Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/iJgmCksHDvuX5oy6i5ymQ_h1b_I.roa
File: iJgmCksHDvuX5oy6i5ymQ_h1b_I.roa (raw, json)
Hash identifier: 57kFRXBBtNc89f7UOf52zagTnVywn95QQbrMLv0fnN4=
Subject key identifier: 88:98:26:0A:4B:07:0E:FB:97:E6:8C:BA:8B:9C:A6:43:F8:75:6F:F2
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0193264DC097AED538581847CFD3DADF9E04
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/iJgmCksHDvuX5oy6i5ymQ_h1b_I.roa
Signing time: Wed 13 Nov 2024 16:14:09 +0000
ROA not before: Wed 13 Nov 2024 16:14:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30633
IP address blocks: 45.129.127.0/24 maxlen: 24
45.135.37.0/24 maxlen: 24
103.139.50.0/24 maxlen: 24
193.164.199.0/24 maxlen: 24
2a06:1184:33::/48 maxlen: 48
2a0a:2d06:33::/48 maxlen: 48
2a0c:7886:33::/48 maxlen: 48
2a0e:1a80:2541::/48 maxlen: 48
2a0e:1a83:66::/48 maxlen: 48
2a0e:c780::/32 maxlen: 32
2a0e:f201:1::/48 maxlen: 48
2a0e:f600:6c::/48 maxlen: 48
2a0f:1e00:123::/48 maxlen: 48
2a0f:1e00:456::/48 maxlen: 48
2a0f:1e00:987::/48 maxlen: 48
2a0f:1e00:abc::/48 maxlen: 48
2a0f:1e00:def9::/48 maxlen: 48
2a0f:1e01:1::/48 maxlen: 48
2a0f:1e81:2::/48 maxlen: 48
2a0f:1e81:1293::/48 maxlen: 48
2a0f:1e81:4319::/48 maxlen: 48
2a0f:1e81:92e8::/48 maxlen: 48
2a0f:1e81:a3d0::/48 maxlen: 48
2a0f:1e81:cdae::/48 maxlen: 48
2a0f:2e80::/29 maxlen: 29
2a0f:7d02:1::/48 maxlen: 48
2a0f:e1c6::/32 maxlen: 32
2a10:67c0::/29 maxlen: 29
2a10:6d40::/29 maxlen: 29
2a11:fd80::/29 maxlen: 29
2a12:ac40::/32 maxlen: 32
2a12:ac41::/32 maxlen: 32
2a12:ecc4:2213::/48 maxlen: 48
2a12:f540::/29 maxlen: 29
2a13:18c0:1::/48 maxlen: 48
2a13:9280::/32 maxlen: 32
2a13:e101:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:26:4d:c0:97:ae:d5:38:58:18:47:cf:d3:da:df:9e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 13 16:14:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8898260a4b070efb97e68cba8b9ca643f8756ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3e:d2:db:ba:78:e0:f5:76:f4:9a:42:e2:0f:
5c:cf:16:0c:d9:21:a5:cd:5d:af:9e:74:71:10:4e:
c0:67:4d:d9:e0:9b:bd:a6:f7:31:6a:d3:97:39:b2:
d2:4d:13:4e:37:89:89:9e:b8:10:ea:4c:3d:31:b2:
b5:a9:fd:be:cd:a4:7a:e7:80:6e:83:31:99:98:ad:
ff:ae:d3:24:b9:d0:0c:72:e9:0f:25:64:55:5f:23:
2e:13:9c:5d:de:2b:59:af:aa:29:e1:d8:29:80:d8:
5e:3f:66:05:e7:a1:8f:c7:9a:98:b2:9b:a5:0e:e7:
60:95:44:9b:bb:0b:fe:4c:aa:3e:f0:da:9f:ec:d7:
40:68:d2:97:e5:97:ac:38:e0:20:5d:67:d8:4b:05:
48:6e:12:ea:54:50:e4:c2:15:30:63:b7:2e:6f:ab:
4e:43:94:27:ca:12:a7:d4:e8:96:b3:44:f1:dc:41:
52:3e:1a:6a:d0:9f:d4:fc:25:a2:c6:16:be:70:dd:
9c:7f:64:c2:c4:ec:bf:64:ea:0f:93:0c:1c:df:c3:
e9:97:24:fa:4c:f9:91:14:07:1c:e4:72:35:51:df:
9c:55:7c:b4:d9:0a:bc:76:9b:bb:7f:25:56:c8:0f:
e1:73:a7:aa:10:33:0f:eb:7d:94:0a:26:64:20:ad:
79:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:98:26:0A:4B:07:0E:FB:97:E6:8C:BA:8B:9C:A6:43:F8:75:6F:F2
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/iJgmCksHDvuX5oy6i5ymQ_h1b_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.127.0/24
45.135.37.0/24
103.139.50.0/24
193.164.199.0/24
IPv6:
2a06:1184:33::/48
2a0a:2d06:33::/48
2a0c:7886:33::/48
2a0e:1a80:2541::/48
