Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Eav87rxJgIuSPqawcfZrCS23gxw.roa
File: Eav87rxJgIuSPqawcfZrCS23gxw.roa (raw, json)
Hash identifier: m2s4YSgCCi9BZJy6YpgAu/bhHSbT+jfZSS2xrTcUNZM=
Subject key identifier: 11:AB:FC:EE:BC:49:80:8B:92:3E:A6:B0:71:F6:6B:09:2D:B7:83:1C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018EA338E72AB683025AFE2B0CBABA77C082
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Eav87rxJgIuSPqawcfZrCS23gxw.roa
Signing time: Wed 03 Apr 2024 09:09:59 +0000
ROA not before: Wed 03 Apr 2024 09:09:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213323
IP address blocks: 79.110.50.0/24 maxlen: 24
194.48.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a3:38:e7:2a:b6:83:02:5a:fe:2b:0c:ba:ba:77:c0:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 3 09:09:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11abfceebc49808b923ea6b071f66b092db7831c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2a:b7:93:8f:bc:0d:c6:bf:d1:35:9f:74:2d:
d9:78:ff:f7:32:a8:3c:92:22:5e:04:b3:8f:a7:20:
fc:66:85:41:e5:08:89:e6:cb:e8:46:06:67:df:90:
47:3d:5d:9b:3a:a2:da:c4:7c:2e:01:f2:37:18:5e:
54:c2:19:cf:61:3c:5d:5e:3a:a8:63:9c:ce:8c:f3:
bf:f1:13:62:87:a7:98:33:1a:a0:5d:11:39:fc:9d:
ca:6b:9d:9d:28:4d:0e:ea:3e:34:5d:f9:70:b7:91:
36:03:f3:f1:13:68:a5:c5:91:16:db:96:5e:69:ac:
73:c3:ec:a9:45:e6:91:ac:42:8c:3e:4f:da:e4:0a:
d2:25:1a:d9:08:4d:79:4f:39:84:fb:d4:ce:7e:e3:
a9:8b:a1:49:11:e9:55:6a:cf:6a:07:5f:58:2c:89:
a3:46:85:9c:6c:1b:8e:63:b7:97:58:69:04:a5:83:
bb:d8:2e:fa:89:f8:77:7d:05:d2:17:23:6f:86:44:
b8:10:4f:ae:83:83:76:11:62:91:27:0d:ce:e7:fa:
47:38:f4:ee:0b:86:60:52:fd:82:00:db:e7:41:6f:
ab:bb:70:7e:60:39:27:8e:40:bd:48:55:78:41:16:
4c:2b:92:35:04:c0:f9:ca:d6:9f:b2:8a:54:9c:c4:
76:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AB:FC:EE:BC:49:80:8B:92:3E:A6:B0:71:F6:6B:09:2D:B7:83:1C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Eav87rxJgIuSPqawcfZrCS23gxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.50.0/24
194.48.250.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:b9:4a:99:7b:aa:1d:09:56:0e:65:36:b2:01:59:c4:c5:99:
02:03:59:0d:ef:ac:85:63:92:ae:02:a9:9e:e3:71:fe:87:a3:
62:0a:51:c3:c6:49:84:cd:58:2f:61:af:db:06:25:45:66:1e:
e1:fc:3c:dc:a7:d8:ff:7e:4b:63:e1:51:77:b5:b0:80:15:3e:
94:c9:6d:34:04:db:70:51:da:3d:33:33:19:1f:b3:41:be:2e:
04:49:f4:7c:d2:16:4a:64:a4:72:4a:07:1e:69:d7:f3:6e:f4:
04:0d:96:d9:7c:63:c4:bb:b5:af:cb:13:74:82:e0:86:f3:5c:
e5:60:93:06:c7:2a:4e:50:2c:1e:9e:19:9d:fe:21:6c:5e:53:
c3:e8:15:e3:a4:e2:c2:1f:81:96:28:7c:8a:59:94:2f:45:ac:
10:3c:b5:f3:0c:ad:d1:28:51:1c:e3:07:58:90:7f:29:d0:40:
4d:8c:34:4a:ef:f6:90:d9:dc:5f:e2:b1:60:fc:24:3e:88:81:
5f:cd:29:42:23:fb:f8:db:cc:2c:e2:1b:54:04:22:2e:6c:17:
56:47:6f:e7:c5:1c:8c:af:d9:aa:8a:82:99:ad:68:34:b7:ae:
5f:8b:63:f5:92:7c:a6:fa:48:88:c7:74:92:64:30:ad:a2:5c:
a2:82:8d:0c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY6jOOcqtoMCWv4rDLq6d8CCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwNDAzMDkwOTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWFiZmNlZWJjNDk4MDhiOTIzZWE2YjA3MWY2NmIwOTJkYjc4MzFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyq3k4+8Dca/0TWfdC3ZeP/3Mqg8
kiJeBLOPpyD8ZoVB5QiJ5svoRgZn35BHPV2bOqLaxHwuAfI3GF5UwhnPYTxdXjqo
Y5zOjPO/8RNih6eYMxqgXRE5/J3Ka52dKE0O6j40Xflwt5E2A/PxE2ilxZEW25Ze
aaxzw+ypReaRrEKMPk/a5ArSJRrZCE15TzmE+9TOfuOpi6FJEelVas9qB19YLImj
RoWcbBuOY7eXWGkEpYO72C76ifh3fQXSFyNvhkS4EE+ug4N2EWKRJw3O5/pHOPTu
C4ZgUv2CANvnQW+ru3B+YDknjkC9SFV4QRZMK5I1BMD5ytafsopUnMR27QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBGr/O68SYCLkj6msHH2awktt4McMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvRWF2ODdyeEpnSXVTUHFhd2NmWnJDUzIzZ3h3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAT24yAwQA
wjD6MA0GCSqGSIb3DQEBCwUAA4IBAQCyuUqZe6odCVYOZTayAVnExZkCA1kN76yF
Y5KuAqme43H+h6NiClHDxkmEzVgvYa/bBiVFZh7h/Dzcp9j/fktj4VF3tbCAFT6U
yW00BNtwUdo9MzMZH7NBvi4ESfR80hZKZKRySgceadfzbvQEDZbZfGPEu7WvyxN0
guCG81zlYJMGxypOUCwenhmd/iFsXlPD6BXjpOLCH4GWKHyKWZQvRawQPLXzDK3R
KFEc4wdYkH8p0EBNjDRK7/aQ2dxf4rFg/CQ+iIFfzSlCI/v428ws4htUBCIubBdW
R2/nxRyMr9mqioKZrWg0t65fi2P1knym+kiIx3SSZDCtolyigo0M
-----END CERTIFICATE-----
Generated at Mon May 20 04:30:46 2024 by rpki-client on console-fra.rpki-client.org