Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/SLB1xTCkKxdzw9ipc9RKoPP7cR4.roa
File: SLB1xTCkKxdzw9ipc9RKoPP7cR4.roa (raw, json)
Hash identifier: mXN5H9M591dVGFZHZtlXHkKLrRI9XATDkzgbkYTKEyo=
Subject key identifier: 48:B0:75:C5:30:A4:2B:17:73:C3:D8:A9:73:D4:4A:A0:F3:FB:71:1E
Certificate issuer: /CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Certificate serial: 018CC56E983C465E33243871C5855EEF8BDD
Authority key identifier: D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/SLB1xTCkKxdzw9ipc9RKoPP7cR4.roa
Signing time: Mon 01 Jan 2024 14:30:08 +0000
ROA not before: Mon 01 Jan 2024 14:30:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59891
IP address blocks: 185.150.31.0/24 maxlen: 24
185.150.28.0/24 maxlen: 24
185.150.29.0/24 maxlen: 24
185.150.30.0/24 maxlen: 24
185.32.124.0/24 maxlen: 24
185.32.125.0/24 maxlen: 24
185.32.127.0/24 maxlen: 24
185.32.126.0/24 maxlen: 24
2a07:6d81::/32 maxlen: 32
2a07:6d85::/32 maxlen: 32
2a00:c1e2::/32 maxlen: 32
2a07:6d84::/32 maxlen: 32
2a00:c1e5::/32 maxlen: 32
2a07:6d82::/32 maxlen: 32
2a00:c1e1::/32 maxlen: 32
2a00:c1e4::/32 maxlen: 32
2a00:c1e7::/32 maxlen: 32
2a07:6d83::/32 maxlen: 32
2a07:6d87::/32 maxlen: 32
2a07:6d80::/32 maxlen: 32
2a00:c1e6::/32 maxlen: 32
2a00:c1e3::/32 maxlen: 32
2a07:6d86::/32 maxlen: 32
2a00:c1e0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:98:3c:46:5e:33:24:38:71:c5:85:5e:ef:8b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Validity
Not Before: Jan 1 14:30:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48b075c530a42b1773c3d8a973d44aa0f3fb711e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:57:31:d5:5e:45:09:6e:a1:e2:ea:ed:8a:31:
e1:6b:af:78:f5:37:eb:b0:89:ae:4a:0f:c3:aa:9d:
b2:fb:4a:db:85:40:05:00:46:a2:73:0c:bd:e1:bb:
5c:79:2d:c6:c5:e2:da:86:fa:8f:88:93:74:b1:87:
02:e1:56:e3:5d:7d:35:8e:5b:8e:af:4c:0f:b6:08:
04:1b:c7:1f:80:d9:e8:d1:ac:b7:25:90:5e:c5:79:
5a:54:99:4f:01:1b:12:6e:cd:68:76:31:1e:27:d2:
35:ac:57:62:14:f8:7b:1f:0a:ca:e9:ec:d1:58:9c:
74:66:fb:40:ec:05:ef:72:69:c8:8c:b6:de:6d:b9:
7f:4a:0a:dc:e8:b3:a7:c8:0e:00:16:39:ea:9a:47:
bc:db:b5:ad:19:62:20:48:72:6a:f3:81:36:07:af:
12:8a:51:2c:07:d8:bd:27:f2:8e:6a:05:02:14:69:
7e:0d:98:88:b7:2e:2a:ea:76:b5:d4:05:a5:4e:00:
0b:5c:9c:84:ac:8b:b5:6d:37:3c:a5:13:d0:da:66:
e1:e6:c9:29:0d:0f:89:33:8e:33:7b:5f:0c:89:35:
49:1a:40:68:a4:74:d3:dd:3e:95:94:36:78:95:c6:
22:8f:f1:67:cb:17:8b:40:9b:27:94:37:27:89:3b:
42:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B0:75:C5:30:A4:2B:17:73:C3:D8:A9:73:D4:4A:A0:F3:FB:71:1E
X509v3 Authority Key Identifier:
keyid:D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/SLB1xTCkKxdzw9ipc9RKoPP7cR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.124.0/22
