Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/9Dd9TqjxjsUW9OEPgT-f5Eu1-vk.roa
File: 9Dd9TqjxjsUW9OEPgT-f5Eu1-vk.roa (raw, json)
Hash identifier: QKtBuELK+ZTXtRfMzQCby4woIdqOZYkzCtP/xKQMsqQ=
Subject key identifier: F4:37:7D:4E:A8:F1:8E:C5:16:F4:E1:0F:81:3F:9F:E4:4B:B5:FA:F9
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018FDD0ADCE400D4EE056A2C51F621F1D0D6
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/9Dd9TqjxjsUW9OEPgT-f5Eu1-vk.roa
Signing time: Mon 03 Jun 2024 07:40:27 +0000
ROA not before: Mon 03 Jun 2024 07:40:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212219
IP address blocks: 45.136.6.0/24 maxlen: 24
45.141.151.0/24 maxlen: 24
45.147.46.0/24 maxlen: 24
45.147.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dd:0a:dc:e4:00:d4:ee:05:6a:2c:51:f6:21:f1:d0:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jun 3 07:40:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4377d4ea8f18ec516f4e10f813f9fe44bb5faf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:93:48:4a:5f:7e:7c:b8:0f:13:2d:bf:c4:ea:
c8:a8:9f:aa:3b:ff:f2:96:15:dd:c0:c4:bc:ba:25:
e8:eb:60:9e:7e:1f:cd:f1:da:f3:cc:4f:06:37:46:
ba:54:33:e7:2f:fa:54:d3:90:5f:60:f2:b9:5f:87:
5a:7a:6b:2b:89:b1:96:de:94:a8:ec:08:53:76:e2:
4d:71:ba:ff:d2:5c:78:79:fd:17:8b:79:9a:d3:eb:
be:4d:95:33:70:e1:71:02:72:84:73:a5:29:68:aa:
42:ea:72:aa:c5:c6:78:33:a3:2a:8d:10:39:7f:c9:
c5:bd:77:a7:35:b5:46:47:89:6e:1f:d5:87:87:7c:
b4:f8:4a:ff:f5:02:cf:2b:4c:f0:93:36:16:be:21:
f6:bb:bc:a0:60:dc:19:68:f7:63:ae:02:e8:9c:d4:
1d:27:a7:ab:3f:81:b5:b4:68:fa:52:80:f8:c9:36:
00:8b:36:5c:04:68:34:b3:e6:b9:2d:4f:db:42:d1:
f6:9d:e0:94:a0:b0:70:fd:8a:1b:95:e5:fa:da:d2:
8a:e2:73:a8:3a:f1:94:d4:2b:f0:f4:c0:2f:e4:15:
c5:52:79:b9:b6:c8:03:0a:4d:60:61:59:75:bc:cd:
44:1c:c5:ab:52:db:a8:59:06:63:de:1b:45:3e:be:
9a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:37:7D:4E:A8:F1:8E:C5:16:F4:E1:0F:81:3F:9F:E4:4B:B5:FA:F9
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/9Dd9TqjxjsUW9OEPgT-f5Eu1-vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.6.0/24
45.141.151.0/24
45.147.46.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:2f:20:cc:e2:e5:bb:ed:5b:ac:e2:df:ba:d5:fd:42:1b:b4:
9d:81:5f:a2:c9:d2:04:69:7c:dd:05:08:e5:b1:ca:50:b5:e6:
a9:fe:72:58:21:a0:79:bb:64:78:15:02:ec:ca:2e:09:fa:79:
8a:cf:6d:07:32:b3:d5:c9:29:02:32:95:ba:6c:a4:90:b2:ee:
61:a7:7e:98:b2:c9:58:00:d4:78:86:e1:f0:7f:99:f8:92:10:
54:54:bb:4a:88:20:b2:9b:22:56:00:eb:ff:f3:16:c4:c0:f7:
e6:7b:7d:23:e0:8a:d8:6f:e5:23:76:1e:b3:98:d5:3f:e0:b2:
e9:b8:a7:2c:16:2c:38:57:d8:d6:c6:e6:65:a4:47:5b:4d:56:
17:30:b7:86:42:cb:2d:48:4b:50:fb:5c:0a:b4:69:fc:dc:5a:
3c:64:7a:bc:da:74:85:c0:e3:7c:cb:c7:49:de:07:56:08:ce:
1f:eb:2e:b7:65:f5:c0:00:b6:2c:99:f2:55:37:04:da:1a:40:
0d:29:78:f5:c9:b8:cd:03:77:34:c9:a7:48:20:8f:10:42:88:
1b:4b:f0:66:c4:78:6c:d8:e8:24:4a:74:de:77:de:89:2d:94:
d0:8d:00:18:33:4b:bd:09:59:d6:b6:7a:bc:79:e6:2e:15:22:
67:3b:43:17
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY/dCtzkANTuBWosUfYh8dDWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQwNjAzMDc0MDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDM3N2Q0ZWE4ZjE4ZWM1MTZmNGUxMGY4MTNmOWZlNDRiYjVmYWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJNISl9+fLgPEy2/xOrIqJ+qO//y
lhXdwMS8uiXo62Cefh/N8drzzE8GN0a6VDPnL/pU05BfYPK5X4daemsribGW3pSo
7AhTduJNcbr/0lx4ef0Xi3ma0+u+TZUzcOFxAnKEc6UpaKpC6nKqxcZ4M6MqjRA5
f8nFvXenNbVGR4luH9WHh3y0+Er/9QLPK0zwkzYWviH2u7ygYNwZaPdjrgLonNQd
J6erP4G1tGj6UoD4yTYAizZcBGg0s+a5LU/bQtH2neCUoLBw/YobleX62tKK4nOo
OvGU1Cvw9MAv5BXFUnm5tsgDCk1gYVl1vM1EHMWrUtuoWQZj3htFPr6ahQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPQ3fU6o8Y7FFvThD4E/n+RLtfr5MB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvOURkOVRxanhqc1VXOU9FUGdULWY1RXUxLXZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALYgGAwQA
LY2XAwQBLZMuMA0GCSqGSIb3DQEBCwUAA4IBAQCKLyDM4uW77Vus4t+61f1CG7Sd
gV+iydIEaXzdBQjlscpQteap/nJYIaB5u2R4FQLsyi4J+nmKz20HMrPVySkCMpW6
bKSQsu5hp36YsslYANR4huHwf5n4khBUVLtKiCCymyJWAOv/8xbEwPfme30j4IrY
b+Ujdh6zmNU/4LLpuKcsFiw4V9jWxuZlpEdbTVYXMLeGQsstSEtQ+1wKtGn83Fo8
ZHq82nSFwON8y8dJ3gdWCM4f6y63ZfXAALYsmfJVNwTaGkANKXj1ybjNA3c0yadI
II8QQogbS/BmxHhs2OgkSnTed96JLZTQjQAYM0u9CVnWtnq8eeYuFSJnO0MX
-----END CERTIFICATE-----
Generated at Mon Nov 25 20:48:02 2024 by rpki-client on console-fra.rpki-client.org