Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/37iii381buSWvga8TxKKF25_Wmw.roa
File: 37iii381buSWvga8TxKKF25_Wmw.roa (raw, json)
Hash identifier: 5U4ixFbWqJrZr3brvTJnd+5mrSVKL3t+m8sddCsZlG8=
Subject key identifier: DF:B8:A2:8B:7F:35:6E:E4:96:BE:06:BC:4F:12:8A:17:6E:7F:5A:6C
Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c
Certificate serial: 0191B1626A8724592A5C81DEBCAC0882546D
Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/37iii381buSWvga8TxKKF25_Wmw.roa
Signing time: Mon 02 Sep 2024 06:18:22 +0000
ROA not before: Mon 02 Sep 2024 06:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209801
IP address blocks: 81.6.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b1:62:6a:87:24:59:2a:5c:81:de:bc:ac:08:82:54:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c
Validity
Not Before: Sep 2 06:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfb8a28b7f356ee496be06bc4f128a176e7f5a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b3:de:76:f6:90:76:97:d1:17:30:9d:6a:29:
15:e6:ab:9a:01:40:d1:c2:06:c2:e9:15:9e:22:4e:
c3:e8:ff:58:4c:65:bd:c6:d8:de:09:5b:d0:cc:e5:
82:5f:25:b2:29:b4:e1:40:3e:51:63:7b:72:90:f6:
ef:c2:3f:07:e4:2d:87:b4:8e:78:91:09:d9:d7:9f:
74:3b:75:02:8d:92:d5:f8:b1:48:c3:2f:d9:27:86:
5a:67:81:13:f8:2a:ad:86:11:d7:6c:79:7f:e2:76:
27:f8:b5:dd:29:63:3a:ea:9d:6b:3f:9a:4e:e2:98:
39:a6:be:59:83:9b:34:91:ea:f0:c2:7d:21:a6:29:
9d:c5:ab:5c:1c:30:16:84:73:e7:68:3b:59:87:53:
71:fe:2a:12:13:af:57:cd:ce:b2:ec:ea:d2:a7:d2:
c9:6b:e1:39:bf:ba:83:78:4a:f3:bd:73:64:7c:0e:
27:58:01:43:2c:c8:96:da:b0:6d:71:94:b1:03:e2:
92:ca:1b:f7:4d:d0:49:56:39:16:fb:50:1c:d0:20:
a4:14:34:5f:ff:42:89:66:bc:11:57:e1:94:e5:dd:
6d:70:7c:7b:8a:20:ad:ea:db:b0:9d:51:88:43:ab:
33:b1:bc:7d:fd:9c:57:ef:32:f8:d5:ca:49:3f:7d:
cd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B8:A2:8B:7F:35:6E:E4:96:BE:06:BC:4F:12:8A:17:6E:7F:5A:6C
X509v3 Authority Key Identifier:
keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/37iii381buSWvga8TxKKF25_Wmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.6.133.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:f6:71:83:97:da:6f:ad:79:b2:ea:c1:c7:ab:84:aa:4b:48:
84:b8:b0:60:06:85:34:64:fb:fd:c6:c6:95:51:fa:ca:bf:08:
38:33:97:94:6f:6f:41:0a:96:65:99:68:1a:56:65:ba:b9:09:
0f:c0:77:13:ef:94:35:30:47:ea:65:41:c6:73:a7:dd:65:a2:
7c:0c:69:c6:63:a3:95:b5:75:9a:9f:df:fa:f9:9c:eb:f7:a2:
d2:d4:27:85:ca:76:41:1e:95:a0:99:ef:51:1c:77:8b:3f:f2:
ca:0b:7e:a0:2f:7f:37:46:27:b6:7d:87:fe:2a:ca:e2:b2:6e:
3b:0f:24:16:b7:91:4a:2d:7d:61:04:63:65:c6:9f:91:dc:bb:
bb:af:42:9c:30:26:91:3e:fb:3a:90:05:52:0f:04:d1:6b:f3:
30:18:c4:8e:f8:82:80:01:85:0f:f6:03:f8:17:51:62:80:ae:
57:83:85:7e:ef:1b:da:3b:a0:1f:4c:c4:13:47:9e:8b:dc:7f:
2c:54:95:4a:eb:11:e2:66:73:81:4d:3e:d9:5c:53:fd:7f:e6:
65:bc:b0:fa:f5:c5:bd:ef:3a:98:68:b7:84:56:23:2b:6b:2c:
3d:5a:26:63:71:ac:6b:b6:c4:b2:9c:1d:ba:37:4c:ea:df:4f:
ef:45:49:85
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGxYmqHJFkqXIHevKwIglRtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMDM0MGQyN2U0YjI0ZjkxMjQ5NzczMjJlZGIzNjk0MmUy
ZDE2MGMwHhcNMjQwOTAyMDYxODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZmI4YTI4YjdmMzU2ZWU0OTZiZTA2YmM0ZjEyOGExNzZlN2Y1YTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1rPedvaQdpfRFzCdaikV5quaAUDR
wgbC6RWeIk7D6P9YTGW9xtjeCVvQzOWCXyWyKbThQD5RY3tykPbvwj8H5C2HtI54
kQnZ1590O3UCjZLV+LFIwy/ZJ4ZaZ4ET+CqthhHXbHl/4nYn+LXdKWM66p1rP5pO
4pg5pr5Zg5s0kerwwn0hpimdxatcHDAWhHPnaDtZh1Nx/ioSE69Xzc6y7OrSp9LJ
a+E5v7qDeErzvXNkfA4nWAFDLMiW2rBtcZSxA+KSyhv3TdBJVjkW+1Ac0CCkFDRf
/0KJZrwRV+GU5d1tcHx7iiCt6tuwnVGIQ6szsbx9/ZxX7zL41cpJP33NSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN+4oot/NW7klr4GvE8Sihduf1psMB8GA1UdIwQY
MBaAFCMDQNJ+SyT5Ekl3Mi7bNpQuLRYMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAt
YjU3MDkwN2I1OWViLzEvMzdpaWkzODFidVNXdmdhOFR4S0tGMjVfV213LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS83YmRmNTItNmFjNS00YzI0LWJmZDAtYjU3MDkwN2I1OWVi
LzEvSXdOQTBuNUxKUGtTU1hjeUx0czJsQzR0Rmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUQaFMA0G
CSqGSIb3DQEBCwUAA4IBAQCt9nGDl9pvrXmy6sHHq4SqS0iEuLBgBoU0ZPv9xsaV
UfrKvwg4M5eUb29BCpZlmWgaVmW6uQkPwHcT75Q1MEfqZUHGc6fdZaJ8DGnGY6OV
tXWan9/6+Zzr96LS1CeFynZBHpWgme9RHHeLP/LKC36gL383Rie2fYf+Ksrism47
DyQWt5FKLX1hBGNlxp+R3Lu7r0KcMCaRPvs6kAVSDwTRa/MwGMSO+IKAAYUP9gP4
F1FigK5Xg4V+7xvaO6AfTMQTR56L3H8sVJVK6xHiZnOBTT7ZXFP9f+ZlvLD69cW9
7zqYaLeEViMrayw9WiZjcaxrtsSynB26N0zq30/vRUmF
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:50:58 2024 by rpki-client on console-ams.rpki-client.org