Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/borZkxzd7Q70fU1OWvln2Q1-HRc.roa
File: borZkxzd7Q70fU1OWvln2Q1-HRc.roa (raw, json)
Hash identifier: WT5cBwBGRYqcO3GRfgSJfVkJ2Niz57/GzD/KCZQzgos=
Subject key identifier: 6E:8A:D9:93:1C:DD:ED:0E:F4:7D:4D:4E:5A:F9:67:D9:0D:7E:1D:17
Certificate issuer: /CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Certificate serial: 019421B1D621FDBA2F52E0B741DE30A2FFA1
Authority key identifier: A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/borZkxzd7Q70fU1OWvln2Q1-HRc.roa
Signing time: Wed 01 Jan 2025 11:48:10 +0000
ROA not before: Wed 01 Jan 2025 11:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16286
IP address blocks: 185.113.112.0/24 maxlen: 24
185.113.113.0/24 maxlen: 24
185.113.114.0/24 maxlen: 24
185.113.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:d6:21:fd:ba:2f:52:e0:b7:41:de:30:a2:ff:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3464820dcc46769fd154c8cbae66b8bb38fea03
Validity
Not Before: Jan 1 11:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e8ad9931cdded0ef47d4d4e5af967d90d7e1d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3e:fe:04:3f:df:70:b6:8d:9b:82:1f:25:a0:
97:7e:f1:77:69:c2:a7:bc:c9:a1:5a:fb:5d:07:7e:
18:1b:6e:00:05:6e:ed:cd:c5:0a:d4:1f:61:86:50:
bb:6c:2d:96:5b:19:dd:4d:00:4c:b5:4e:b6:b8:36:
ba:ba:14:73:65:c0:da:b2:9f:48:d0:51:e2:26:84:
c5:1a:b0:e7:e8:1f:e4:1e:29:02:46:f9:40:2f:ac:
14:7d:f3:8b:59:23:bf:13:23:1d:1c:28:fe:49:42:
55:9b:52:fc:fd:42:36:7f:6c:d0:17:e5:f6:4d:3d:
03:cf:d5:db:e5:ae:a4:34:83:c5:8e:cf:5e:da:80:
55:77:ed:38:bb:11:f2:fd:33:4f:d9:04:5d:19:d1:
17:25:87:8a:94:47:a3:37:b1:85:98:89:79:36:f5:
9c:8b:09:e9:24:89:71:03:18:e7:14:b0:a3:a9:64:
e5:ec:1f:2a:3c:eb:02:87:14:d0:7f:fd:cf:62:a4:
d2:34:ec:fd:8c:fd:a0:f0:28:1a:cc:6b:f8:b0:68:
4d:09:11:65:56:fe:7f:57:79:8b:8e:27:26:96:5f:
30:0e:4c:dd:d8:b7:c6:b5:16:85:f1:32:77:c6:7a:
a7:72:4a:dc:1c:6e:e3:16:11:d1:26:a7:3d:1b:33:
3a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8A:D9:93:1C:DD:ED:0E:F4:7D:4D:4E:5A:F9:67:D9:0D:7E:1D:17
X509v3 Authority Key Identifier:
keyid:A3:46:48:20:DC:C4:67:69:FD:15:4C:8C:BA:E6:6B:8B:B3:8F:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o0ZIINzEZ2n9FUyMuuZri7OP6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/borZkxzd7Q70fU1OWvln2Q1-HRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e2c39d-1b1f-4e41-92b0-e0a2a2c7942e/1/o0ZIINzEZ2n9FUyMuuZri7OP6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.112.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:ee:52:af:ab:bc:44:fe:9f:ee:5e:5a:dd:e9:6a:b0:3a:9b:
b4:89:1c:5d:3e:93:cd:38:d2:be:aa:e3:8a:0e:d7:0f:3f:19:
79:73:9e:83:10:aa:9c:59:6f:e3:c1:43:42:b1:8b:1b:e3:3c:
5a:d5:0a:4e:f2:59:4a:90:84:5c:8a:62:d0:d3:d4:f3:3d:08:
da:c0:7e:dd:26:2b:c5:bb:06:64:bb:d2:ae:27:65:ca:a4:8a:
1f:75:0e:a6:19:30:3a:8a:7b:eb:63:9b:6e:a9:f1:7d:87:d9:
d9:33:96:bf:e5:55:07:b6:5e:93:8f:9a:66:1f:6c:c2:db:4e:
33:14:4d:97:c0:47:0c:9d:f6:1b:cb:ff:b5:67:f8:78:c9:33:
0d:81:c2:b5:92:a6:1a:5a:f0:8b:f9:79:16:6d:e9:be:6b:82:
f6:91:62:26:04:1b:f7:92:a2:78:12:9f:2e:e2:65:07:21:96:
49:fd:4c:c8:48:90:22:f7:66:25:55:3f:d4:40:c3:b8:63:8f:
9f:e7:07:4e:a8:31:11:de:f0:8d:ef:39:2a:ba:f3:60:c1:25:
2a:85:42:14:88:a7:c4:cb:66:b4:eb:ce:f4:5e:73:b1:ef:df:
34:31:83:3e:a3:8a:a9:9e:a4:de:d2:f9:d1:85:f7:a3:c7:a6:
47:ff:83:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsdYh/bovUuC3Qd4wov+hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzNDY0ODIwZGNjNDY3NjlmZDE1NGM4Y2JhZTY2YjhiYjM4
ZmVhMDMwHhcNMjUwMTAxMTE0ODEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZThhZDk5MzFjZGRlZDBlZjQ3ZDRkNGU1YWY5NjdkOTBkN2UxZDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkT7+BD/fcLaNm4IfJaCXfvF3acKn
vMmhWvtdB34YG24ABW7tzcUK1B9hhlC7bC2WWxndTQBMtU62uDa6uhRzZcDasp9I
0FHiJoTFGrDn6B/kHikCRvlAL6wUffOLWSO/EyMdHCj+SUJVm1L8/UI2f2zQF+X2
TT0Dz9Xb5a6kNIPFjs9e2oBVd+04uxHy/TNP2QRdGdEXJYeKlEejN7GFmIl5NvWc
iwnpJIlxAxjnFLCjqWTl7B8qPOsChxTQf/3PYqTSNOz9jP2g8CgazGv4sGhNCRFl
Vv5/V3mLjicmll8wDkzd2LfGtRaF8TJ3xnqnckrcHG7jFhHRJqc9GzM6/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG6K2ZMc3e0O9H1NTlr5Z9kNfh0XMB8GA1UdIwQY
MBaAFKNGSCDcxGdp/RVMjLrma4uzj+oDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzBaSUlOekVaMm45RlV5TXV1WnJpN09QNmdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9lMmMzOWQtMWIxZi00ZTQxLTkyYjAt
ZTBhMmEyYzc5NDJlLzEvYm9yWmt4emQ3UTcwZlUxT1d2bG4yUTEtSFJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9lMmMzOWQtMWIxZi00ZTQxLTkyYjAtZTBhMmEyYzc5NDJl
LzEvbzBaSUlOekVaMm45RlV5TXV1WnJpN09QNmdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXFwMA0G
CSqGSIb3DQEBCwUAA4IBAQAO7lKvq7xE/p/uXlrd6WqwOpu0iRxdPpPNONK+quOK
DtcPPxl5c56DEKqcWW/jwUNCsYsb4zxa1QpO8llKkIRcimLQ09TzPQjawH7dJivF
uwZku9KuJ2XKpIofdQ6mGTA6invrY5tuqfF9h9nZM5a/5VUHtl6Tj5pmH2zC204z
FE2XwEcMnfYby/+1Z/h4yTMNgcK1kqYaWvCL+XkWbem+a4L2kWImBBv3kqJ4Ep8u
4mUHIZZJ/UzISJAi92YlVT/UQMO4Y4+f5wdOqDER3vCN7zkquvNgwSUqhUIUiKfE
y2a06870XnOx7980MYM+o4qpnqTe0vnRhfejx6ZH/4PF
-----END CERTIFICATE-----
Generated at Sun Feb 2 10:01:57 2025 by rpki-client