Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/TTtPOl2YQy9m5h-qpwZraIo1Naw.roa
File: TTtPOl2YQy9m5h-qpwZraIo1Naw.roa (raw, json)
Hash identifier: Vk1dKzeC4Hz+w0vMwsRLq6PTxRiYR0gaWp8x59Gv3Cc=
Subject key identifier: 4D:3B:4F:3A:5D:98:43:2F:66:E6:1F:AA:A7:06:6B:68:8A:35:35:AC
Certificate issuer: /CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Certificate serial: 018E107844B83FE9AB8A16A3A70B3E2DBFAC
Authority key identifier: 8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/TTtPOl2YQy9m5h-qpwZraIo1Naw.roa
Signing time: Tue 05 Mar 2024 21:15:01 +0000
ROA not before: Tue 05 Mar 2024 21:15:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49162
IP address blocks: 31.128.96.0/24 maxlen: 24
31.128.97.0/24 maxlen: 24
31.128.98.0/24 maxlen: 24
31.128.99.0/24 maxlen: 24
31.128.100.0/24 maxlen: 24
31.128.101.0/24 maxlen: 24
31.128.102.0/24 maxlen: 24
31.128.103.0/24 maxlen: 24
31.128.104.0/24 maxlen: 24
31.128.105.0/24 maxlen: 24
31.128.106.0/24 maxlen: 24
31.128.107.0/24 maxlen: 24
31.128.108.0/24 maxlen: 24
31.128.109.0/24 maxlen: 24
31.128.110.0/24 maxlen: 24
31.128.111.0/24 maxlen: 24
91.210.32.0/24 maxlen: 24
91.210.33.0/24 maxlen: 24
91.210.34.0/24 maxlen: 24
91.210.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:10:78:44:b8:3f:e9:ab:8a:16:a3:a7:0b:3e:2d:bf:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Validity
Not Before: Mar 5 21:15:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d3b4f3a5d98432f66e61faaa7066b688a3535ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:de:b2:e0:35:0e:47:ad:09:e8:65:6e:43:38:
bb:e7:c3:a4:82:9b:31:4b:8d:80:a0:d3:09:7e:46:
22:cf:ba:c7:8b:9b:96:18:9f:ab:17:b9:43:9a:c2:
ee:ea:2d:cb:4a:9f:65:85:a6:62:3c:65:27:6c:c1:
33:f3:00:5b:df:cc:f2:4c:5f:9d:82:55:cc:c4:eb:
82:db:fa:6e:5d:67:e2:f8:a4:96:91:d7:65:6d:4a:
87:52:6a:04:d6:5d:02:12:0e:eb:0a:7c:fb:08:de:
23:68:e3:eb:2e:3c:9f:a7:2b:fc:b7:84:d0:9a:d9:
7e:a5:ad:41:e2:e1:b8:6b:ee:58:7e:4a:6d:4f:4c:
cf:e4:b5:7b:3c:0d:7b:f9:2e:2f:e3:60:5e:80:fa:
52:04:42:cd:6d:b0:e8:47:f9:55:9c:8e:d3:2a:50:
e4:d4:24:a8:f4:84:46:a7:5c:d9:4d:2b:b7:da:85:
df:26:d7:39:2c:97:05:97:c4:e4:cf:b1:41:50:70:
1a:b9:83:9d:c5:15:44:9c:40:7d:dc:48:27:fa:76:
ce:e5:da:da:82:06:9a:42:35:42:d2:d0:a3:2b:78:
4f:85:83:24:88:67:28:35:5c:85:0f:85:0d:2c:3b:
38:27:f1:b0:8d:77:2d:c4:6d:2f:75:a8:25:a5:ef:
92:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3B:4F:3A:5D:98:43:2F:66:E6:1F:AA:A7:06:6B:68:8A:35:35:AC
X509v3 Authority Key Identifier:
keyid:8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/TTtPOl2YQy9m5h-qpwZraIo1Naw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.96.0/20
