Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dLY4kvaKcnnVwxWKmDGRiM61UEA.roa
File: dLY4kvaKcnnVwxWKmDGRiM61UEA.roa (raw, json)
Hash identifier: Kx03u+8QVO95pMsIVS1oYhtVJZ92iLl7KzoCu+IUbZw=
Subject key identifier: 74:B6:38:92:F6:8A:72:79:D5:C3:15:8A:98:31:91:88:CE:B5:50:40
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 018E62D2F8F73C0B271B37DA5460ADF0F428
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dLY4kvaKcnnVwxWKmDGRiM61UEA.roa
Signing time: Thu 21 Mar 2024 21:02:57 +0000
ROA not before: Thu 21 Mar 2024 21:02:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 46.3.116.0/22 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.248.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.72.0/21 maxlen: 24
46.232.72.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 01:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:62:d2:f8:f7:3c:0b:27:1b:37:da:54:60:ad:f0:f4:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Mar 21 21:02:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74b63892f68a7279d5c3158a98319188ceb55040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:67:50:9b:4a:91:77:4b:fb:5a:c6:81:70:9d:
a4:3d:c8:b5:68:10:0f:86:83:31:c1:ee:d4:67:f7:
84:87:36:68:16:38:f5:a3:6f:80:c3:28:47:f2:0a:
f9:14:5f:44:12:3f:8f:0e:94:0d:cd:e9:21:0c:29:
8b:69:d3:a7:9a:43:50:84:f5:c5:6e:75:ef:a2:f2:
a3:b8:77:2e:b8:8c:78:05:1e:c2:a4:19:21:31:4d:
21:67:da:c8:8d:40:f7:05:c8:e7:d2:ff:1c:24:4c:
28:a1:a7:54:90:98:94:8e:14:fd:aa:68:ce:d5:cc:
06:69:d7:df:ad:35:e8:87:7d:90:65:90:b8:fd:18:
ea:7e:95:34:65:c5:22:e1:f6:f7:0d:b3:45:fa:af:
7a:44:84:12:b1:0d:ba:ab:28:86:e1:bd:58:9f:55:
ba:fa:10:bb:bc:3a:75:d9:fe:76:70:22:eb:69:bd:
35:04:76:30:95:61:50:cd:a3:b9:dc:ac:55:f3:3d:
f0:7c:b4:e0:f6:f4:9a:7e:8c:34:d3:d8:b9:a3:26:
81:56:7e:b2:23:12:b1:5e:47:26:89:ed:b6:e1:5b:
fb:95:3f:6f:d5:b5:c9:3c:7f:7b:01:d4:31:cf:db:
46:0a:83:25:6b:6f:d8:d8:03:80:13:a0:58:e2:ee:
78:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B6:38:92:F6:8A:72:79:D5:C3:15:8A:98:31:91:88:CE:B5:50:40
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/dLY4kvaKcnnVwxWKmDGRiM61UEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.116.0/22
46.3.190.0/23
46.3.200.0/23
46.3.220.0/23
46.3.230.0/23
46.3.248.0/24
46.3.250.0-46.3.255.255
46.232.67.0/24
46.232.69.0-46.232.79.255
149.126.226.0/24
149.126.244.0/23
149.126.247.0-149.126.250.255
149.126.252.0/24
Signature Algorithm: sha256WithRSAEncryption
42:81:7f:8f:56:68:e6:d1:62:46:d0:a3:b5:21:ea:dd:64:4a:
3e:65:7b:88:8c:3c:e2:3d:31:21:56:d6:9c:f6:aa:46:04:78:
25:d5:ed:43:22:65:23:ca:e2:68:1f:0e:67:a3:e9:33:fb:c3:
d0:e5:10:60:76:3f:b7:7a:57:56:54:28:e9:38:88:b3:f2:b8:
bf:0f:ac:77:66:00:15:96:8b:72:34:06:be:06:78:95:bb:7b:
a4:7e:aa:ff:7d:f1:4d:0a:98:61:43:43:7e:0c:c5:fb:06:8b:
78:1b:e4:02:28:62:57:63:2c:89:21:d8:02:2d:60:a0:82:fa:
ae:ec:02:a8:63:dd:bb:b6:eb:57:ad:24:ff:cc:75:a1:a1:ec:
8f:23:eb:98:21:fb:1e:2b:43:32:99:4f:16:02:4d:17:26:f5:
1a:28:6f:e9:99:12:c2:59:da:40:46:ec:be:ec:12:6c:c5:cc:
1b:58:7a:09:cd:3d:c8:d9:9a:47:10:52:07:4b:ed:d5:9a:10:
ac:ff:d4:8e:b2:0f:1c:2f:10:39:a4:1e:90:94:36:b2:60:b7:
2e:b7:c2:33:49:4b:f1:79:e4:5b:69:26:c6:83:5c:a3:2c:01:
2c:b1:b7:6f:7f:5e:3f:1f:57:7f:6b:1f:d2:c9:19:59:bd:f7:
b5:f1:ce:4a
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISAY5i0vj3PAsnGzfaVGCt8PQoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjQwMzIxMjEwMjU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NGI2Mzg5MmY2OGE3Mjc5ZDVjMzE1OGE5ODMxOTE4OGNlYjU1MDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGdQm0qRd0v7WsaBcJ2kPci1aBAP
hoMxwe7UZ/eEhzZoFjj1o2+AwyhH8gr5FF9EEj+PDpQNzekhDCmLadOnmkNQhPXF
bnXvovKjuHcuuIx4BR7CpBkhMU0hZ9rIjUD3Bcjn0v8cJEwooadUkJiUjhT9qmjO
1cwGadffrTXoh32QZZC4/RjqfpU0ZcUi4fb3DbNF+q96RIQSsQ26qyiG4b1Yn1W6
+hC7vDp12f52cCLrab01BHYwlWFQzaO53KxV8z3wfLTg9vSafow009i5oyaBVn6y
IxKxXkcmie224Vv7lT9v1bXJPH97AdQxz9tGCoMla2/Y2AOAE6BY4u54qwIDAQAB
o4ICaDCCAmQwHQYDVR0OBBYEFHS2OJL2inJ51cMVipgxkYjOtVBAMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvZExZNGt2YUtjbm5Wd3hXS21ER1JpTTYxVUVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTBrBAIAATBlAwQCLgN0AwQB
LgO+AwQBLgPIAwQBLgPcAwQBLgPmAwQALgP4MAsDBAEuA/oDAwIuAAMEAC7oQzAM
AwQALuhFAwQELuhAAwQAlX7iAwQBlX70MAwDBACVfvcDBACVfvoDBACVfvwwDQYJ
KoZIhvcNAQELBQADggEBAEKBf49WaObRYkbQo7Uh6t1kSj5le4iMPOI9MSFW1pz2
qkYEeCXV7UMiZSPK4mgfDmej6TP7w9DlEGB2P7d6V1ZUKOk4iLPyuL8PrHdmABWW
i3I0Br4GeJW7e6R+qv998U0KmGFDQ34MxfsGi3gb5AIoYldjLIkh2AItYKCC+q7s
Aqhj3bu261etJP/MdaGh7I8j65gh+x4rQzKZTxYCTRcm9Roob+mZEsJZ2kBG7L7s
EmzFzBtYegnNPcjZmkcQUgdL7dWaEKz/1I6yDxwvEDmkHpCUNrJgty63wjNJS/F5
5FtpJsaDXKMsASyxt29/Xj8fV39rH9LJGVm997Xxzko=
-----END CERTIFICATE-----
Generated at Mon May 6 09:12:27 2024 by rpki-client on console-ams.rpki-client.org