Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/B3KNnolGrQDmnfk7IjNksUipV5I.roa
File: B3KNnolGrQDmnfk7IjNksUipV5I.roa (raw, json)
Hash identifier: fDdBargYk0MUf5sHiNtkM5jN3MpxOwFk4ozQ1bBX6JQ=
Subject key identifier: 07:72:8D:9E:89:46:AD:00:E6:9D:F9:3B:22:33:64:B1:48:A9:57:92
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0191D1436E7D9FE8649FD77854FD89531D20
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/B3KNnolGrQDmnfk7IjNksUipV5I.roa
Signing time: Sun 08 Sep 2024 10:52:22 +0000
ROA not before: Sun 08 Sep 2024 10:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48147
IP address blocks: 87.107.100.0/24 maxlen: 24
87.107.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d1:43:6e:7d:9f:e8:64:9f:d7:78:54:fd:89:53:1d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Sep 8 10:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07728d9e8946ad00e69df93b223364b148a95792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:9e:d0:63:6c:c7:8a:08:da:11:40:b8:6b:9a:
df:7c:af:36:27:de:7e:b3:b1:de:b1:20:ab:81:d3:
7c:d9:a8:95:82:d0:49:73:1a:17:36:81:a4:c2:97:
13:99:13:e1:fa:8f:e4:8c:0a:74:2f:2a:4d:c2:bb:
28:1a:80:27:a2:bf:fb:e6:33:dc:a1:16:0c:46:c3:
38:53:e4:5a:aa:bf:01:7e:67:55:9c:50:d7:75:06:
bb:c9:7b:fd:b7:6f:99:a1:43:14:ee:a0:cf:c7:6b:
65:d1:b7:1b:e7:e6:dd:f5:72:6a:f1:02:e5:b8:19:
5d:19:22:fa:6c:0c:43:25:d3:d2:59:6c:18:1e:31:
98:73:6f:46:d0:e7:a7:5d:60:ae:6b:f4:0d:5c:34:
74:4f:a0:c5:d3:23:8f:96:f0:ab:f3:13:31:b4:bc:
c9:df:cc:e3:54:a9:a1:02:59:3a:b7:c9:b8:05:0b:
f9:dd:76:54:ba:ff:69:ee:a5:c2:39:ba:7a:dd:52:
ad:0c:82:69:ab:ce:59:a7:60:7d:5a:5d:68:b2:d1:
a3:93:02:29:bb:18:2e:30:40:10:43:23:fa:f0:d8:
be:8f:6b:65:7e:3d:b1:55:40:34:fd:56:df:67:0c:
ed:3e:8a:ec:06:eb:bf:63:b6:e4:9b:2c:cf:f3:69:
28:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:72:8D:9E:89:46:AD:00:E6:9D:F9:3B:22:33:64:B1:48:A9:57:92
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/B3KNnolGrQDmnfk7IjNksUipV5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.100.0/24
87.107.157.0/24
Signature Algorithm: sha256WithRSAEncryption
57:6c:5c:31:b1:51:55:a4:07:58:08:f5:6a:a8:9b:31:35:b2:
a6:cd:9d:45:ad:ca:43:d8:79:7a:8e:24:7a:4a:25:60:32:4d:
6c:64:85:60:6b:b9:d9:af:58:a9:33:04:77:7e:d2:cb:4b:db:
ed:5b:96:90:4e:8b:c6:e9:ec:22:63:37:70:18:eb:b8:d8:da:
a0:54:08:ca:94:42:54:f7:6f:d9:8a:44:d7:e4:7e:5a:98:3e:
ba:be:ca:f7:f2:6a:37:39:33:82:bc:fd:b9:8c:4e:f3:bc:a8:
08:39:a1:1c:45:e9:b4:a3:6d:52:95:8d:ec:fb:bd:13:28:4a:
ec:4c:61:c1:f3:e9:41:a7:95:c7:2b:e0:45:08:e8:fa:cb:34:
15:4c:60:7d:12:2f:26:49:f1:60:22:16:1c:e2:c2:ce:96:65:
48:c8:db:7c:81:ae:ce:5e:a4:8e:c1:65:b0:16:13:c7:ce:33:
22:1f:4e:f5:2d:a2:62:26:31:42:d1:2b:8b:0b:78:59:d5:d8:
6d:0d:bd:28:81:e3:a3:59:6c:ee:0c:b2:39:7f:1e:3e:64:6f:
70:15:77:f5:6a:a8:91:b2:f7:60:2f:46:c3:79:23:71:98:e9:
32:46:f1:5b:8d:66:7c:84:71:f4:83:e8:c6:ce:2b:35:c7:30:
88:12:68:6e
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZHRQ259n+hkn9d4VP2JUx0gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjQwOTA4MTA1MjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzcyOGQ5ZTg5NDZhZDAwZTY5ZGY5M2IyMjMzNjRiMTQ4YTk1NzkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg57QY2zHigjaEUC4a5rffK82J95+
s7HesSCrgdN82aiVgtBJcxoXNoGkwpcTmRPh+o/kjAp0LypNwrsoGoAnor/75jPc
oRYMRsM4U+Raqr8BfmdVnFDXdQa7yXv9t2+ZoUMU7qDPx2tl0bcb5+bd9XJq8QLl
uBldGSL6bAxDJdPSWWwYHjGYc29G0OenXWCua/QNXDR0T6DF0yOPlvCr8xMxtLzJ
38zjVKmhAlk6t8m4BQv53XZUuv9p7qXCObp63VKtDIJpq85Zp2B9Wl1ostGjkwIp
uxguMEAQQyP68Ni+j2tlfj2xVUA0/VbfZwztPorsBuu/Y7bkmyzP82korQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAdyjZ6JRq0A5p35OyIzZLFIqVeSMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvQjNLTm5vbEdyUURtbmZrN0lqTmtzVWlwVjVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAV2tkAwQA
V2udMA0GCSqGSIb3DQEBCwUAA4IBAQBXbFwxsVFVpAdYCPVqqJsxNbKmzZ1FrcpD
2Hl6jiR6SiVgMk1sZIVga7nZr1ipMwR3ftLLS9vtW5aQTovG6ewiYzdwGOu42Nqg
VAjKlEJU92/ZikTX5H5amD66vsr38mo3OTOCvP25jE7zvKgIOaEcRem0o21SlY3s
+70TKErsTGHB8+lBp5XHK+BFCOj6yzQVTGB9Ei8mSfFgIhYc4sLOlmVIyNt8ga7O
XqSOwWWwFhPHzjMiH071LaJiJjFC0SuLC3hZ1dhtDb0ogeOjWWzuDLI5fx4+ZG9w
FXf1aqiRsvdgL0bDeSNxmOkyRvFbjWZ8hHH0g+jGzis1xzCIEmhu
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:55:35 2024 by rpki-client on console-fra.rpki-client.org