91.210.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:aa:f2:bd:7f:d3:bc:0a:62:e1:c1:7f:5c:86:38:9f:a3:c6:
da:c3:78:30:3b:2e:df:04:b5:0b:3c:d2:fc:0f:f7:15:1b:9d:
00:10:7b:24:81:95:2b:f2:23:73:a8:69:6c:83:80:21:61:96:
d3:8c:ac:1a:ea:dc:11:15:14:81:20:46:43:6f:44:6c:55:7f:
a0:5a:bc:e2:b9:85:31:0d:ca:2f:d1:3a:96:aa:62:9f:7b:84:
ff:ad:43:5b:cb:da:73:a2:63:ab:9a:09:89:15:4f:9d:f1:b4:
f1:ef:2a:f3:32:c2:d1:51:4a:a9:4d:3d:f7:40:14:2d:36:c8:
81:3b:bc:89:c3:e2:07:39:6a:0d:4b:bf:d4:75:31:a5:f5:f5:
28:a4:17:b7:37:f9:80:ff:24:ad:06:ff:4b:f6:c5:fc:d6:07:
11:b2:08:1d:82:54:18:3e:25:bb:65:89:79:1b:ee:5d:49:9c:
70:a7:77:54:c0:b2:a0:2c:fa:12:ef:7b:92:8d:12:99:a8:1a:
2f:df:55:37:8d:42:e3:24:12:5a:24:93:70:92:b3:65:d7:8c:
37:05:cf:7d:01:61:04:b1:92:35:a6:ba:89:42:09:b7:d8:4f:
38:29:d9:2a:81:f3:dc:10:d7:c1:92:7f:a8:03:a7:5c:dd:d1:
a9:3a:eb:5d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY4QeES4P+mrihajpws+Lb+sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlZjY2NjkxYWQzYTQxNjUyZjViZDg1OTYyMzBiM2FjNzQz
ZDJhMmMwHhcNMjQwMzA1MjExNTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDNiNGYzYTVkOTg0MzJmNjZlNjFmYWFhNzA2NmI2ODhhMzUzNWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmt6y4DUOR60J6GVuQzi758Okgpsx
S42AoNMJfkYiz7rHi5uWGJ+rF7lDmsLu6i3LSp9lhaZiPGUnbMEz8wBb38zyTF+d
glXMxOuC2/puXWfi+KSWkddlbUqHUmoE1l0CEg7rCnz7CN4jaOPrLjyfpyv8t4TQ
mtl+pa1B4uG4a+5YfkptT0zP5LV7PA17+S4v42BegPpSBELNbbDoR/lVnI7TKlDk
1CSo9IRGp1zZTSu32oXfJtc5LJcFl8Tkz7FBUHAauYOdxRVEnEB93Egn+nbO5dra
ggaaQjVC0tCjK3hPhYMkiGcoNVyFD4UNLDs4J/GwjXctxG0vdaglpe+S7wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFE07TzpdmEMvZuYfqqcGa2iKNTWsMB8GA1UdIwQY
MBaAFI72ZpGtOkFlL1vYWWIws6x0PSosMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanZabWthMDZRV1V2VzloWllqQ3pySFE5S2l3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9mYzg3ZmEtY2JmYS00ZjNjLTg4ZDMt
YmE5MjJiYjFlYmI0LzEvVFR0UE9sMllReTltNWgtcXB3WnJhSW8xTmF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9mYzg3ZmEtY2JmYS00ZjNjLTg4ZDMtYmE5MjJiYjFlYmI0
LzEvanZabWthMDZRV1V2VzloWllqQ3pySFE5S2l3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEH4BgAwQC
W9IgMA0GCSqGSIb3DQEBCwUAA4IBAQAuqvK9f9O8CmLhwX9chjifo8baw3gwOy7f
BLULPNL8D/cVG50AEHskgZUr8iNzqGlsg4AhYZbTjKwa6twRFRSBIEZDb0RsVX+g
WrziuYUxDcov0TqWqmKfe4T/rUNby9pzomOrmgmJFU+d8bTx7yrzMsLRUUqpTT33
QBQtNsiBO7yJw+IHOWoNS7/UdTGl9fUopBe3N/mA/yStBv9L9sX81gcRsggdglQY
PiW7ZYl5G+5dSZxwp3dUwLKgLPoS73uSjRKZqBov31U3jULjJBJaJJNwkrNl14w3
Bc99AWEEsZI1prqJQgm32E84KdkqgfPcENfBkn+oA6dc3dGpOutd
-----END CERTIFICATE-----
Generated at Sat Jun 8 06:07:49 2024 by rpki-client on console-fra.rpki-client.org