Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/ViNb2jr06v4Hw5JWp1gVR7liG5g.roa
File: ViNb2jr06v4Hw5JWp1gVR7liG5g.roa (raw, json)
Hash identifier: 2oNO8utJtmVS5961Kg75Hj5YHJ5ui3uUT3aI/hpqNoI=
Subject key identifier: 56:23:5B:DA:3A:F4:EA:FE:07:C3:92:56:A7:58:15:47:B9:62:1B:98
Certificate issuer: /CN=01626ffd800eafa336bdf343141f03f7c393c364
Certificate serial: 018CC5DC8E997D76B51C1AA42F36ABFFF90E
Authority key identifier: 01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/ViNb2jr06v4Hw5JWp1gVR7liG5g.roa
Signing time: Mon 01 Jan 2024 16:30:15 +0000
ROA not before: Mon 01 Jan 2024 16:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30870
IP address blocks: 89.30.150.0/23 maxlen: 24
89.30.154.0/23 maxlen: 24
83.98.209.0/24 maxlen: 24
83.98.218.0/23 maxlen: 24
83.98.217.0/24 maxlen: 24
83.98.220.0/23 maxlen: 24
83.98.136.0/23 maxlen: 24
83.98.148.0/24 maxlen: 24
83.98.154.0/23 maxlen: 23
83.98.167.0/24 maxlen: 24
83.98.182.0/24 maxlen: 24
213.247.55.0/24 maxlen: 24
213.247.57.0/24 maxlen: 24
213.247.62.0/23 maxlen: 24
2001:16f8:15::/48 maxlen: 48
2001:16f8:666::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 May 2024 18:17:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:8e:99:7d:76:b5:1c:1a:a4:2f:36:ab:ff:f9:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01626ffd800eafa336bdf343141f03f7c393c364
Validity
Not Before: Jan 1 16:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56235bda3af4eafe07c39256a7581547b9621b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:17:6e:68:16:0b:89:25:0a:90:b9:dd:00:04:
4c:7b:d5:0e:2c:58:f6:54:45:0a:5e:6c:5e:f2:74:
2b:e7:c1:ed:de:9f:cc:53:d9:71:55:4b:a7:74:df:
55:f4:96:90:64:35:d6:6c:9f:38:f9:03:9f:05:af:
4a:ce:8c:7b:a9:5a:52:bf:a7:2d:92:fc:f0:3b:0f:
bd:80:b9:8a:7e:bd:91:cd:a0:64:e8:cb:bd:58:82:
d7:6c:52:bc:5e:ba:9d:5d:0d:7a:dd:e6:7e:c2:84:
98:ee:2a:d8:cc:1a:96:26:d5:21:7f:f4:bc:27:ba:
08:dd:1e:5e:8b:c3:9c:2b:f8:dd:99:6d:bf:46:4e:
4b:11:97:c4:4b:6f:c1:a3:8b:90:fc:aa:e2:ba:7e:
65:55:aa:b4:7d:1b:48:07:a1:b6:b0:dd:3f:5b:99:
7b:1a:f3:55:1e:61:eb:2a:3f:48:ae:fd:18:be:47:
90:ba:8c:8e:e0:44:70:44:46:f4:bd:75:bc:d7:4f:
67:42:0a:1b:aa:d2:d6:fc:31:c3:00:d7:40:c3:6e:
a2:f4:32:0a:b9:e7:ef:78:dd:6e:0f:36:fd:32:91:
d8:7a:cb:36:1d:2f:9a:4e:4c:bb:6f:99:3e:33:69:
38:ec:87:91:ad:79:ce:d0:d9:65:b8:93:62:30:fd:
58:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:23:5B:DA:3A:F4:EA:FE:07:C3:92:56:A7:58:15:47:B9:62:1B:98
X509v3 Authority Key Identifier:
keyid:01:62:6F:FD:80:0E:AF:A3:36:BD:F3:43:14:1F:03:F7:C3:93:C3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWJv_YAOr6M2vfNDFB8D98OTw2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/ViNb2jr06v4Hw5JWp1gVR7liG5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c4e5a0-8219-4ff9-8287-1f4bea23e4c7/1/AWJv_YAOr6M2vfNDFB8D98OTw2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.98.136.0/23
83.98.148.0/24
83.98.154.0/23
83.98.167.0/24
