Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/YhyPFg3DDPFMwKSx0td1Hj01Bgw.roa
File: YhyPFg3DDPFMwKSx0td1Hj01Bgw.roa (raw, json)
Hash identifier: JtBk8ojLbrsjZtRlGKh3sN+RjZTT2IyV4QS0Zri/CAk=
Subject key identifier: 62:1C:8F:16:0D:C3:0C:F1:4C:C0:A4:B1:D2:D7:75:1E:3D:35:06:0C
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 0191E137FFA89836CE11DEC795FD0C2F152B
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/YhyPFg3DDPFMwKSx0td1Hj01Bgw.roa
Signing time: Wed 11 Sep 2024 13:13:49 +0000
ROA not before: Wed 11 Sep 2024 13:13:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203
IP address blocks: 149.250.0.0/16 maxlen: 16
192.109.236.0/24 maxlen: 24
195.203.0.0/17 maxlen: 17
195.203.128.0/17 maxlen: 17
195.203.152.0/23 maxlen: 23
195.203.156.0/22 maxlen: 22
217.27.0.0/23 maxlen: 23
217.27.2.0/23 maxlen: 23
217.27.4.0/24 maxlen: 24
217.27.6.0/24 maxlen: 24
217.27.7.0/24 maxlen: 24
2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.mft
rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e1:37:ff:a8:98:36:ce:11:de:c7:95:fd:0c:2f:15:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Sep 11 13:13:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=621c8f160dc30cf14cc0a4b1d2d7751e3d35060c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5f:b0:4c:63:97:72:dd:c1:62:89:46:c4:d8:
a7:bd:d1:a0:08:5f:61:e7:67:ab:2d:3f:ce:c9:4a:
a9:61:27:ed:b2:4e:d1:40:6b:4e:bd:8e:ac:38:f0:
be:da:42:63:ba:00:fd:bc:23:7b:0a:b6:08:95:dd:
15:73:a3:d7:ca:75:82:7a:22:6b:fa:7a:5d:ce:51:
34:d2:ac:01:57:a5:4f:69:03:e4:45:f6:5f:e5:16:
ee:ca:5f:31:a2:37:e5:16:60:52:59:21:70:bb:7f:
a3:08:2a:1b:3d:3e:49:ba:3b:7f:d3:d0:4d:52:0b:
c3:28:bc:99:8d:06:63:ea:33:da:b5:bb:ee:64:44:
6f:7c:9c:5a:85:28:99:5f:25:e8:0d:fa:1e:67:e8:
3a:f5:3f:f4:9f:69:7d:72:b2:03:d2:73:6e:9a:5c:
66:e1:b1:78:d1:66:b4:d6:35:72:fd:c9:21:0b:94:
eb:b6:5d:ec:ad:5b:e8:71:0a:4a:3c:6d:cd:3f:51:
52:42:e1:d3:e5:0f:6a:6c:73:ad:41:1c:3f:b1:87:
32:ae:ed:fe:5f:d6:6e:8e:1f:d7:12:d4:f1:02:1e:
cc:49:df:ee:bc:06:2d:f4:27:bd:42:77:13:cb:c8:
88:7d:00:dd:ef:54:c5:78:8c:e6:9d:93:85:9c:22:
57:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1C:8F:16:0D:C3:0C:F1:4C:C0:A4:B1:D2:D7:75:1E:3D:35:06:0C
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/YhyPFg3DDPFMwKSx0td1Hj01Bgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.250.0.0/16
192.109.236.0/24
195.203.0.0/16
217.27.0.0-217.27.4.255
217.27.6.0/23
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d6:11:c4:b2:74:8f:85:95:9b:02:b4:f8:96:21:dc:58:29:bf:
90:c7:8a:63:e5:89:39:9b:6d:f5:73:75:21:2b:af:aa:a8:bb:
25:50:69:1a:33:a9:e4:93:c0:ad:e8:a8:a4:c0:0c:2e:c8:db:
c9:bd:7d:85:03:34:4c:45:d7:eb:82:42:e9:0f:fc:b0:df:05:
f2:92:cb:c2:02:43:75:97:26:33:a3:66:b6:95:6c:e3:34:b6:
33:6f:5c:30:88:52:8b:41:90:f5:b9:a2:95:14:cd:e1:c6:14:
fc:bd:3e:15:89:39:22:e2:05:b9:2f:c1:4d:de:fb:57:56:02:
61:92:c0:bd:b9:3f:5a:06:2c:cd:b9:bd:3e:ce:50:0c:db:13:
02:5c:50:cc:79:e4:98:66:62:00:d2:75:d3:96:15:23:f7:78:
5d:4d:ca:7b:74:7b:0d:ed:1b:f2:46:46:83:90:17:ec:90:ea:
c2:88:83:74:8c:61:41:97:6d:03:6f:ad:53:4e:41:9c:15:18:
99:5f:c9:de:56:75:31:15:e1:27:9d:fc:d8:8b:21:c6:66:83:
c5:ec:cc:05:8d:da:8a:c1:d6:f6:06:d8:f3:cc:fd:54:22:be:
cf:79:8f:f9:9e:97:a7:96:5b:8e:66:63:eb:f8:93:e4:a6:fa:
4d:b9:a1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:34:46 2024 by rpki-client on console-ams.rpki-client.org