Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/gUG5LJ87jNQmkCiRnwKRrYIaHYU.roa
File: gUG5LJ87jNQmkCiRnwKRrYIaHYU.roa (raw, json)
Hash identifier: rWytAjw7KsDg016qohwEXm61zWNtdn8PHH5cJ4SRD8A=
Subject key identifier: 81:41:B9:2C:9F:3B:8C:D4:26:90:28:91:9F:02:91:AD:82:1A:1D:85
Certificate issuer: /CN=6506096695f7e6610b19b08e1d7fd9c4d914a4f0
Certificate serial: 019058FDFEAFF30D8D060C4B8511C77AA377
Authority key identifier: 65:06:09:66:95:F7:E6:61:0B:19:B0:8E:1D:7F:D9:C4:D9:14:A4:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZQYJZpX35mELGbCOHX_ZxNkUpPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/gUG5LJ87jNQmkCiRnwKRrYIaHYU.roa
Signing time: Thu 27 Jun 2024 09:19:18 +0000
ROA not before: Thu 27 Jun 2024 09:19:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205614
IP address blocks: 45.89.160.0/22 maxlen: 24
45.135.124.0/22 maxlen: 22
185.171.44.0/22 maxlen: 24
193.22.251.0/24 maxlen: 24
2a0b:e880::/29 maxlen: 29
2a0d:1f80::/32 maxlen: 36
2a0e:8b40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/ZQYJZpX35mELGbCOHX_ZxNkUpPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/ZQYJZpX35mELGbCOHX_ZxNkUpPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZQYJZpX35mELGbCOHX_ZxNkUpPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jul 2024 18:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:fd:fe:af:f3:0d:8d:06:0c:4b:85:11:c7:7a:a3:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6506096695f7e6610b19b08e1d7fd9c4d914a4f0
Validity
Not Before: Jun 27 09:19:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8141b92c9f3b8cd4269028919f0291ad821a1d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e3:eb:55:37:f8:f8:e2:0b:b4:05:86:38:ca:
a3:9f:73:8e:c3:62:21:43:18:a7:2f:85:98:31:ee:
17:d5:df:f5:f5:6e:79:21:b0:0e:6a:c8:27:06:fb:
7d:1f:31:ef:c2:df:2a:ee:b7:92:9e:fd:a2:c8:8f:
b4:2d:61:3a:4e:66:9b:6d:03:27:01:0f:6f:45:95:
d1:0f:73:af:e4:ff:91:0d:d3:03:06:fd:36:bb:bb:
51:ce:65:9a:7e:36:15:08:3c:49:58:c5:9b:6a:79:
75:77:02:92:99:c1:8e:9c:3c:66:49:ac:6f:ea:8f:
0e:c3:7f:11:7d:49:fb:0b:02:eb:98:56:a1:a8:00:
38:52:ac:2b:4c:41:bc:bf:86:6e:75:2d:d6:35:99:
73:8b:62:d8:51:22:a5:18:d0:c2:03:5a:cf:fe:48:
0b:fa:69:3a:0c:61:45:72:4c:8c:15:f9:01:de:94:
55:ff:82:39:ba:01:0e:a2:d4:76:d2:1a:9b:cf:a9:
43:04:aa:71:7e:1a:a3:3e:37:a5:b5:ac:01:cf:6f:
ee:95:42:ec:ba:01:96:48:20:52:0c:af:11:e4:29:
63:d8:4b:e0:23:05:5c:38:ed:e6:58:87:67:49:45:
d2:ca:71:b4:78:a4:36:da:c4:37:b5:80:28:ee:11:
63:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:41:B9:2C:9F:3B:8C:D4:26:90:28:91:9F:02:91:AD:82:1A:1D:85
X509v3 Authority Key Identifier:
keyid:65:06:09:66:95:F7:E6:61:0B:19:B0:8E:1D:7F:D9:C4:D9:14:A4:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZQYJZpX35mELGbCOHX_ZxNkUpPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/gUG5LJ87jNQmkCiRnwKRrYIaHYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/f5baa4-f670-4385-bc38-a4152558d18c/1/ZQYJZpX35mELGbCOHX_ZxNkUpPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.160.0/22
