Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/euno5Dz_m5YJ5mWwbGAAfm---mE.roa
File: euno5Dz_m5YJ5mWwbGAAfm---mE.roa (raw, json)
Hash identifier: 4bWImfQV7w7K7IyHLRQoTvEjip5daXC/3SDxuaTWUJo=
Subject key identifier: 7A:E9:E8:E4:3C:FF:9B:96:09:E6:65:B0:6C:60:00:7E:6F:BE:FA:61
Certificate issuer: /CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Certificate serial: 018DC78CA647B0EF5AAA86E0DDA0E04FE769
Authority key identifier: 77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/euno5Dz_m5YJ5mWwbGAAfm---mE.roa
Signing time: Tue 20 Feb 2024 17:24:59 +0000
ROA not before: Tue 20 Feb 2024 17:24:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211090
IP address blocks: 185.172.230.0/24 maxlen: 24
185.172.231.0/24 maxlen: 24
2a0b:81c0::/29 maxlen: 29
2a0b:81c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 11:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:8c:a6:47:b0:ef:5a:aa:86:e0:dd:a0:e0:4f:e7:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Validity
Not Before: Feb 20 17:24:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ae9e8e43cff9b9609e665b06c60007e6fbefa61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:27:5e:e2:db:ce:25:88:57:81:11:6b:cd:6d:
d9:9a:d8:be:d7:55:bc:74:78:9d:4f:db:c6:71:40:
cf:19:96:d8:03:2e:06:05:30:39:32:d6:51:ce:ea:
48:69:31:45:94:9a:b5:64:56:6e:3a:18:2b:4b:d9:
7b:b6:fd:4f:5c:d2:17:9b:e7:01:03:ef:10:51:4a:
50:96:8e:9a:a6:63:fb:9c:f1:cb:13:08:6c:6b:1a:
dd:ea:a0:47:dc:a9:40:36:8b:be:9d:2f:06:4e:5a:
b2:42:d6:68:89:17:57:eb:d0:18:a6:a3:ee:7e:e3:
e3:1b:1b:b3:53:ef:fa:51:c4:6d:91:97:b9:3f:a0:
d3:e5:75:df:3c:94:b0:8b:82:5d:d8:19:88:a9:6c:
5f:a1:0b:7c:e9:70:c9:a8:37:05:d8:b6:43:26:95:
2a:99:5a:13:2e:a2:b7:80:12:a5:74:d0:67:01:d1:
72:db:fb:76:1e:02:bd:f6:c4:9d:da:2d:a7:d8:7a:
e4:eb:f7:b8:25:4f:62:e5:af:3c:26:f2:fa:05:98:
1e:58:7d:c9:c8:6c:d1:d4:73:7d:60:12:6c:c5:cf:
27:a0:ac:bd:b8:bd:15:78:ec:9c:54:47:41:9b:bd:
f0:e9:38:0e:58:6c:8e:f7:d6:d3:86:76:26:90:ee:
8d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E9:E8:E4:3C:FF:9B:96:09:E6:65:B0:6C:60:00:7E:6F:BE:FA:61
X509v3 Authority Key Identifier:
keyid:77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/euno5Dz_m5YJ5mWwbGAAfm---mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.230.0/23
IPv6:
2a0b:81c0::/29
Signature Algorithm: sha256WithRSAEncryption
5c:c1:ba:54:8f:78:7d:c5:f2:07:90:f3:98:23:4f:2f:c3:f6:
92:b6:57:5a:b4:fa:38:6f:f2:fb:9e:8d:41:21:39:0f:d2:09:
