Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/8woF160MDWHqw-07_aILHtwcnPU.roa
File: 8woF160MDWHqw-07_aILHtwcnPU.roa (raw, json)
Hash identifier: BMx48hxDsmMWm3iVl3tu1voFNtybQJuZkyswWtMvGls=
Subject key identifier: F3:0A:05:D7:AD:0C:0D:61:EA:C3:ED:3B:FD:A2:0B:1E:DC:1C:9C:F5
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 019114217D64847B04AFF516712188089543
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/8woF160MDWHqw-07_aILHtwcnPU.roa
Signing time: Fri 02 Aug 2024 17:27:04 +0000
ROA not before: Fri 02 Aug 2024 17:27:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25369
IP address blocks: 87.246.8.0/22 maxlen: 22
87.246.12.0/24 maxlen: 24
87.246.13.0/24 maxlen: 24
87.246.14.0/24 maxlen: 24
87.246.28.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:14:21:7d:64:84:7b:04:af:f5:16:71:21:88:08:95:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Aug 2 17:27:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f30a05d7ad0c0d61eac3ed3bfda20b1edc1c9cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4e:b2:9c:ae:f4:32:23:73:d1:75:b9:90:50:
22:3a:15:d1:4b:e6:9b:8f:ad:3d:be:60:e0:14:79:
5b:a8:0e:57:0c:d4:66:b5:36:a0:47:f3:d9:7b:8f:
7d:1c:dc:02:cb:0c:54:48:b1:29:0e:2b:10:76:1e:
fd:d4:59:d5:ff:f2:27:57:db:89:9a:b0:d7:eb:2a:
c0:7a:62:f7:90:c9:16:c1:9f:2a:89:76:78:43:1b:
0e:ef:1f:89:32:9f:8a:31:ac:b1:6d:99:1a:58:cd:
8e:87:03:09:6d:fb:4f:70:25:20:fc:0c:44:cc:bc:
94:21:86:a9:3b:d6:93:59:4b:ee:95:cb:e8:27:f4:
44:55:9a:64:51:01:06:56:e7:5c:fc:d7:59:c8:ac:
e1:8d:41:bb:fe:61:96:96:2f:6c:c7:a3:16:cc:72:
9b:ec:74:bd:cf:a9:94:61:eb:bc:be:f8:ca:73:39:
f6:c8:02:25:ca:bf:82:f7:d0:76:d7:4e:98:8c:ff:
5b:c6:d8:7b:3c:50:04:57:a3:34:20:68:0d:6c:cf:
30:ae:50:b5:f4:21:f3:2d:e3:aa:e5:14:d5:eb:4a:
f5:04:08:dd:4f:21:b5:43:c2:08:6e:5c:76:0a:0e:
65:97:69:cd:7d:e8:ce:62:f4:33:97:f6:44:3f:19:
ce:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0A:05:D7:AD:0C:0D:61:EA:C3:ED:3B:FD:A2:0B:1E:DC:1C:9C:F5
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/8woF160MDWHqw-07_aILHtwcnPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.8.0-87.246.14.255
87.246.28.0/22
Signature Algorithm: sha256WithRSAEncryption
41:2f:70:a5:5c:54:db:86:08:a3:a5:39:32:2a:0b:e2:02:a5:
ac:f0:4c:ab:d5:50:55:75:39:a7:a4:2c:e6:f5:3a:8e:0c:92:
94:30:cb:41:8d:13:56:8e:33:dc:eb:08:4c:93:d5:e8:10:8a:
2c:3d:4a:9b:ac:07:e0:7c:52:6c:9a:a6:db:c3:e2:82:5e:bf:
da:16:99:35:18:d8:21:16:87:56:cb:2d:cb:5b:8f:88:28:62:
be:55:cd:32:b1:cf:01:55:ae:db:2b:47:d8:c4:23:10:cd:8a:
35:69:6b:90:65:7d:bb:b5:94:aa:f8:74:6f:45:29:ac:51:c1:
ea:55:92:89:69:ff:ce:3e:58:8f:ff:f3:54:e0:90:f6:b8:25:
56:7c:3a:c6:1c:41:11:d7:07:54:22:03:ee:9a:e9:de:ca:e8:
3e:07:8c:be:22:0d:1f:76:af:b6:97:6f:c7:67:51:50:54:4d:
0c:0a:48:87:38:f0:46:1a:1e:74:98:83:5d:cd:1d:4a:a4:29:
c8:39:20:61:ba:b1:d0:71:83:32:50:01:10:b8:d2:48:86:77:
da:e6:db:cd:e0:ff:60:44:c2:bc:fa:eb:3e:de:cc:b5:99:19:
e3:b5:b3:41:7b:2f:d3:2e:57:a9:93:7b:b6:9a:22:25:04:1a:
90:42:dd:40
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAZEUIX1khHsEr/UWcSGICJVDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMmE4YzFkMzExODk1MDE2MTA4ZmZiZDE0NTc1Yzc3Y2My
ODc3M2EwHhcNMjQwODAyMTcyNzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzBhMDVkN2FkMGMwZDYxZWFjM2VkM2JmZGEyMGIxZWRjMWM5Y2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu06ynK70MiNz0XW5kFAiOhXRS+ab
j609vmDgFHlbqA5XDNRmtTagR/PZe499HNwCywxUSLEpDisQdh791FnV//InV9uJ
mrDX6yrAemL3kMkWwZ8qiXZ4QxsO7x+JMp+KMayxbZkaWM2OhwMJbftPcCUg/AxE
zLyUIYapO9aTWUvulcvoJ/REVZpkUQEGVudc/NdZyKzhjUG7/mGWli9sx6MWzHKb
7HS9z6mUYeu8vvjKczn2yAIlyr+C99B2106YjP9bxth7PFAEV6M0IGgNbM8wrlC1
9CHzLeOq5RTV60r1BAjdTyG1Q8IIblx2Cg5ll2nNfejOYvQzl/ZEPxnOhQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFPMKBdetDA1h6sPtO/2iCx7cHJz1MB8GA1UdIwQY
MBaAFHIqjB0xGJUBYQj/vRRXXHfMKHc6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYt
YTU1OGVlNjU0MzFmLzEvOHdvRjE2ME1EV0hxdy0wN19hSUxIdHdjblBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iMWY2ZWUtYzRlZi00MzU1LWFmMzYtYTU1OGVlNjU0MzFm
LzEvY2lxTUhURVlsUUZoQ1AtOUZGZGNkOHdvZHpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBANX9ggD
BABX9g4DBAJX9hwwDQYJKoZIhvcNAQELBQADggEBAEEvcKVcVNuGCKOlOTIqC+IC
pazwTKvVUFV1OaekLOb1Oo4MkpQwy0GNE1aOM9zrCEyT1egQiiw9SpusB+B8Umya
ptvD4oJev9oWmTUY2CEWh1bLLctbj4goYr5VzTKxzwFVrtsrR9jEIxDNijVpa5Bl
fbu1lKr4dG9FKaxRwepVkolp/84+WI//81TgkPa4JVZ8OsYcQRHXB1QiA+6a6d7K
6D4HjL4iDR92r7aXb8dnUVBUTQwKSIc48EYaHnSYg13NHUqkKcg5IGG6sdBxgzJQ
ARC40kiGd9rm283g/2BEwrz66z7ezLWZGeO1s0F7L9MuV6mTe7aaIiUEGpBC3UA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:34:49 2024 by rpki-client on console-ams.rpki-client.org