45.135.124.0/22
185.171.44.0/22
193.22.251.0/24
IPv6:
2a0b:e880::/29
2a0d:1f80::/32
2a0e:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
1e:45:79:d4:07:19:68:41:82:0c:80:22:85:eb:37:2c:0f:8d:
03:07:dd:32:ca:f0:07:de:10:92:6d:66:2d:7b:93:a5:2a:0e:
e5:b0:9b:64:98:fe:b0:a0:27:38:7b:8c:bc:b3:84:ab:d0:e0:
1e:27:1f:20:16:b6:52:c8:47:f2:94:83:76:80:d6:e2:a8:ce:
7e:16:44:91:7b:8e:b5:3f:0a:bd:69:af:34:84:ed:d0:9d:91:
37:ae:e0:a8:d8:2f:99:c0:7f:ab:7a:ef:94:a2:bf:a4:0a:31:
7a:9e:0d:f4:d8:fd:b3:ca:a1:bf:2f:08:cb:46:03:c4:0b:13:
7d:14:64:e7:fa:4f:75:0d:53:51:c4:bb:e8:73:87:57:0d:eb:
2e:ba:bc:2f:50:41:89:ed:26:8e:55:1b:6f:1f:ef:1c:21:20:
fe:1a:ca:a6:af:98:11:7d:db:2f:87:77:8b:54:04:62:a9:00:
66:44:48:a2:72:9e:db:f3:d2:88:95:e3:1b:bc:31:b0:47:fc:
ef:da:9a:e5:f1:ce:d8:cc:8e:42:d5:5f:07:46:a1:a3:3c:dc:
b5:7b:72:5d:33:b3:ca:ea:69:d6:36:48:1a:09:cf:59:78:15:
8c:a9:74:05:96:0c:76:69:96:69:3c:e8:44:f1:32:54:b8:d8:
b0:91:4e:d8
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAZBY/f6v8w2NBgxLhRHHeqN3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1MDYwOTY2OTVmN2U2NjEwYjE5YjA4ZTFkN2ZkOWM0ZDkx
NGE0ZjAwHhcNMjQwNjI3MDkxOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTQxYjkyYzlmM2I4Y2Q0MjY5MDI4OTE5ZjAyOTFhZDgyMWExZDg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+PrVTf4+OILtAWGOMqjn3OOw2Ih
QxinL4WYMe4X1d/19W55IbAOasgnBvt9HzHvwt8q7reSnv2iyI+0LWE6TmabbQMn
AQ9vRZXRD3Ov5P+RDdMDBv02u7tRzmWafjYVCDxJWMWbanl1dwKSmcGOnDxmSaxv
6o8Ow38RfUn7CwLrmFahqAA4UqwrTEG8v4ZudS3WNZlzi2LYUSKlGNDCA1rP/kgL
+mk6DGFFckyMFfkB3pRV/4I5ugEOotR20hqbz6lDBKpxfhqjPjeltawBz2/ulULs
ugGWSCBSDK8R5Clj2EvgIwVcOO3mWIdnSUXSynG0eKQ22sQ3tYAo7hFj6QIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFIFBuSyfO4zUJpAokZ8Cka2CGh2FMB8GA1UdIwQY
MBaAFGUGCWaV9+ZhCxmwjh1/2cTZFKTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlFZSlpwWDM1bUVMR2JDT0hYX1p4TmtVcFBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9mNWJhYTQtZjY3MC00Mzg1LWJjMzgt
YTQxNTI1NThkMThjLzEvZ1VHNUxKODdqTlFta0NpUm53S1JyWUlhSFlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9mNWJhYTQtZjY3MC00Mzg1LWJjMzgtYTQxNTI1NThkMThj
LzEvWlFZSlpwWDM1bUVMR2JDT0hYX1p4TmtVcFBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAeBAIAATAYAwQCLVmgAwQC
LYd8AwQCuassAwQAwRb7MBsEAgACMBUDBQMqC+iAAwUAKg0fgAMFAyoOi0AwDQYJ
KoZIhvcNAQELBQADggEBAB5FedQHGWhBggyAIoXrNywPjQMH3TLK8AfeEJJtZi17
k6UqDuWwm2SY/rCgJzh7jLyzhKvQ4B4nHyAWtlLIR/KUg3aA1uKozn4WRJF7jrU/
Cr1przSE7dCdkTeu4KjYL5nAf6t675Siv6QKMXqeDfTY/bPKob8vCMtGA8QLE30U
ZOf6T3UNU1HEu+hzh1cN6y66vC9QQYntJo5VG28f7xwhIP4ayqavmBF92y+Hd4tU
BGKpAGZESKJyntvz0oiV4xu8MbBH/O/amuXxztjMjkLVXwdGoaM83LV7cl0zs8rq
adY2SBoJz1l4FYypdAWWDHZplmk86ETxMlS42LCRTtg=
-----END CERTIFICATE-----
Generated at Thu Jul 4 03:35:46 2024 by rpki-client on console.sobornost.net