Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/7c3a18-0ec9-4157-bf5a-5207f664df21/1/ZXBuk_fJSkf3PN7CQQIDNpe7N4Y.roa
File: ZXBuk_fJSkf3PN7CQQIDNpe7N4Y.roa (raw, json)
Hash identifier: o89qllxuJlxFBciFWMAF2wVXX369e9yALqHXriLKOdk=
Subject key identifier: 65:70:6E:93:F7:C9:4A:47:F7:3C:DE:C2:41:02:03:36:97:BB:37:86
Certificate issuer: /CN=16d31b2d899d6eb2bcb7a4d78cc3100dce30c90c
Certificate serial: 018CC56DDB20290FAF196D30F4E49CF6A980
Authority key identifier: 16:D3:1B:2D:89:9D:6E:B2:BC:B7:A4:D7:8C:C3:10:0D:CE:30:C9:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FtMbLYmdbrK8t6TXjMMQDc4wyQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/7c3a18-0ec9-4157-bf5a-5207f664df21/1/ZXBuk_fJSkf3PN7CQQIDNpe7N4Y.roa
Signing time: Mon 01 Jan 2024 14:29:20 +0000
ROA not before: Mon 01 Jan 2024 14:29:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61970
IP address blocks: 45.93.90.0/24 maxlen: 24
45.93.91.0/24 maxlen: 24
45.93.88.0/23 maxlen: 24
185.48.145.0/24 maxlen: 24
185.48.144.0/24 maxlen: 24
185.48.146.0/24 maxlen: 24
185.48.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/7c3a18-0ec9-4157-bf5a-5207f664df21/1/FtMbLYmdbrK8t6TXjMMQDc4wyQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/7c3a18-0ec9-4157-bf5a-5207f664df21/1/FtMbLYmdbrK8t6TXjMMQDc4wyQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FtMbLYmdbrK8t6TXjMMQDc4wyQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:db:20:29:0f:af:19:6d:30:f4:e4:9c:f6:a9:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16d31b2d899d6eb2bcb7a4d78cc3100dce30c90c
Validity
Not Before: Jan 1 14:29:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65706e93f7c94a47f73cdec24102033697bb3786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5e:c8:ad:28:ab:ee:aa:7b:c2:48:a4:51:2e:
b2:f0:ab:04:31:d5:b5:54:11:bd:70:7f:a0:fd:4e:
8c:93:53:68:41:f5:a2:d9:fc:aa:81:96:1e:c6:20:
91:39:39:73:91:0f:33:9f:0d:5f:dc:ed:b8:33:f2:
12:b6:92:23:27:99:8e:59:20:82:22:2c:33:75:26:
11:84:9d:d1:8b:e0:27:0e:84:77:01:87:12:54:63:
5a:7f:42:61:0c:b7:d3:ac:05:70:c7:3c:6c:9e:7b:
13:a1:c9:9a:e6:92:9f:df:e0:9f:4c:31:6f:1e:a7:
52:6a:d2:b5:d2:3c:40:96:71:f3:57:20:11:c4:36:
28:cb:6d:b8:9a:36:8d:1c:b0:e7:c9:5f:58:f2:37:
ca:2d:86:dc:d7:43:ed:16:96:d6:a5:48:84:6e:e4:
1c:df:b5:2d:ed:af:0f:d3:78:92:eb:c1:47:2e:bf:
10:b3:ec:15:9f:5a:c0:74:9d:2e:ed:05:c2:69:a4:
3c:05:27:72:00:50:f9:d1:56:94:db:46:67:dd:80:
56:bc:4a:fe:c8:84:25:1c:03:0b:ae:bc:c1:c8:d7:
b2:f4:ce:02:61:b2:94:ce:24:c0:e6:23:0d:56:20:
10:3e:e3:c8:b1:29:8d:5e:3f:f4:62:ba:1a:4c:4d:
b7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:70:6E:93:F7:C9:4A:47:F7:3C:DE:C2:41:02:03:36:97:BB:37:86
X509v3 Authority Key Identifier:
keyid:16:D3:1B:2D:89:9D:6E:B2:BC:B7:A4:D7:8C:C3:10:0D:CE:30:C9:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FtMbLYmdbrK8t6TXjMMQDc4wyQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/7c3a18-0ec9-4157-bf5a-5207f664df21/1/ZXBuk_fJSkf3PN7CQQIDNpe7N4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/7c3a18-0ec9-4157-bf5a-5207f664df21/1/FtMbLYmdbrK8t6TXjMMQDc4wyQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.88.0/22
185.48.144.0/22
Signature Algorithm: sha256WithRSAEncryption
80:5d:2b:8e:2d:47:f4:83:36:62:34:cd:8a:aa:59:b6:67:21:
5e:55:8f:1d:1e:7f:d6:08:a2:66:f5:ca:00:1d:fc:4a:a9:b9:
9b:b6:10:35:56:ba:89:32:13:9b:9c:18:18:18:41:d1:68:b8:
97:5a:4d:dd:ff:21:86:84:7f:8a:bd:f6:e5:92:90:8c:d3:f0:
a2:ff:b5:88:23:7f:8f:a5:4e:96:dc:72:d7:09:9e:93:2c:57:
34:9c:2d:cf:7f:7d:c4:9d:16:2f:7b:46:f3:6d:3e:f4:bd:a9:
06:38:dd:ff:83:93:01:ea:49:cb:ff:75:63:b5:90:78:0e:dd:
3d:0c:a6:8c:aa:05:f6:df:3f:12:22:5b:f1:57:b8:31:67:83:
42:5b:4f:ce:41:0f:b8:45:c8:13:82:06:cf:e5:aa:46:4e:27:
f1:b4:4e:6d:13:87:98:ff:74:ef:00:3d:0b:2f:47:2c:38:72:
ad:3e:18:8b:36:73:aa:2f:c6:79:38:b1:12:2d:a6:65:8b:78:
b0:b1:ef:63:03:b1:b1:c9:57:8b:49:7d:67:bd:31:01:b8:47:
55:03:7d:13:8c:33:68:3b:5c:38:a3:24:33:3a:33:e7:aa:21:
ab:60:8a:62:7b:ab:00:94:e5:45:0a:30:06:be:7e:d9:66:82:
67:d8:41:10
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzFbdsgKQ+vGW0w9OSc9qmAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2ZDMxYjJkODk5ZDZlYjJiY2I3YTRkNzhjYzMxMDBkY2Uz
MGM5MGMwHhcNMjQwMTAxMTQyOTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTcwNmU5M2Y3Yzk0YTQ3ZjczY2RlYzI0MTAyMDMzNjk3YmIzNzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtF7IrSir7qp7wkikUS6y8KsEMdW1
VBG9cH+g/U6Mk1NoQfWi2fyqgZYexiCROTlzkQ8znw1f3O24M/IStpIjJ5mOWSCC
IiwzdSYRhJ3Ri+AnDoR3AYcSVGNaf0JhDLfTrAVwxzxsnnsTocma5pKf3+CfTDFv
HqdSatK10jxAlnHzVyARxDYoy224mjaNHLDnyV9Y8jfKLYbc10PtFpbWpUiEbuQc
37Ut7a8P03iS68FHLr8Qs+wVn1rAdJ0u7QXCaaQ8BSdyAFD50VaU20Zn3YBWvEr+
yIQlHAMLrrzByNey9M4CYbKUziTA5iMNViAQPuPIsSmNXj/0YroaTE23VwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGVwbpP3yUpH9zzewkECAzaXuzeGMB8GA1UdIwQY
MBaAFBbTGy2JnW6yvLek14zDEA3OMMkMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnRNYkxZbWRicks4dDZUWGpNTVFEYzR3eVF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS83YzNhMTgtMGVjOS00MTU3LWJmNWEt
NTIwN2Y2NjRkZjIxLzEvWlhCdWtfZkpTa2YzUE43Q1FRSUROcGU3TjRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS83YzNhMTgtMGVjOS00MTU3LWJmNWEtNTIwN2Y2NjRkZjIx
LzEvRnRNYkxZbWRicks4dDZUWGpNTVFEYzR3eVF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLV1YAwQC
uTCQMA0GCSqGSIb3DQEBCwUAA4IBAQCAXSuOLUf0gzZiNM2Kqlm2ZyFeVY8dHn/W
CKJm9coAHfxKqbmbthA1VrqJMhObnBgYGEHRaLiXWk3d/yGGhH+KvfblkpCM0/Ci
/7WII3+PpU6W3HLXCZ6TLFc0nC3Pf33EnRYve0bzbT70vakGON3/g5MB6knL/3Vj
tZB4Dt09DKaMqgX23z8SIlvxV7gxZ4NCW0/OQQ+4RcgTggbP5apGTifxtE5tE4eY
/3TvAD0LL0csOHKtPhiLNnOqL8Z5OLESLaZli3iwse9jA7GxyVeLSX1nvTEBuEdV
A30TjDNoO1w4oyQzOjPnqiGrYIpie6sAlOVFCjAGvn7ZZoJn2EEQ
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:32:28 2024 by rpki-client on console-ams.rpki-client.org