Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/cnHmmmdCFzElUTzZaOIpw6nliGo.roa
File: cnHmmmdCFzElUTzZaOIpw6nliGo.roa (raw, json)
Hash identifier: Qim2oyL9IwHnpFY50u+nNiS+sATSlwMud38U0O8C+68=
Subject key identifier: 72:71:E6:9A:67:42:17:31:25:51:3C:D9:68:E2:29:C3:A9:E5:88:6A
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0190EAAD9C97F1A3628E14D622100A591AB2
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/cnHmmmdCFzElUTzZaOIpw6nliGo.roa
Signing time: Thu 25 Jul 2024 16:16:04 +0000
ROA not before: Thu 25 Jul 2024 16:16:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50340
IP address blocks: 45.130.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ea:ad:9c:97:f1:a3:62:8e:14:d6:22:10:0a:59:1a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jul 25 16:16:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7271e69a6742173125513cd968e229c3a9e5886a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ec:bf:ef:5f:47:47:39:e0:d4:ff:d5:f7:64:
d3:fa:8f:e4:27:e7:a6:8a:a6:73:28:c5:4e:92:2d:
65:4b:79:f0:b6:60:a3:3f:61:63:62:e6:fa:76:2e:
fc:ec:67:0b:b9:f7:00:6b:67:56:02:76:50:9a:98:
cd:c5:4f:fe:6e:33:f2:9f:60:bd:17:0b:1a:b1:cb:
f7:a5:d6:52:06:32:b1:72:fa:3c:42:0b:f3:97:ad:
0c:37:d0:5e:1b:30:39:b5:bb:30:21:36:82:39:8e:
1e:f8:df:1f:00:9d:36:5b:b5:45:f7:24:c4:dd:ab:
4f:d1:e5:e3:f4:5d:b2:7e:10:29:77:09:18:8c:3e:
37:e4:f2:83:36:bc:ea:b5:1e:2c:63:92:61:fc:11:
14:e5:3c:9c:7e:e7:a7:8f:54:46:0c:b7:ce:95:5e:
82:90:a3:22:14:e3:65:47:44:1c:d6:07:67:60:c4:
52:f7:24:96:94:5c:8c:89:6c:eb:a5:c4:51:51:23:
2a:c1:56:68:33:4b:3a:ac:a7:f8:0d:0d:13:c3:df:
7e:b7:cb:7e:ec:72:1d:a2:1e:30:24:68:df:de:e1:
2b:4a:1f:2c:03:6a:80:cd:75:20:78:c9:e8:e9:24:
b6:cb:9d:5a:cc:25:f6:04:52:d5:a6:82:d5:89:89:
7a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:71:E6:9A:67:42:17:31:25:51:3C:D9:68:E2:29:C3:A9:E5:88:6A
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/cnHmmmdCFzElUTzZaOIpw6nliGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.145.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:99:29:ab:35:3a:5f:c8:1e:35:c5:72:dd:e0:cc:9c:21:3a:
5a:80:a5:04:28:f6:12:e4:0b:55:7c:ef:d6:04:f6:41:99:6d:
cf:4c:25:87:67:f0:db:22:08:97:ae:cb:11:b3:35:77:bd:72:
f7:e5:45:ae:00:84:e1:86:c3:64:7b:7a:d6:7d:fd:b1:3f:50:
65:d5:06:62:70:75:c7:16:c5:59:e2:ad:c7:de:6a:57:0e:56:
cc:53:69:ec:da:19:39:af:9a:7c:ad:ee:51:a9:79:a9:51:5a:
82:bd:b9:9d:ac:2f:80:4c:fb:dd:ab:ba:5c:4a:46:16:24:00:
8b:16:22:cb:4b:66:ca:5b:dd:ac:14:ef:8a:f1:e1:bb:f7:a5:
d6:10:f6:0e:12:97:e2:43:47:82:10:7f:fd:fc:d3:8d:f0:69:
1a:6d:34:d4:c3:e7:61:38:08:08:8a:32:5c:26:86:fe:43:65:
2e:b1:c9:29:2b:9d:c1:98:9d:3e:28:62:9a:0a:c7:dc:c0:73:
d3:74:2c:c5:83:e9:bb:3e:ec:1e:4a:52:0a:8f:44:e3:06:0b:
9f:71:2c:c5:b6:f3:c9:63:bd:08:5c:21:67:ac:f5:6a:8f:86:
53:39:ab:79:0b:1b:b9:d7:2b:26:b7:b3:a5:d3:f0:db:ba:17:
f2:51:05:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDqrZyX8aNijhTWIhAKWRqyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjQwNzI1MTYxNjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjcxZTY5YTY3NDIxNzMxMjU1MTNjZDk2OGUyMjljM2E5ZTU4ODZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uy/719HRzng1P/V92TT+o/kJ+em
iqZzKMVOki1lS3nwtmCjP2FjYub6di787GcLufcAa2dWAnZQmpjNxU/+bjPyn2C9
Fwsascv3pdZSBjKxcvo8Qgvzl60MN9BeGzA5tbswITaCOY4e+N8fAJ02W7VF9yTE
3atP0eXj9F2yfhApdwkYjD435PKDNrzqtR4sY5Jh/BEU5Tycfuenj1RGDLfOlV6C
kKMiFONlR0Qc1gdnYMRS9ySWlFyMiWzrpcRRUSMqwVZoM0s6rKf4DQ0Tw99+t8t+
7HIdoh4wJGjf3uErSh8sA2qAzXUgeMno6SS2y51azCX2BFLVpoLViYl6YQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHJx5ppnQhcxJVE82WjiKcOp5YhqMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvY25IbW1tZENGekVsVVR6WmFPSXB3Nm5saUdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYKRMA0G
CSqGSIb3DQEBCwUAA4IBAQBOmSmrNTpfyB41xXLd4MycITpagKUEKPYS5AtVfO/W
BPZBmW3PTCWHZ/DbIgiXrssRszV3vXL35UWuAIThhsNke3rWff2xP1Bl1QZicHXH
FsVZ4q3H3mpXDlbMU2ns2hk5r5p8re5RqXmpUVqCvbmdrC+ATPvdq7pcSkYWJACL
FiLLS2bKW92sFO+K8eG796XWEPYOEpfiQ0eCEH/9/NON8GkabTTUw+dhOAgIijJc
Job+Q2UusckpK53BmJ0+KGKaCsfcwHPTdCzFg+m7PuweSlIKj0TjBgufcSzFtvPJ
Y70IXCFnrPVqj4ZTOat5Cxu51ysmt7Ol0/DbuhfyUQXf
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:41:23 2024 by rpki-client on console-ams.rpki-client.org