83.98.182.0/24
83.98.209.0/24
83.98.217.0-83.98.221.255
89.30.150.0/23
89.30.154.0/23
213.247.55.0/24
213.247.57.0/24
213.247.62.0/23
IPv6:
2001:16f8:15::/48
2001:16f8:666::/48
Signature Algorithm: sha256WithRSAEncryption
89:4a:75:d6:26:a9:23:fb:c4:3d:fd:d3:a3:f0:d2:05:fa:90:
20:aa:1f:16:d0:bc:ec:2f:f3:13:c0:06:f8:64:7c:d6:5d:b8:
30:21:5b:f3:12:fc:4c:2a:df:17:7c:9f:44:2f:97:dd:74:6c:
9e:51:d1:31:87:19:cf:97:b9:5f:8f:9c:ca:fa:72:a4:34:db:
24:ec:4e:59:3d:1c:da:99:54:9f:02:ec:cd:70:1d:f6:3f:cf:
da:86:ff:d8:d8:77:df:1d:23:9f:ec:0a:e1:29:68:fa:6a:16:
10:78:56:4d:90:c0:93:4b:ba:11:56:bd:21:72:e1:30:c9:00:
cb:bb:2c:dc:91:2c:c6:0e:d8:9d:e6:c6:dd:77:47:8d:0e:7c:
3e:d6:74:66:72:fe:43:b4:1d:5b:a6:12:88:ac:93:58:81:e2:
ac:d2:d5:72:f9:82:e4:54:89:4c:32:39:aa:dc:0a:e2:01:85:
de:91:91:30:32:78:3a:e3:ba:59:ae:f6:5a:bb:d9:ec:24:fa:
9e:2f:2b:9b:bb:c9:d8:d6:79:88:30:2a:92:ba:61:90:8d:f5:
c8:cd:de:07:af:db:08:39:2e:bf:49:11:f3:38:00:14:06:5e:
70:3b:f5:df:bb:e0:13:51:09:72:d0:19:bb:c2:2f:21:e8:46:
1d:eb:21:2c
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgISAYzF3I6ZfXa1HBqkLzar//kOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxNjI2ZmZkODAwZWFmYTMzNmJkZjM0MzE0MWYwM2Y3YzM5
M2MzNjQwHhcNMjQwMTAxMTYzMDE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjIzNWJkYTNhZjRlYWZlMDdjMzkyNTZhNzU4MTU0N2I5NjIxYjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3BduaBYLiSUKkLndAARMe9UOLFj2
VEUKXmxe8nQr58Ht3p/MU9lxVUundN9V9JaQZDXWbJ84+QOfBa9Kzox7qVpSv6ct
kvzwOw+9gLmKfr2RzaBk6Mu9WILXbFK8XrqdXQ163eZ+woSY7irYzBqWJtUhf/S8
J7oI3R5ei8OcK/jdmW2/Rk5LEZfES2/Bo4uQ/Kriun5lVaq0fRtIB6G2sN0/W5l7
GvNVHmHrKj9Irv0YvkeQuoyO4ERwREb0vXW8109nQgobqtLW/DHDANdAw26i9DIK
uefveN1uDzb9MpHYess2HS+aTky7b5k+M2k47IeRrXnO0NlluJNiMP1YUQIDAQAB
o4ICbjCCAmowHQYDVR0OBBYEFFYjW9o69Or+B8OSVqdYFUe5YhuYMB8GA1UdIwQY
MBaAFAFib/2ADq+jNr3zQxQfA/fDk8NkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVdKdl9ZQU9yNk0ydmZOREZCOEQ5OE9UdzJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jNGU1YTAtODIxOS00ZmY5LTgyODct
MWY0YmVhMjNlNGM3LzEvVmlOYjJqcjA2djRIdzVKV3AxZ1ZSN2xpRzVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jNGU1YTAtODIxOS00ZmY5LTgyODctMWY0YmVhMjNlNGM3
LzEvQVdKdl9ZQU9yNk0ydmZOREZCOEQ5OE9UdzJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGDBggrBgEFBQcBBwEB/wR0MHIwVgQCAAEwUAMEAVNiiAME
AFNilAMEAVNimgMEAFNipwMEAFNitgMEAFNi0TAMAwQAU2LZAwQBU2LcAwQBWR6W
AwQBWR6aAwQA1fc3AwQA1fc5AwQB1fc+MBgEAgACMBIDBwAgARb4ABUDBwAgARb4
BmYwDQYJKoZIhvcNAQELBQADggEBAIlKddYmqSP7xD3906Pw0gX6kCCqHxbQvOwv
8xPABvhkfNZduDAhW/MS/Ewq3xd8n0Qvl910bJ5R0TGHGc+XuV+PnMr6cqQ02yTs
Tlk9HNqZVJ8C7M1wHfY/z9qG/9jYd98dI5/sCuEpaPpqFhB4Vk2QwJNLuhFWvSFy
4TDJAMu7LNyRLMYO2J3mxt13R40OfD7WdGZy/kO0HVumEoisk1iB4qzS1XL5guRU
iUwyOarcCuIBhd6RkTAyeDrjulmu9lq72ewk+p4vK5u7ydjWeYgwKpK6YZCN9cjN
3gev2wg5Lr9JEfM4ABQGXnA79d+74BNRCXLQGbvCLyHoRh3rISw=
-----END CERTIFICATE-----
Generated at Sun May 26 00:29:22 2024 by rpki-client on console-ams.rpki-client.org