91:22:cc:cd:08:6f:b3:43:39:3c:65:85:
e5:bb:8c:fd:77:03:b3:c8:df:e2:b5:61:95:00:e4:e5:47:a6:
fa:62:f9:8c:c8:4b:71:a1:90:f3:51:65:1b:c9:f9:93:72:89:
d3:ad:72:8e
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgISAY/IXJjMxQ7YUcu4DJS4LOGuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkYWQ2MWQ4ZThjMWFiZGE4NTk2OTMwZTIxZjE4MjExYTUx
NzY4MWYwHhcNMjQwNTMwMDcxNzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTZkZDYyN2Q0ZjdmZGYyMjkyY2E5YWYyMzBiYjc5YmJkNjgzMjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm3Zmzr0qb241KI+WywN8IZX2vKGQ
1BFf08apQOuDlpYMuAtLndWYmiauzR3g9xtDuEEM0cpoodVIe3lvskY+yr6SXg4k
/lsGM5WT5tL9BFUyGe1OFY/p3C/kRsfiaIgnhNc3VqUhpxejDkxGcwSdS0iufUwO
SJXPXtuRsP01DSPMqXRYoK8cCTY4pyC4rv/5LY2pMVG+VLlO6j2crtmpuQW39Iyf
XzbDjox6cimvnW5C3XK9t2girei4pcFc9mMisbmiLEJW9ZBCkMQ7g5DqE40dT80a
tkj3Zk0VGXHEjg+bEV+VZQSwGAoa0T2uXaWNgA33W7wxKvIFSVKGZbfaLwIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFNFt1ifU9/3yKSypryMLt5u9aDI9MB8GA1UdIwQY
MBaAFP2tYdjowavahZaTDiHxghGlF2gfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2ExaDJPakJxOXFGbHBNT0lmR0NFYVVYYUI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hNDZjODYtNGIwOC00ODJiLTkyY2Et
ODRlZTIyYTNlZTViLzEvMFczV0o5VDNfZklwTEttdkl3dTNtNzFvTWowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9hNDZjODYtNGIwOC00ODJiLTkyY2EtODRlZTIyYTNlZTVi
LzEvX2ExaDJPakJxOXFGbHBNT0lmR0NFYVVYYUI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDA0BAIAATAuMAwDBAAFPQ0D
BAQFPQADBAJb20ADBABc+QQwDAMEArnaRAMEALnaRgMEArxEuDAUBAIAAjAOAwUA
KgCYAQMFAyoL0MAwDQYJKoZIhvcNAQELBQADggEBABzun0hMLm6lfy0lyVhaLDrY
wxey3O2+66tj1AMV4FrBsLdKD4BYyBGT/cEK8S36vYv0dhupr/uRjfWbm49tRSRW
aTfnPFq0BPyzvU7PycfOHFAAFQQlNz6SMrfcf2cnSxZDl1KScj9/M3fPZ7piUFSf
UleNQZS6FRzqjm26xmu0DVufRNxjiHie6U4ZvoGzG5+WhCj6ZYrNyjyeTtDKeLKw
3rHBTECxN+G37W5XqHBJOnx7C8FNarsgODQmmUoswFOYzTP/+ZZd4bgVSJEizM0I
b7NDOTxlheW7jP13A7PI3+K1YZUA5OVHpvpi+YzIS3GhkPNRZRvJ+ZNyidOtco4=
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:19:00 2024 by rpki-client on console-ams.rpki-client.org