2a0e:1a83:66::/48
2a0e:c780::/32
2a0e:f201:1::/48
2a0e:f600:6c::/48
2a0f:1e00:123::/48
2a0f:1e00:456::/48
2a0f:1e00:987::/48
2a0f:1e00:abc::/48
2a0f:1e00:def9::/48
2a0f:1e01:1::/48
2a0f:1e81:2::/48
2a0f:1e81:1293::/48
2a0f:1e81:4319::/48
2a0f:1e81:92e8::/48
2a0f:1e81:a3d0::/48
2a0f:1e81:cdae::/48
2a0f:2e80::/29
2a0f:7d02:1::/48
2a0f:e1c6::/32
2a10:67c0::/29
2a10:6d40::/29
2a11:fd80::/29
2a12:ac40::/31
2a12:ecc4:2213::/48
2a12:f540::/29
2a13:18c0:1::/48
2a13:9280::/32
2a13:e101:2::/48
Signature Algorithm: sha256WithRSAEncryption
18:ce:85:67:f2:a7:87:b1:bc:65:49:ab:cd:3b:4b:5c:8f:c2:
0b:c7:fe:bf:1b:4d:4f:0b:1d:a7:5a:9b:b6:38:08:b7:de:bf:
9a:e5:05:40:9b:15:da:67:da:9e:0f:18:af:9a:e1:78:5b:97:
f2:0d:37:22:51:cf:e9:50:5e:ba:1c:29:fd:64:f2:56:cd:d4:
bb:1f:3a:a8:5b:81:4c:4c:57:7a:3d:36:f5:54:c1:c8:ec:ec:
8d:2e:35:f5:c9:2e:8a:b7:16:6b:df:bb:ce:1d:15:fe:b9:24:
70:92:d6:d5:30:4e:72:1b:02:10:28:b2:0f:dd:dc:e4:14:7b:
ea:57:c5:f0:08:0f:b4:f5:92:db:e9:21:43:47:69:93:83:f4:
e0:d7:71:90:0c:b0:30:33:b9:c5:2f:00:9b:59:af:8d:cd:e2:
b7:63:4e:50:a4:56:41:84:87:bf:d2:11:82:1c:42:be:20:b0:
4f:65:83:8e:33:1c:4c:05:f6:63:67:dd:27:6e:a2:16:9a:af:
3d:d3:9f:a9:0e:a8:e9:ef:47:2e:6b:97:76:1e:ec:ad:73:b7:
18:7e:4e:69:f3:f0:2d:2f:8b:4a:ea:9d:68:fa:7c:d1:bf:2c:
e4:4a:37:59:44:f2:f0:b4:e8:b1:b7:53:3a:a9:49:04:49:e6:
45:29:65:f9
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgISAZMmTcCXrtU4WBhHz9Pa354EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQxMTEzMTYxNDA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODk4MjYwYTRiMDcwZWZiOTdlNjhjYmE4YjljYTY0M2Y4NzU2ZmYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5D7S27p44PV29JpC4g9czxYM2SGl
zV2vnnRxEE7AZ03Z4Ju9pvcxatOXObLSTRNON4mJnrgQ6kw9MbK1qf2+zaR654Bu
gzGZmK3/rtMkudAMcukPJWRVXyMuE5xd3itZr6op4dgpgNheP2YF56GPx5qYspul
DudglUSbuwv+TKo+8Nqf7NdAaNKX5ZesOOAgXWfYSwVIbhLqVFDkwhUwY7cub6tO
Q5QnyhKn1OiWs0Tx3EFSPhpq0J/U/CWixha+cN2cf2TCxOy/ZOoPkwwc38PplyT6
TPmRFAcc5HI1Ud+cVXy02Qq8dpu7fyVWyA/hc6eqEDMP632UCiZkIK15hwIDAQAB
o4IDOzCCAzcwHQYDVR0OBBYEFIiYJgpLBw77l+aMuoucpkP4dW/yMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvaUpnbUNrc0hEdnVYNW95Nmk1eW1RX2gxYl9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBTwYIKwYBBQUHAQcBAf8EggE+MIIBOjAeBAIAATAYAwQA
LYF/AwQALYclAwQAZ4syAwQAwaTHMIIBFgQCAAIwggEOAwcAKgYRhAAzAwcAKgot
BgAzAwcAKgx4hgAzAwcAKg4agCVBAwcAKg4agwBmAwUAKg7HgAMHACoO8gEAAQMH
ACoO9gAAbAMHACoPHgABIwMHACoPHgAEVgMHACoPHgAJhwMHACoPHgAKvAMHACoP
HgDe+QMHACoPHgEAAQMHACoPHoEAAgMHACoPHoESkwMHACoPHoFDGQMHACoPHoGS
6AMHACoPHoGj0AMHACoPHoHNrgMFAyoPLoADBwAqD30CAAEDBQAqD+HGAwUDKhBn
wAMFAyoQbUADBQMqEf2AAwUBKhKsQAMHACoS7MQiEwMFAyoS9UADBwAqExjAAAED
BQAqE5KAAwcAKhPhAQACMA0GCSqGSIb3DQEBCwUAA4IBAQAYzoVn8qeHsbxlSavN
O0tcj8ILx/6/G01PCx2nWpu2OAi33r+a5QVAmxXaZ9qeDxivmuF4W5fyDTciUc/p
UF66HCn9ZPJWzdS7HzqoW4FMTFd6PTb1VMHI7OyNLjX1yS6KtxZr37vOHRX+uSRw
ktbVME5yGwIQKLIP3dzkFHvqV8XwCA+09ZLb6SFDR2mTg/Tg13GQDLAwM7nFLwCb
Wa+NzeK3Y05QpFZBhIe/0hGCHEK+ILBPZYOOMxxMBfZjZ90nbqIWmq8905+pDqjp
70cua5d2Huytc7cYfk5p8/AtL4tK6p1o+nzRvyzkSjdZRPLwtOixt1M6qUkESeZF
KWX5
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:57:09 2024 by rpki-client on console-ams.rpki-client.org