88:02:86:96:23:5d:9f:47:6a:65:5a:a6:2d:fd:8c:a7:47:7e:
5e:ff:14:75:ee:fa:bb:50:57:0d:8d:df:24:d8:17:b7:30:2f:
48:8a:b7:65:3d:02:78:2c:aa:16:9b:50:55:af:48:97:33:39:
84:d1:6c:16:00:e5:c2:97:85:c4:f5:17:6f:01:c6:9f:c6:d6:
ac:5e:64:fc:7a:92:f2:7a:61:6d:13:79:d3:ab:61:03:c8:24:
48:17:77:bf:bb:6a:cf:21:1a:eb:25:c0:bc:4c:e6:c6:21:c8:
fb:99:de:4c:79:0b:79:b6:6d:48:b8:6e:ff:d8:01:50:d8:34:
93:c0:9c:7f:76:a5:b1:9b:f1:0a:06:44:a2:9e:d2:53:db:fa:
e6:31:61:81:3a:79:d3:e5:7f:9a:92:e0:f1:03:8b:a1:2d:4c:
1c:5d:9f:c5:dc:9f:4d:06:7f:a8:90:cf:68:5e:bb:fd:91:6e:
2c:2a:8a:d9:4a:46:be:dd:bb:aa:bf:22:91:2d:32:36:3d:de:
a4:63:d0:37:28:c1:0f:ec:fa:81:b5:de:06:85:84:1c:31:a0:
1c:ba:8a:8f
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY3HjKZHsO9aqobg3aDgT+dpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YzZmYjY1NTQ2MWQ3M2ZjZjIxZTg2MTJjMzE4NzA2YTA4
OWE1YzIwHhcNMjQwMjIwMTcyNDU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWU5ZThlNDNjZmY5Yjk2MDllNjY1YjA2YzYwMDA3ZTZmYmVmYTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyde4tvOJYhXgRFrzW3Zmti+11W8
dHidT9vGcUDPGZbYAy4GBTA5MtZRzupIaTFFlJq1ZFZuOhgrS9l7tv1PXNIXm+cB
A+8QUUpQlo6apmP7nPHLEwhsaxrd6qBH3KlANou+nS8GTlqyQtZoiRdX69AYpqPu
fuPjGxuzU+/6UcRtkZe5P6DT5XXfPJSwi4Jd2BmIqWxfoQt86XDJqDcF2LZDJpUq
mVoTLqK3gBKldNBnAdFy2/t2HgK99sSd2i2n2Hrk6/e4JU9i5a88JvL6BZgeWH3J
yGzR1HN9YBJsxc8noKy9uL0VeOycVEdBm73w6TgOWGyO99bThnYmkO6N6wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFHrp6OQ8/5uWCeZlsGxgAH5vvvphMB8GA1UdIwQY
MBaAFHfG+2VUYdc/zyHoYSwxhwagiaXCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDhiN1pWUmgxel9QSWVoaExER0hCcUNKcGNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kZjBlMTEtNTkzYS00ZWU0LThkY2Yt
YWIzMDgxYjJhYmE0LzEvZXVubzVEel9tNVlKNW1Xd2JHQUFmbS0tLW1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9kZjBlMTEtNTkzYS00ZWU0LThkY2YtYWIzMDgxYjJhYmE0
LzEvZDhiN1pWUmgxel9QSWVoaExER0hCcUNKcGNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuazmMA0E
AgACMAcDBQMqC4HAMA0GCSqGSIb3DQEBCwUAA4IBAQBcwbpUj3h9xfIHkPOYI08v
w/aStldatPo4b/L7no1BITkP0gmIAoaWI12fR2plWqYt/YynR35e/xR17vq7UFcN
jd8k2Be3MC9IirdlPQJ4LKoWm1BVr0iXMzmE0WwWAOXCl4XE9RdvAcafxtasXmT8
epLyemFtE3nTq2EDyCRIF3e/u2rPIRrrJcC8TObGIcj7md5MeQt5tm1IuG7/2AFQ
2DSTwJx/dqWxm/EKBkSintJT2/rmMWGBOnnT5X+akuDxA4uhLUwcXZ/F3J9NBn+o
kM9oXrv9kW4sKorZSka+3buqvyKRLTI2Pd6kY9A3KMEP7PqBtd4GhYQcMaAcuoqP
-----END CERTIFICATE-----
Generated at Sun Jun 23 18:10:26 2024 by rpki-client on console-fra.rpki-client.org