Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/FFn_xKStaaQxJ8VwgjDSAu_NhPY.roa
File: FFn_xKStaaQxJ8VwgjDSAu_NhPY.roa (raw, json)
Hash identifier: cNGeDOUPei0V2pFFwABwNLwPggLt+fnneqJ1HiAahWo=
Subject key identifier: 14:59:FF:C4:A4:AD:69:A4:31:27:C5:70:82:30:D2:02:EF:CD:84:F6
Certificate issuer: /CN=839a9a1b7e11fde77e4e1f57ff11864cee21f165
Certificate serial: 018CC348909896DCF138BC46562C68D40149
Authority key identifier: 83:9A:9A:1B:7E:11:FD:E7:7E:4E:1F:57:FF:11:86:4C:EE:21:F1:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5qaG34R_ed-Th9X_xGGTO4h8WU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/FFn_xKStaaQxJ8VwgjDSAu_NhPY.roa
Signing time: Mon 01 Jan 2024 04:29:21 +0000
ROA not before: Mon 01 Jan 2024 04:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56985
IP address blocks: 185.111.112.0/22 maxlen: 22
195.5.172.0/24 maxlen: 24
141.105.112.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/g5qaG34R_ed-Th9X_xGGTO4h8WU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/g5qaG34R_ed-Th9X_xGGTO4h8WU.mft
rsync://rpki.ripe.net/repository/DEFAULT/g5qaG34R_ed-Th9X_xGGTO4h8WU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 13:57:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:90:98:96:dc:f1:38:bc:46:56:2c:68:d4:01:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=839a9a1b7e11fde77e4e1f57ff11864cee21f165
Validity
Not Before: Jan 1 04:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1459ffc4a4ad69a43127c5708230d202efcd84f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3a:c1:db:d6:3d:53:8f:14:30:ad:85:ab:ea:
c7:26:ba:d9:76:7e:1a:e0:00:aa:d1:20:ec:70:48:
6d:bd:9e:3f:e9:53:1a:59:2e:08:a1:99:30:d5:7a:
8e:41:40:2c:3e:52:03:a5:96:16:bb:48:28:04:9d:
01:53:68:73:47:28:61:e2:12:23:e0:19:f3:70:44:
4a:14:87:7f:51:9d:c5:c5:60:f4:6a:52:5b:f6:17:
e1:15:d2:b1:b4:2f:4e:18:8e:01:c6:15:34:de:5d:
65:5c:79:60:99:cd:c3:f2:b6:aa:90:33:0a:0b:44:
ab:a6:5f:7a:2f:e2:14:c9:ff:5c:fb:3c:4c:c9:a8:
d4:89:75:85:58:20:5f:d6:b2:68:f2:1a:30:89:0a:
ef:7f:5d:72:38:22:7d:fa:2c:f9:b3:be:1d:f3:e2:
0d:f1:70:0f:d7:00:1d:6e:b9:bc:f9:da:96:7c:e3:
59:a6:7a:3a:b9:db:f4:82:66:4e:f6:c6:50:9e:64:
14:20:95:ba:0e:ab:75:17:40:5b:ca:64:80:b0:19:
a0:14:ae:53:e4:50:7e:f0:5c:b5:81:c8:55:18:c7:
42:e0:72:c8:e3:a8:c4:e0:42:3d:18:58:f3:40:74:
ab:3c:35:67:ba:84:a3:b1:63:52:cf:c9:6a:25:51:
f2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:59:FF:C4:A4:AD:69:A4:31:27:C5:70:82:30:D2:02:EF:CD:84:F6
X509v3 Authority Key Identifier:
keyid:83:9A:9A:1B:7E:11:FD:E7:7E:4E:1F:57:FF:11:86:4C:EE:21:F1:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5qaG34R_ed-Th9X_xGGTO4h8WU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/FFn_xKStaaQxJ8VwgjDSAu_NhPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/g5qaG34R_ed-Th9X_xGGTO4h8WU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.112.0/21