185.150.28.0/22
IPv6:
2a00:c1e0::/29
2a07:6d80::/29
Signature Algorithm: sha256WithRSAEncryption
86:d7:b1:a9:c0:bc:11:b5:e9:76:86:73:84:86:0b:c7:22:7b:
34:69:79:44:60:4c:80:3b:b3:d8:cb:3d:ad:c8:11:73:04:af:
80:94:4e:a5:95:4c:06:19:c2:3c:95:ce:40:b7:f0:55:80:b8:
17:c9:90:47:dc:3d:e9:27:cc:a9:0c:ec:f9:43:3a:bf:08:e4:
5d:a2:10:5d:da:1a:6e:37:67:d4:ff:f9:a9:d3:31:71:21:c8:
b2:0a:20:6d:bc:df:9e:65:08:8f:88:17:42:70:63:f5:31:a5:
ed:91:1d:35:6a:1a:76:d6:be:5b:70:b7:97:3a:e9:52:2e:b0:
cf:a9:40:ea:c7:27:2e:57:7c:a5:0b:df:c9:ff:9b:9e:f0:fe:
62:c2:e5:2a:7a:1d:2e:b6:84:16:e9:4e:df:b1:66:5d:97:50:
9c:fb:81:62:3e:ec:c0:29:7a:76:7c:7c:69:7f:74:6f:c6:74:
9a:9d:95:51:32:b5:9a:73:ab:e1:d4:f7:30:85:32:ef:92:6a:
82:e5:de:59:9e:98:c5:41:a9:df:68:17:5c:eb:4e:d2:c0:19:
09:85:d6:00:da:5f:37:0b:b6:cc:23:ec:b4:3f:0a:c1:9c:f9:
29:ac:15:f7:07:ac:e8:e0:78:47:2e:d0:86:90:9e:5b:9d:25:
31:68:be:fd
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAYzFbpg8Rl4zJDhxxYVe74vdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NzdjZTE0MzQyMzJkODA4MTk1ZDBjYTcwYWIzOTFkZmIw
N2FmMmQwHhcNMjQwMTAxMTQzMDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGIwNzVjNTMwYTQyYjE3NzNjM2Q4YTk3M2Q0NGFhMGYzZmI3MTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlcx1V5FCW6h4urtijHha6949Tfr
sImuSg/Dqp2y+0rbhUAFAEaicwy94btceS3GxeLahvqPiJN0sYcC4VbjXX01jluO
r0wPtggEG8cfgNno0ay3JZBexXlaVJlPARsSbs1odjEeJ9I1rFdiFPh7HwrK6ezR
WJx0ZvtA7AXvcmnIjLbebbl/Sgrc6LOnyA4AFjnqmke827WtGWIgSHJq84E2B68S
ilEsB9i9J/KOagUCFGl+DZiIty4q6na11AWlTgALXJyErIu1bTc8pRPQ2mbh5skp
DQ+JM44ze18MiTVJGkBopHTT3T6VlDZ4lcYij/FnyxeLQJsnlDcniTtC+QIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFEiwdcUwpCsXc8PYqXPUSqDz+3EeMB8GA1UdIwQY
MBaAFNV3zhQ0Iy2AgZXQynCrOR37B68tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8wZDYxNWUtMjRkYi00N2VmLTlhYTMt
NjBlNmIxNDhkMjhiLzEvU0xCMXhUQ2tLeGR6dzlpcGM5UktvUFA3Y1I0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8wZDYxNWUtMjRkYi00N2VmLTlhYTMtNjBlNmIxNDhkMjhi
LzEvMVhmT0ZEUWpMWUNCbGRES2NLczVIZnNIcnkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQCuSB8AwQC
uZYcMBQEAgACMA4DBQMqAMHgAwUDKgdtgDANBgkqhkiG9w0BAQsFAAOCAQEAhtex
qcC8EbXpdoZzhIYLxyJ7NGl5RGBMgDuz2Ms9rcgRcwSvgJROpZVMBhnCPJXOQLfw
VYC4F8mQR9w96SfMqQzs+UM6vwjkXaIQXdoabjdn1P/5qdMxcSHIsgogbbzfnmUI
j4gXQnBj9TGl7ZEdNWoadta+W3C3lzrpUi6wz6lA6scnLld8pQvfyf+bnvD+YsLl
KnodLraEFulO37FmXZdQnPuBYj7swCl6dnx8aX90b8Z0mp2VUTK1mnOr4dT3MIUy
75JqguXeWZ6YxUGp32gXXOtO0sAZCYXWANpfNwu2zCPstD8KwZz5KawV9wes6OB4
Ry7QhpCeW50lMWi+/Q==
-----END CERTIFICATE-----
Generated at Sun Nov 24 00:20:55 2024 by rpki-client on console-ams.rpki-client.org