Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e4912b-5484-4ac0-8768-535bf9b1e8b7/1/SbucjNaBf0iFMZ4RmEFQ3waUGpw.roa
File: SbucjNaBf0iFMZ4RmEFQ3waUGpw.roa (raw, json)
Hash identifier: E0ikUb/Jtkg17u1payevWcxT01/YOVAOXJGawI3ZTcA=
Subject key identifier: 49:BB:9C:8C:D6:81:7F:48:85:31:9E:11:98:41:50:DF:06:94:1A:9C
Certificate issuer: /CN=278f62f3a5f84722852fc70f052cf13dea2374d0
Certificate serial: 018E32FF70783087D6780A76C51706A00DE4
Authority key identifier: 27:8F:62:F3:A5:F8:47:22:85:2F:C7:0F:05:2C:F1:3D:EA:23:74:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J49i86X4RyKFL8cPBSzxPeojdNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e4912b-5484-4ac0-8768-535bf9b1e8b7/1/SbucjNaBf0iFMZ4RmEFQ3waUGpw.roa
Signing time: Tue 12 Mar 2024 14:09:45 +0000
ROA not before: Tue 12 Mar 2024 14:09:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205741
IP address blocks: 94.136.176.0/22 maxlen: 24
94.136.176.0/23 maxlen: 23
94.136.176.0/24 maxlen: 24
94.136.177.0/24 maxlen: 24
94.136.178.0/24 maxlen: 24
94.136.179.0/24 maxlen: 24
185.141.64.0/22 maxlen: 22
185.141.64.0/24 maxlen: 24
185.141.65.0/24 maxlen: 24
185.141.66.0/24 maxlen: 24
185.141.67.0/24 maxlen: 24
185.207.208.0/22 maxlen: 22
185.207.208.0/24 maxlen: 24
185.207.209.0/24 maxlen: 24
185.207.210.0/24 maxlen: 24
185.207.211.0/24 maxlen: 24
185.235.56.0/24 maxlen: 24
185.235.57.0/24 maxlen: 24
185.235.58.0/24 maxlen: 24
185.235.59.0/24 maxlen: 24
2a0b:2c40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/e4912b-5484-4ac0-8768-535bf9b1e8b7/1/J49i86X4RyKFL8cPBSzxPeojdNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/e4912b-5484-4ac0-8768-535bf9b1e8b7/1/J49i86X4RyKFL8cPBSzxPeojdNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/J49i86X4RyKFL8cPBSzxPeojdNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:32:ff:70:78:30:87:d6:78:0a:76:c5:17:06:a0:0d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278f62f3a5f84722852fc70f052cf13dea2374d0
Validity
Not Before: Mar 12 14:09:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49bb9c8cd6817f4885319e11984150df06941a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:99:43:61:1b:23:fb:9f:68:12:70:52:50:
ca:34:5d:7f:65:cb:c0:c5:43:47:7a:e3:e6:e6:69:
f9:5c:bb:2d:06:2c:7e:8e:e5:3d:09:37:31:56:00:
ab:8e:06:85:ce:5b:a0:a4:6d:a3:f6:b4:04:5f:cf:
fa:78:24:a8:bc:d5:1b:4a:fe:59:66:6e:80:ee:7b:
03:b2:35:86:6d:3a:d5:4e:7d:5a:d2:9b:8f:73:5a:
2c:3c:3f:c2:ad:15:2f:46:53:28:9e:06:4a:6e:46:
ed:4e:5f:42:8d:d3:dc:e7:01:a7:27:20:75:f8:76:
57:3e:df:8a:4c:2f:5e:c9:47:d3:88:e5:ec:59:e7:
fe:d2:f4:92:ff:bf:dd:e9:81:bb:bd:6f:f2:7c:e1:
01:86:8a:2f:d4:28:5b:ab:80:2c:87:cf:9c:a0:d7:
c3:c8:85:a7:98:c6:2f:d9:0f:5c:24:aa:31:9a:21:
38:be:53:bf:7d:f4:b9:97:c5:3d:84:ad:a1:85:3c:
4c:ce:81:d0:76:b4:df:c2:d5:87:51:30:aa:c2:dc:
81:a1:87:50:65:f0:93:dd:8b:6a:b4:d3:13:bc:c8:
bc:1f:d8:bb:83:a0:2f:67:80:37:50:d5:d9:f4:c6:
2e:19:af:09:1b:a3:9a:f6:7e:a1:70:46:be:58:e9:
b8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:BB:9C:8C:D6:81:7F:48:85:31:9E:11:98:41:50:DF:06:94:1A:9C
X509v3 Authority Key Identifier:
keyid:27:8F:62:F3:A5:F8:47:22:85:2F:C7:0F:05:2C:F1:3D:EA:23:74:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J49i86X4RyKFL8cPBSzxPeojdNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e4912b-5484-4ac0-8768-535bf9b1e8b7/1/SbucjNaBf0iFMZ4RmEFQ3waUGpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e4912b-5484-4ac0-8768-535bf9b1e8b7/1/J49i86X4RyKFL8cPBSzxPeojdNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.136.176.0/22
185.141.64.0/22
185.207.208.0/22
185.235.56.0/22
IPv6:
2a0b:2c40::/29
Signature Algorithm: sha256WithRSAEncryption
58:09:a9:fd:8f:0f:09:2a:4d:d6:41:59:c2:6c:d0:5c:c3:f4:
0f:0e:d5:d6:3b:0d:7e:7a:32:90:e2:40:e9:e4:b7:2f:53:f2:
57:06:8c:af:d8:b2:cc:03:4d:0a:72:bf:2e:f1:bd:05:95:53:
51:9c:ba:a5:68:e3:b5:ce:93:5c:09:c2:a4:29:3c:3b:f0:15:
fc:d6:13:57:07:50:2e:60:2d:d2:5a:3a:ab:bf:60:1c:bf:02:
f8:d4:7b:28:c0:ea:2d:3c:91:b2:90:35:ff:f5:e0:a1:9a:7f:
47:4d:fb:18:d1:3a:26:25:c5:ac:f0:37:11:d8:7f:4f:19:0e:
5c:1f:2e:05:12:bb:9f:b5:3e:b2:c8:d8:2f:19:9d:26:ee:d9:
15:0f:6c:a6:8e:90:bb:65:b2:0d:cb:04:c0:09:69:1a:bb:81:
c4:81:87:08:ee:b1:47:05:a9:4d:39:b8:ea:a0:3d:a8:18:a8:
10:1c:8e:16:b7:b9:b6:52:29:ae:96:f1:c1:91:ed:2a:aa:83:
89:e0:55:05:fd:6c:0a:38:b5:30:dd:ac:32:be:92:2d:11:c7:
cd:02:8f:be:de:17:b9:c8:93:e8:0d:47:9a:c0:b8:d1:aa:54:
a2:f6:60:96:aa:6b:47:c7:4e:cc:d8:83:7d:6a:5b:0f:d2:e1:
f3:ea:32:eb
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAY4y/3B4MIfWeAp2xRcGoA3kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3OGY2MmYzYTVmODQ3MjI4NTJmYzcwZjA1MmNmMTNkZWEy
Mzc0ZDAwHhcNMjQwMzEyMTQwOTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWJiOWM4Y2Q2ODE3ZjQ4ODUzMTllMTE5ODQxNTBkZjA2OTQxYTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIqZQ2EbI/ufaBJwUlDKNF1/ZcvA
xUNHeuPm5mn5XLstBix+juU9CTcxVgCrjgaFzlugpG2j9rQEX8/6eCSovNUbSv5Z
Zm6A7nsDsjWGbTrVTn1a0puPc1osPD/CrRUvRlMongZKbkbtTl9CjdPc5wGnJyB1
+HZXPt+KTC9eyUfTiOXsWef+0vSS/7/d6YG7vW/yfOEBhoov1Chbq4Ash8+coNfD
yIWnmMYv2Q9cJKoxmiE4vlO/ffS5l8U9hK2hhTxMzoHQdrTfwtWHUTCqwtyBoYdQ
ZfCT3YtqtNMTvMi8H9i7g6AvZ4A3UNXZ9MYuGa8JG6Oa9n6hcEa+WOm40wIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFEm7nIzWgX9IhTGeEZhBUN8GlBqcMB8GA1UdIwQY
MBaAFCePYvOl+EcihS/HDwUs8T3qI3TQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjQ5aTg2WDRSeUtGTDhjUEJTenhQZW9qZE5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9lNDkxMmItNTQ4NC00YWMwLTg3Njgt
NTM1YmY5YjFlOGI3LzEvU2J1Y2pOYUJmMGlGTVo0Um1FRlEzd2FVR3B3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9lNDkxMmItNTQ4NC00YWMwLTg3NjgtNTM1YmY5YjFlOGI3
LzEvSjQ5aTg2WDRSeUtGTDhjUEJTenhQZW9qZE5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCXoiwAwQC
uY1AAwQCuc/QAwQCues4MA0EAgACMAcDBQMqCyxAMA0GCSqGSIb3DQEBCwUAA4IB
AQBYCan9jw8JKk3WQVnCbNBcw/QPDtXWOw1+ejKQ4kDp5LcvU/JXBoyv2LLMA00K
cr8u8b0FlVNRnLqlaOO1zpNcCcKkKTw78BX81hNXB1AuYC3SWjqrv2AcvwL41Hso
wOotPJGykDX/9eChmn9HTfsY0TomJcWs8DcR2H9PGQ5cHy4FEruftT6yyNgvGZ0m
7tkVD2ymjpC7ZbINywTACWkau4HEgYcI7rFHBalNObjqoD2oGKgQHI4Wt7m2Uimu
lvHBke0qqoOJ4FUF/WwKOLUw3awyvpItEcfNAo++3he5yJPoDUeawLjRqlSi9mCW
qmtHx07M2IN9alsP0uHz6jLr
-----END CERTIFICATE-----
Generated at Fri Jun 7 17:48:49 2024 by rpki-client on console-ams.rpki-client.org