Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/PG8Ch1rwu9UNwNnhkim_QziRBgU.roa
File: PG8Ch1rwu9UNwNnhkim_QziRBgU.roa (raw, json)
Hash identifier: qSdKmu32j/PDFimoWsUKirZl7aHFVV3wLTT6zeBj87c=
Subject key identifier: 3C:6F:02:87:5A:F0:BB:D5:0D:C0:D9:E1:92:29:BF:43:38:91:06:05
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018CC8020A788D2D66A1C97493A5C02FBA72
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/PG8Ch1rwu9UNwNnhkim_QziRBgU.roa
Signing time: Tue 02 Jan 2024 02:30:26 +0000
ROA not before: Tue 02 Jan 2024 02:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205576
IP address blocks: 46.61.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:0a:78:8d:2d:66:a1:c9:74:93:a5:c0:2f:ba:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 02:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c6f02875af0bbd50dc0d9e19229bf4338910605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8d:03:fc:59:06:36:89:ff:7c:3e:8b:6f:e9:
28:ee:91:ff:72:1a:22:51:5e:7b:57:c7:b5:57:80:
f1:24:0d:02:94:bc:49:55:f9:77:72:a7:0e:72:02:
d3:9c:be:11:67:2b:ca:a9:e4:93:35:18:e1:4a:41:
9b:bf:ce:23:7d:0c:c1:bd:aa:88:19:77:8a:00:a1:
50:cc:2f:ef:1a:bc:6a:ff:ed:f5:09:64:43:4a:01:
66:52:3d:43:d6:bb:5d:48:48:e7:74:aa:25:09:cc:
5b:f5:0d:08:3e:f4:34:be:60:8b:1c:94:dc:06:1f:
5a:6f:08:e6:e0:33:7b:35:8d:8f:a1:f9:ad:2d:d4:
5f:5d:f3:b3:73:4e:55:3d:16:88:4a:95:67:1e:bb:
d7:c5:f0:9c:a3:bf:39:a3:28:79:19:5a:d7:28:c9:
d9:93:71:9a:3c:12:d9:2c:ec:3d:d9:70:61:49:d1:
b5:0e:ec:f6:7e:71:7f:f5:ac:8c:ef:f8:36:a2:fc:
3f:fc:9a:ca:26:38:a2:bc:72:f7:f6:10:de:d8:3a:
42:97:bb:27:6a:29:a7:83:ea:81:c3:11:00:d3:1b:
8f:0f:ff:7c:2a:0b:14:e9:66:db:85:b1:9a:eb:0f:
0a:e4:2a:61:47:56:e5:f3:f6:07:58:36:42:2e:ba:
8a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6F:02:87:5A:F0:BB:D5:0D:C0:D9:E1:92:29:BF:43:38:91:06:05
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/PG8Ch1rwu9UNwNnhkim_QziRBgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.61.184.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:f2:98:e5:fb:7c:b4:69:ae:ad:d8:d6:99:61:e8:36:f2:0b:
db:42:03:22:46:01:95:79:43:c3:af:25:cc:ff:36:81:f2:4a:
c7:be:bc:13:71:b5:75:63:29:93:62:ed:f1:02:b3:02:49:49:
fe:6b:cd:f8:c6:64:d0:9f:a5:ea:ba:59:2c:8d:be:1c:bd:d8:
1d:3e:fd:63:41:ce:d6:9c:8c:ed:c1:9e:e5:3e:2c:d0:de:fa:
8d:71:21:89:93:b4:4d:bc:e8:b3:17:f6:39:69:e9:2d:b7:f8:
ba:9c:08:90:a1:b6:94:9c:7e:56:68:fe:bf:1c:df:fa:f7:e3:
8c:64:2e:f4:b3:e4:05:7f:b3:6c:00:48:a9:88:d9:bf:5a:79:
8c:d8:a8:be:13:ce:53:06:b2:ef:3d:35:bc:94:4f:13:77:72:
4a:d6:b6:cc:27:5d:18:e0:f7:19:1e:4d:c6:a8:53:5c:f4:e7:
12:c4:4c:b1:95:33:34:1f:06:06:69:c2:32:9c:9f:a1:d0:07:
5f:41:66:59:43:00:ea:90:24:9d:96:81:df:b3:37:95:b0:65:
fd:85:2c:fd:f4:fd:28:0a:64:04:6a:41:20:79:32:00:1b:e1:
6d:34:61:6e:41:d9:c5:7c:f9:fb:e1:cc:a2:d1:45:41:78:41:
f2:79:48:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAgp4jS1mocl0k6XAL7pyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwMTAyMDIzMDI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzZmMDI4NzVhZjBiYmQ1MGRjMGQ5ZTE5MjI5YmY0MzM4OTEwNjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqY0D/FkGNon/fD6Lb+ko7pH/choi
UV57V8e1V4DxJA0ClLxJVfl3cqcOcgLTnL4RZyvKqeSTNRjhSkGbv84jfQzBvaqI
GXeKAKFQzC/vGrxq/+31CWRDSgFmUj1D1rtdSEjndKolCcxb9Q0IPvQ0vmCLHJTc
Bh9abwjm4DN7NY2PofmtLdRfXfOzc05VPRaISpVnHrvXxfCco785oyh5GVrXKMnZ
k3GaPBLZLOw92XBhSdG1Duz2fnF/9ayM7/g2ovw//JrKJjiivHL39hDe2DpCl7sn
aimng+qBwxEA0xuPD/98KgsU6WbbhbGa6w8K5CphR1bl8/YHWDZCLrqKYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDxvAoda8LvVDcDZ4ZIpv0M4kQYFMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvUEc4Q2gxcnd1OVVOd05uaGtpbV9RemlSQmdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALj24MA0G
CSqGSIb3DQEBCwUAA4IBAQBK8pjl+3y0aa6t2NaZYeg28gvbQgMiRgGVeUPDryXM
/zaB8krHvrwTcbV1YymTYu3xArMCSUn+a834xmTQn6Xqulksjb4cvdgdPv1jQc7W
nIztwZ7lPizQ3vqNcSGJk7RNvOizF/Y5aektt/i6nAiQobaUnH5WaP6/HN/69+OM
ZC70s+QFf7NsAEipiNm/WnmM2Ki+E85TBrLvPTW8lE8Td3JK1rbMJ10Y4PcZHk3G
qFNc9OcSxEyxlTM0HwYGacIynJ+h0AdfQWZZQwDqkCSdloHfszeVsGX9hSz99P0o
CmQEakEgeTIAG+FtNGFuQdnFfPn74cyi0UVBeEHyeUjV
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:43:26 2024 by rpki-client on console-fra.rpki-client.org