Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/98GVg1mh_y7Rs2b0j7Ez6NTRauU.roa
File: 98GVg1mh_y7Rs2b0j7Ez6NTRauU.roa (raw, json)
Hash identifier: 6q7yCLJCfxnyJMzQEg84+Xz1ZQSF7/CcqmmhIj4zVZY=
Subject key identifier: F7:C1:95:83:59:A1:FF:2E:D1:B3:66:F4:8F:B1:33:E8:D4:D1:6A:E5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018F4F3CD1885516F100BB46575EC9BA3C31
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/98GVg1mh_y7Rs2b0j7Ez6NTRauU.roa
Signing time: Mon 06 May 2024 18:48:56 +0000
ROA not before: Mon 06 May 2024 18:48:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202636
IP address blocks: 37.32.96.0/23 maxlen: 23
45.90.238.0/24 maxlen: 24
45.134.87.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
93.189.121.0/24 maxlen: 24
93.189.122.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
185.150.77.0/24 maxlen: 24
185.150.78.0/23 maxlen: 23
185.179.233.0/24 maxlen: 24
185.179.235.0/24 maxlen: 24
185.191.44.0/22 maxlen: 22
185.199.55.0/24 maxlen: 24
185.218.18.0/24 maxlen: 24
185.227.205.0/24 maxlen: 24
185.239.254.0/24 maxlen: 24
185.248.200.0/22 maxlen: 24
185.252.44.0/22 maxlen: 22
194.35.41.0/24 maxlen: 24
194.38.56.0/22 maxlen: 24
194.41.116.0/23 maxlen: 23
194.41.118.0/23 maxlen: 23
212.80.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4f:3c:d1:88:55:16:f1:00:bb:46:57:5e:c9:ba:3c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 6 18:48:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7c1958359a1ff2ed1b366f48fb133e8d4d16ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:da:1c:61:67:b5:12:20:6f:5e:0f:f0:4c:c2:
cd:e6:39:07:1a:84:4a:00:66:d0:71:94:5c:95:f4:
b4:5d:34:0e:47:08:69:3a:17:c9:27:c3:0b:21:20:
47:c6:2b:1a:48:32:37:2a:87:81:42:cd:5c:bd:a3:
b5:91:a4:2c:43:3e:00:3b:c5:ad:67:ed:56:0c:ef:
3b:cc:98:c6:9d:ad:30:92:15:52:a9:72:3e:e1:06:
ac:8a:aa:ef:22:1f:9d:50:5f:5b:b3:08:36:e3:e1:
92:d1:46:27:da:db:a0:53:b0:e7:ee:40:85:59:bb:
05:96:dc:cf:56:c4:4f:d5:71:3a:09:e0:50:a2:1a:
dd:84:3b:39:b1:78:c2:dc:49:4b:3d:67:76:ba:30:
7f:3b:04:77:96:3f:e1:1d:89:5c:1a:e0:c9:a9:15:
b7:30:69:1d:cd:fb:84:ca:a3:9c:be:87:5c:d3:b7:
7e:5a:57:b0:3f:cc:3b:65:a5:db:06:87:3b:6e:c1:
27:da:a1:24:c9:b8:b7:4f:76:ad:6a:70:b5:19:cf:
48:39:2f:4e:7e:c3:b0:47:dc:b1:08:b5:0a:e6:18:
51:87:fe:d1:85:c8:7f:ad:d9:77:da:a1:9e:51:b1:
02:85:92:b7:a4:7f:45:da:a5:5c:5f:8a:d6:2e:8e:
9d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C1:95:83:59:A1:FF:2E:D1:B3:66:F4:8F:B1:33:E8:D4:D1:6A:E5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/98GVg1mh_y7Rs2b0j7Ez6NTRauU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.96.0/23
45.90.238.0/24
45.134.87.0/24
93.92.228.0/22