185.111.112.0/22
195.5.172.0/24
Signature Algorithm: sha256WithRSAEncryption
46:fc:c3:bd:32:9b:2a:e8:f5:11:ab:c2:41:4e:3d:6f:eb:5a:
d5:51:78:bb:00:f5:6b:74:9d:dd:6d:0b:6e:5a:de:74:57:1a:
43:0a:02:20:dc:25:d6:51:50:1a:18:ef:cf:8b:cc:b2:d9:97:
85:59:b7:93:fe:12:6c:15:2c:46:91:86:ef:da:d8:26:ab:ea:
6d:a6:f6:c4:bb:b8:f0:8d:51:86:41:2f:b2:11:8e:71:40:4a:
f5:8d:5b:83:b6:bc:f2:0b:de:9c:a9:8a:67:a9:eb:bc:08:7f:
cb:97:2c:b3:2d:96:f0:0c:dd:08:52:83:26:31:cf:77:d1:81:
65:55:e5:70:de:4d:4c:68:04:c4:6e:76:59:af:96:db:b4:21:
8a:59:8a:2d:a9:ed:05:08:fb:77:9f:0e:f6:22:f1:4f:73:a6:
b8:44:0f:73:eb:d5:91:ba:1f:bb:e9:ba:68:33:98:b4:d6:4e:
43:33:8f:cd:89:cb:50:b9:44:0b:bc:4d:13:d9:2a:ea:de:9d:
35:43:08:0a:59:57:e6:d4:7f:67:e7:ca:d3:73:00:4c:82:11:
9a:1f:4a:5b:99:9f:37:9b:39:8e:3f:60:d8:e2:fb:b4:ee:da:
68:66:38:b5:31:c0:e1:a1:4a:fa:ea:79:03:5c:42:33:9d:21:
2b:0c:66:fe
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzDSJCYltzxOLxGVixo1AFJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzOWE5YTFiN2UxMWZkZTc3ZTRlMWY1N2ZmMTE4NjRjZWUy
MWYxNjUwHhcNMjQwMTAxMDQyOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDU5ZmZjNGE0YWQ2OWE0MzEyN2M1NzA4MjMwZDIwMmVmY2Q4NGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljrB29Y9U48UMK2Fq+rHJrrZdn4a
4ACq0SDscEhtvZ4/6VMaWS4IoZkw1XqOQUAsPlIDpZYWu0goBJ0BU2hzRyhh4hIj
4BnzcERKFId/UZ3FxWD0alJb9hfhFdKxtC9OGI4BxhU03l1lXHlgmc3D8raqkDMK
C0Srpl96L+IUyf9c+zxMyajUiXWFWCBf1rJo8howiQrvf11yOCJ9+iz5s74d8+IN
8XAP1wAdbrm8+dqWfONZpno6udv0gmZO9sZQnmQUIJW6Dqt1F0BbymSAsBmgFK5T
5FB+8Fy1gchVGMdC4HLI46jE4EI9GFjzQHSrPDVnuoSjsWNSz8lqJVHybwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFBRZ/8SkrWmkMSfFcIIw0gLvzYT2MB8GA1UdIwQY
MBaAFIOamht+Ef3nfk4fV/8RhkzuIfFlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzVxYUczNFJfZWQtVGg5WF94R0dUTzRoOFdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC83NjdiZDAtYjBlZi00MTE0LWE1OGUt
ZmY4NmJmODgxNjQ4LzEvRkZuX3hLU3RhYVF4SjhWd2dqRFNBdV9OaFBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC83NjdiZDAtYjBlZi00MTE0LWE1OGUtZmY4NmJmODgxNjQ4
LzEvZzVxYUczNFJfZWQtVGg5WF94R0dUTzRoOFdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDjWlwAwQC
uW9wAwQAwwWsMA0GCSqGSIb3DQEBCwUAA4IBAQBG/MO9Mpsq6PURq8JBTj1v61rV
UXi7APVrdJ3dbQtuWt50VxpDCgIg3CXWUVAaGO/Pi8yy2ZeFWbeT/hJsFSxGkYbv
2tgmq+ptpvbEu7jwjVGGQS+yEY5xQEr1jVuDtrzyC96cqYpnqeu8CH/LlyyzLZbw
DN0IUoMmMc930YFlVeVw3k1MaATEbnZZr5bbtCGKWYotqe0FCPt3nw72IvFPc6a4
RA9z69WRuh+76bpoM5i01k5DM4/NictQuUQLvE0T2Srq3p01QwgKWVfm1H9n58rT
cwBMghGaH0pbmZ83mzmOP2DY4vu07tpoZji1McDhoUr66nkDXEIznSErDGb+
-----END CERTIFICATE-----
Generated at Fri Jun 21 20:01:30 2024 by rpki-client on console-ams.rpki-client.org