Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/s482jg2Oa7W74vZbv0Bwkp6gbWc.roa
File: s482jg2Oa7W74vZbv0Bwkp6gbWc.roa (raw, json)
Hash identifier: nu/OYs/eIJqsPfUcncksvc/V1BS8k+VU2WqajiX3xuM=
Subject key identifier: B3:8F:36:8E:0D:8E:6B:B5:BB:E2:F6:5B:BF:40:70:92:9E:A0:6D:67
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 01942369D31695E565F690F795CE7984D3DA
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/s482jg2Oa7W74vZbv0Bwkp6gbWc.roa
Signing time: Wed 01 Jan 2025 19:48:45 +0000
ROA not before: Wed 01 Jan 2025 19:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 45.80.221.0/24 maxlen: 24
45.80.222.0/24 maxlen: 24
45.80.223.0/24 maxlen: 24
178.23.185.0/24 maxlen: 24
194.62.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 12:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:d3:16:95:e5:65:f6:90:f7:95:ce:79:84:d3:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 19:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b38f368e0d8e6bb5bbe2f65bbf4070929ea06d67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e3:2d:fd:12:a8:df:87:a2:87:ec:32:db:46:
9f:2e:2d:4b:52:c4:5b:a3:36:6b:a1:1d:f5:1f:15:
1a:49:66:75:78:88:89:e3:a3:94:4d:7a:e9:bd:83:
d4:94:ec:c3:62:08:74:95:cf:ad:c6:36:99:b1:cf:
82:0d:2a:fd:c2:9b:6d:ca:07:2d:ac:53:19:f5:c9:
3d:24:23:7b:81:75:02:47:ab:da:e9:9c:6f:09:f9:
76:e7:d6:db:af:e3:5b:19:b0:4a:88:28:56:6b:6c:
a9:25:a4:2a:c9:1b:b2:92:3b:ec:3d:be:bc:ea:91:
ad:67:7d:c4:66:e3:16:15:7f:ad:ce:d9:1f:44:5a:
84:67:6f:55:22:c4:70:10:ae:9b:ea:89:e2:0b:fc:
ef:b5:56:35:22:58:e4:f9:29:14:84:e7:c1:1f:52:
7b:5a:d3:70:23:59:ac:20:9d:71:f5:96:db:39:f3:
8b:59:4b:aa:89:c7:0e:ce:d6:f7:ee:54:6e:8f:f4:
e1:dc:26:79:2b:39:4e:97:96:a3:74:4d:eb:4a:fd:
9c:6d:ee:9e:ba:22:75:9c:9c:fc:76:8a:ae:ed:59:
06:e7:25:95:e2:b2:7b:dc:33:44:e0:f9:16:20:8b:
66:34:0a:6b:67:54:9e:0e:9b:bb:33:8a:4f:ec:12:
a7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8F:36:8E:0D:8E:6B:B5:BB:E2:F6:5B:BF:40:70:92:9E:A0:6D:67
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/s482jg2Oa7W74vZbv0Bwkp6gbWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.221.0-45.80.223.255
178.23.185.0/24
194.62.18.0/24
Signature Algorithm: sha256WithRSAEncryption
07:55:66:72:78:66:3e:1f:ab:f4:42:c7:b4:ec:b7:ee:39:b5:
8f:ff:11:00:f0:2d:8e:b7:1c:db:f3:fa:25:89:d8:05:7b:c3:
fb:e7:21:2d:c6:7e:65:41:af:07:b6:f9:56:f6:9d:cf:ac:53:
9f:d1:ad:a1:55:71:da:05:db:3b:6b:6b:38:ff:83:7c:ff:59:
16:45:22:4f:63:da:5d:74:4f:67:04:21:53:6e:e1:5d:54:51:
df:03:71:ed:18:aa:49:69:80:2c:13:79:f5:c9:92:d8:34:5a:
83:c2:0a:32:03:23:d1:29:ac:be:57:db:c0:c4:7c:38:0d:75:
5e:11:f7:29:c4:da:92:7d:0a:98:83:9e:8f:b1:d0:2d:c1:e3:
e4:41:1d:ef:db:44:53:f0:19:19:ae:eb:b3:6a:e0:d8:fe:52:
87:aa:d1:21:a0:e6:0f:7a:77:32:88:6a:a6:b3:53:34:ab:10:
da:49:88:db:90:4b:02:1a:2a:cc:b8:ba:2b:49:f7:7b:11:b4:
8d:46:1e:35:7a:fe:b7:e6:57:4e:4a:34:c2:5d:47:65:70:c6:
99:1f:fe:9d:fd:70:bb:49:84:29:b0:38:fb:98:98:e8:3b:d7:
c6:9f:64:3b:5c:24:4b:57:c8:cb:41:9f:37:a6:28:f6:7f:22:
9d:85:e0:a8
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAZQjadMWleVl9pD3lc55hNPaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjUwMTAxMTk0ODQ1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzhmMzY4ZTBkOGU2YmI1YmJlMmY2NWJiZjQwNzA5MjllYTA2ZDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOMt/RKo34eih+wy20afLi1LUsRb
ozZroR31HxUaSWZ1eIiJ46OUTXrpvYPUlOzDYgh0lc+txjaZsc+CDSr9wpttygct
rFMZ9ck9JCN7gXUCR6va6ZxvCfl259bbr+NbGbBKiChWa2ypJaQqyRuykjvsPb68
6pGtZ33EZuMWFX+tztkfRFqEZ29VIsRwEK6b6oniC/zvtVY1Iljk+SkUhOfBH1J7
WtNwI1msIJ1x9ZbbOfOLWUuqiccOztb37lRuj/Th3CZ5KzlOl5ajdE3rSv2cbe6e
uiJ1nJz8doqu7VkG5yWV4rJ73DNE4PkWIItmNAprZ1SeDpu7M4pP7BKn0wIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFLOPNo4Njmu1u+L2W79AcJKeoG1nMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvczQ4MmpnMk9hN1c3NHZaYnYwQndrcDZnYldjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBAAtUN0D
BAUtUMADBACyF7kDBADCPhIwDQYJKoZIhvcNAQELBQADggEBAAdVZnJ4Zj4fq/RC
x7Tst+45tY//EQDwLY63HNvz+iWJ2AV7w/vnIS3GfmVBrwe2+Vb2nc+sU5/RraFV
cdoF2ztrazj/g3z/WRZFIk9j2l10T2cEIVNu4V1UUd8Dce0YqklpgCwTefXJktg0
WoPCCjIDI9EprL5X28DEfDgNdV4R9ynE2pJ9CpiDno+x0C3B4+RBHe/bRFPwGRmu
67Nq4Nj+Uoeq0SGg5g96dzKIaqazUzSrENpJiNuQSwIaKsy4uitJ93sRtI1GHjV6
/rfmV05KNMJdR2Vwxpkf/p39cLtJhCmwOPuYmOg718afZDtcJEtXyMtBnzemKPZ/
Ip2F4Kg=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:19 2025 by rpki-client