93.189.121.0-93.189.122.255
95.214.144.0/22
185.150.77.0-185.150.79.255
185.179.233.0/24
185.179.235.0/24
185.191.44.0/22
185.199.55.0/24
185.218.18.0/24
185.227.205.0/24
185.239.254.0/24
185.248.200.0/22
185.252.44.0/22
194.35.41.0/24
194.38.56.0/22
194.41.116.0/22
212.80.208.0/22
Signature Algorithm: sha256WithRSAEncryption
58:93:e7:ca:30:db:60:79:10:65:bf:0a:3c:0a:54:31:34:29:
63:bc:6e:f6:78:b4:b2:9d:a1:75:f7:64:c1:cd:9e:b4:86:8c:
52:2e:26:eb:8d:13:10:ee:e4:47:8f:8a:c2:4d:87:26:f9:10:
9d:1a:39:c4:ba:2a:d6:24:54:d0:26:6a:32:15:df:42:05:23:
cc:2e:56:18:18:5f:99:8f:f3:c7:25:47:92:dd:ba:7f:ed:3a:
6b:46:c5:76:af:ec:31:d1:68:51:46:c6:6c:7a:eb:4e:27:0d:
b0:66:e0:c9:3b:ad:33:c3:fc:73:e0:32:54:ba:c1:1e:3c:e7:
83:f7:95:22:a7:ed:ae:26:b2:a2:43:b6:84:7a:02:d9:0e:53:
b1:6d:e4:d2:ad:0b:a9:a8:c4:0e:ca:78:9a:05:2e:ae:e8:c0:
73:5a:c2:d1:73:18:f9:56:16:62:59:ba:d6:e6:c3:6b:a5:06:
90:ce:b3:8e:95:2e:e0:07:3d:55:42:a2:df:c1:4e:cf:a0:fb:
b0:e7:23:68:b2:38:9d:11:b7:03:c0:dd:ed:0c:1e:b1:ac:39:
23:92:10:f3:cd:d2:02:41:9c:c4:c6:9b:b6:fa:6d:21:fd:60:
cc:e7:70:69:45:96:4b:6c:5e:99:2b:cb:44:e8:bc:21:59:79:
15:dc:34:fe
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgISAY9PPNGIVRbxALtGV17JujwxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwNTA2MTg0ODU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2MxOTU4MzU5YTFmZjJlZDFiMzY2ZjQ4ZmIxMzNlOGQ0ZDE2YWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNocYWe1EiBvXg/wTMLN5jkHGoRK
AGbQcZRclfS0XTQORwhpOhfJJ8MLISBHxisaSDI3KoeBQs1cvaO1kaQsQz4AO8Wt
Z+1WDO87zJjGna0wkhVSqXI+4QasiqrvIh+dUF9bswg24+GS0UYn2tugU7Dn7kCF
WbsFltzPVsRP1XE6CeBQohrdhDs5sXjC3ElLPWd2ujB/OwR3lj/hHYlcGuDJqRW3
MGkdzfuEyqOcvodc07d+WlewP8w7ZaXbBoc7bsEn2qEkybi3T3atanC1Gc9IOS9O
fsOwR9yxCLUK5hhRh/7Rhch/rdl32qGeUbEChZK3pH9F2qVcX4rWLo6d+wIDAQAB
o4ICkDCCAowwHQYDVR0OBBYEFPfBlYNZof8u0bNm9I+xM+jU0WrlMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvOThHVmcxbWhfeTdSczJiMGo3RXo2TlRSYXVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjCBjwQCAAEwgYgDBAEl
IGADBAAtWu4DBAAthlcDBAJdXOQwDAMEAF29eQMEAF29egMEAl/WkDAMAwQAuZZN
AwQEuZZAAwQAubPpAwQAubPrAwQCub8sAwQAucc3AwQAudoSAwQAuePNAwQAue/+
AwQCufjIAwQCufwsAwQAwiMpAwQCwiY4AwQCwil0AwQC1FDQMA0GCSqGSIb3DQEB
CwUAA4IBAQBYk+fKMNtgeRBlvwo8ClQxNCljvG72eLSynaF192TBzZ60hoxSLibr
jRMQ7uRHj4rCTYcm+RCdGjnEuirWJFTQJmoyFd9CBSPMLlYYGF+Zj/PHJUeS3bp/
7TprRsV2r+wx0WhRRsZseutOJw2wZuDJO60zw/xz4DJUusEePOeD95Uip+2uJrKi
Q7aEegLZDlOxbeTSrQupqMQOyniaBS6u6MBzWsLRcxj5VhZiWbrW5sNrpQaQzrOO
lS7gBz1VQqLfwU7PoPuw5yNosjidEbcDwN3tDB6xrDkjkhDzzdICQZzExpu2+m0h
/WDM53BpRZZLbF6ZK8tE6LwhWXkV3DT+
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:27:30 2024 by rpki-client on console-ams.rpki-client.org