Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/W6jleUmzHDAXRkIvmsCsnYi_7zQ.roa
File: W6jleUmzHDAXRkIvmsCsnYi_7zQ.roa (raw, json)
Hash identifier: AMFuAQNZTXRGlMpWLBlniilx9oiIsRmYvnQavriXHAg=
Subject key identifier: 5B:A8:E5:79:49:B3:1C:30:17:46:42:2F:9A:C0:AC:9D:88:BF:EF:34
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 01922EE713FCF41C576ED3332C63CEFD30C9
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/W6jleUmzHDAXRkIvmsCsnYi_7zQ.roa
Signing time: Thu 26 Sep 2024 15:15:48 +0000
ROA not before: Thu 26 Sep 2024 15:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60446
IP address blocks: 45.136.6.0/24 maxlen: 24
45.141.151.0/24 maxlen: 24
45.147.46.0/24 maxlen: 24
45.147.47.0/24 maxlen: 24
194.146.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2e:e7:13:fc:f4:1c:57:6e:d3:33:2c:63:ce:fd:30:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Sep 26 15:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5ba8e57949b31c301746422f9ac0ac9d88bfef34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:8d:9c:87:6b:21:c9:6e:74:4c:86:63:41:
e7:72:a8:a9:36:5d:58:5b:43:cd:13:4f:01:47:a1:
47:2e:c7:28:fe:70:b5:71:86:c7:21:23:81:3c:8f:
4e:e3:13:c8:ac:61:9b:a4:e1:df:16:bd:ec:f5:33:
35:08:00:29:d7:c3:05:ff:47:9b:a4:82:4e:44:36:
91:61:93:0f:7c:d1:58:3d:2d:cb:cf:af:f3:4d:09:
a0:f6:08:15:7a:9a:d8:8d:fe:8c:27:86:3b:35:4f:
48:f1:7d:36:a3:92:88:a8:37:35:d9:fc:9b:8c:f2:
a1:15:b3:80:40:76:83:b3:36:4c:29:21:8b:65:c9:
47:18:56:94:41:aa:71:ac:54:fe:b5:d1:50:e2:c1:
dd:2a:7c:15:fe:bf:e7:e6:53:60:35:6f:70:2a:a1:
33:11:b8:78:02:5e:95:08:27:eb:6a:49:56:69:65:
1a:8a:35:08:4e:0a:6c:80:3f:3f:96:68:bd:23:a5:
1c:9e:1e:9e:6c:66:42:ef:81:ff:78:72:11:41:db:
3a:e7:05:4d:92:fc:05:ff:14:fc:0c:8d:72:80:77:
7b:ec:a8:49:f8:08:a9:6e:34:d9:05:2c:1e:1d:c0:
c6:05:27:93:a2:d1:61:50:57:d9:88:d1:4f:8c:dc:
f5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A8:E5:79:49:B3:1C:30:17:46:42:2F:9A:C0:AC:9D:88:BF:EF:34
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/W6jleUmzHDAXRkIvmsCsnYi_7zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.6.0/24
45.141.151.0/24
45.147.46.0/23
194.146.50.0/24
Signature Algorithm: sha256WithRSAEncryption
70:15:c1:f9:b0:85:6b:1b:ca:a5:48:1a:b5:a2:9f:5b:c3:26:
10:e5:23:e1:a0:27:7e:0c:9f:96:19:66:46:6f:c0:0c:c4:04:
44:13:d7:e4:57:4b:e0:d8:b1:d3:ba:52:11:c4:e7:8a:6b:c5:
fe:ae:6a:ff:73:6c:08:11:bf:6a:43:e0:22:90:49:63:5f:b4:
4b:94:17:a4:b7:45:32:5f:c1:f1:6a:f0:a3:aa:f7:c1:b0:d6:
3b:a4:4c:5c:00:f7:03:f1:2f:f4:94:3b:07:bf:0c:dc:15:d9:
4f:0f:91:48:22:33:2a:fc:7b:61:ea:05:50:f8:cc:0d:96:e6:
69:47:30:2d:26:b9:21:f5:4b:17:3b:13:55:ab:29:ac:78:66:
19:54:74:9a:eb:ba:1f:30:db:68:cb:30:ef:16:b1:89:7a:a9:
b9:46:57:a4:62:aa:1e:9a:fa:7e:d4:ac:fe:13:b1:59:8c:d7:
eb:51:c3:6d:06:29:3e:d4:a0:35:d3:b3:09:9e:33:c7:95:ca:
74:6f:aa:12:5a:05:2e:4f:2f:29:54:be:30:c7:57:84:71:bb:
60:e9:31:ae:93:38:15:01:00:45:71:c6:e9:be:23:77:55:00:
26:74:89:7d:e1:d6:17:c3:18:8f:99:cc:fc:b7:08:26:97:d6:
43:32:05:55
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZIu5xP89BxXbtMzLGPO/TDJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQwOTI2MTUxNTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmE4ZTU3OTQ5YjMxYzMwMTc0NjQyMmY5YWMwYWM5ZDg4YmZlZjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnGNnIdrIcludEyGY0HncqipNl1Y
W0PNE08BR6FHLsco/nC1cYbHISOBPI9O4xPIrGGbpOHfFr3s9TM1CAAp18MF/0eb
pIJORDaRYZMPfNFYPS3Lz6/zTQmg9ggVeprYjf6MJ4Y7NU9I8X02o5KIqDc12fyb
jPKhFbOAQHaDszZMKSGLZclHGFaUQapxrFT+tdFQ4sHdKnwV/r/n5lNgNW9wKqEz
Ebh4Al6VCCfraklWaWUaijUITgpsgD8/lmi9I6Ucnh6ebGZC74H/eHIRQds65wVN
kvwF/xT8DI1ygHd77KhJ+AipbjTZBSweHcDGBSeTotFhUFfZiNFPjNz1KQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFFuo5XlJsxwwF0ZCL5rArJ2Iv+80MB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvVzZqbGVVbXpIREFYUmtJdm1zQ3NuWWlfN3pRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALYgGAwQA
LY2XAwQBLZMuAwQAwpIyMA0GCSqGSIb3DQEBCwUAA4IBAQBwFcH5sIVrG8qlSBq1
op9bwyYQ5SPhoCd+DJ+WGWZGb8AMxAREE9fkV0vg2LHTulIRxOeKa8X+rmr/c2wI
Eb9qQ+AikEljX7RLlBekt0UyX8HxavCjqvfBsNY7pExcAPcD8S/0lDsHvwzcFdlP
D5FIIjMq/Hth6gVQ+MwNluZpRzAtJrkh9UsXOxNVqymseGYZVHSa67ofMNtoyzDv
FrGJeqm5RlekYqoemvp+1Kz+E7FZjNfrUcNtBik+1KA107MJnjPHlcp0b6oSWgUu
Ty8pVL4wx1eEcbtg6TGukzgVAQBFccbpviN3VQAmdIl94dYXwxiPmcz8twgml9ZD
MgVV
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:04:31 2024 by rpki-client on console-fra.rpki-client.org