Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/DJ8YPpBv1r5xme_cM5cGM_rhW44.roa
File: DJ8YPpBv1r5xme_cM5cGM_rhW44.roa (raw, json)
Hash identifier: HeZA2eqlW94JUbC+xikmElyv3mucySD5EB7KTlBxxRE=
Subject key identifier: 0C:9F:18:3E:90:6F:D6:BE:71:99:EF:DC:33:97:06:33:FA:E1:5B:8E
Certificate issuer: /CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Certificate serial: 018CCA2952C1EAAB0EE6168E3FE9975E5F2E
Authority key identifier: EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/DJ8YPpBv1r5xme_cM5cGM_rhW44.roa
Signing time: Tue 02 Jan 2024 12:32:34 +0000
ROA not before: Tue 02 Jan 2024 12:32:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205418
IP address blocks: 185.155.181.0/24 maxlen: 24
185.155.183.0/24 maxlen: 24
2a00:8c40:243::/48 maxlen: 48
2a00:8c40:235::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/7x8BiBtzyOm12SI5IppuUS7KTnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/7x8BiBtzyOm12SI5IppuUS7KTnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:52:c1:ea:ab:0e:e6:16:8e:3f:e9:97:5e:5f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1f01881b73c8e9b5d92239229a6e512eca4e7c
Validity
Not Before: Jan 2 12:32:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c9f183e906fd6be7199efdc33970633fae15b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:68:81:37:41:a7:77:3c:72:fb:83:0b:56:30:
3c:7b:78:b7:7d:31:17:f7:69:15:57:7e:e2:cb:c0:
db:8a:ed:57:56:ba:03:c5:18:f2:17:09:a0:1f:c6:
38:36:86:14:09:c6:42:d6:e7:9a:38:d0:0b:7e:a7:
89:98:bb:a8:4d:48:fb:6e:e2:46:09:aa:0b:60:1e:
a7:ad:f2:4e:71:93:95:37:0b:17:d4:3f:ae:61:28:
38:23:4b:75:2a:eb:17:90:2f:28:e5:d1:af:8c:22:
3c:ce:6c:01:c0:f6:15:a0:8c:61:5b:b2:46:29:63:
88:ba:d7:fa:3e:10:73:fe:e8:1a:88:51:9d:d6:5c:
a7:20:b5:d8:d0:f2:76:03:a4:a6:3a:20:b0:90:8f:
9a:64:1c:be:7f:0e:be:41:9a:9d:99:78:1f:55:d1:
e6:e9:43:d1:f9:b0:b2:a5:c9:f5:c8:28:fb:4f:9a:
41:db:e3:f4:47:79:ee:a9:86:24:ed:47:81:20:2f:
37:45:8e:60:67:50:3c:31:8a:f1:ee:4c:0e:34:97:
eb:bf:4d:03:ad:43:85:da:68:83:d9:37:00:9b:e4:
84:bb:81:d2:a0:c5:2c:65:88:c6:73:2e:e4:12:2d:
4c:cc:fe:d1:05:4b:19:f5:bd:1f:2b:16:f2:7a:20:
cd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:9F:18:3E:90:6F:D6:BE:71:99:EF:DC:33:97:06:33:FA:E1:5B:8E
X509v3 Authority Key Identifier:
keyid:EF:1F:01:88:1B:73:C8:E9:B5:D9:22:39:22:9A:6E:51:2E:CA:4E:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7x8BiBtzyOm12SI5IppuUS7KTnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/DJ8YPpBv1r5xme_cM5cGM_rhW44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/7x8BiBtzyOm12SI5IppuUS7KTnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.181.0/24
185.155.183.0/24
IPv6:
2a00:8c40:235::/48
2a00:8c40:243::/48
Signature Algorithm: sha256WithRSAEncryption
31:f3:85:32:89:59:8f:78:9e:16:66:47:0f:c6:70:50:17:69:
0e:b5:1f:16:72:44:65:ce:ce:94:93:5d:ae:dc:45:20:d1:07:
39:4b:5e:b3:c4:14:55:a7:ae:f5:8b:ae:ce:f4:7c:b7:35:7a:
57:f2:21:e3:65:27:e2:77:63:99:a2:83:8d:07:95:4e:84:0c:
ab:4d:ca:a8:df:46:aa:aa:13:16:0b:c8:3f:af:42:50:18:b9:
90:2c:7b:ab:d4:4d:4a:14:10:23:86:74:0e:19:59:78:8e:9c:
3b:5c:a5:61:82:04:21:ba:d9:13:12:e7:bf:d8:15:23:a5:34:
70:bb:ac:c1:d2:7f:b1:00:d2:55:fd:8b:75:17:a5:f6:e4:c4:
97:b2:c1:3f:a0:1e:a9:d3:77:0c:a9:eb:40:ca:11:f2:4e:f3:
51:88:b8:f9:d6:ee:8f:14:05:75:21:9f:f4:15:5f:63:33:60:
b4:39:71:4b:8c:bc:4d:d1:0d:e5:f4:1f:99:4d:8d:32:b6:66:
26:83:5f:c1:08:80:4b:c3:af:09:0e:1b:06:00:e4:61:80:08:
b8:b7:94:8b:2e:20:19:4f:7d:79:4c:6b:14:21:bc:a3:1d:de:
45:54:65:5a:2b:72:5e:2d:40:ae:d3:f6:cb:13:88:fb:9c:8a:
9d:06:b2:ff
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYzKKVLB6qsO5haOP+mXXl8uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMWYwMTg4MWI3M2M4ZTliNWQ5MjIzOTIyOWE2ZTUxMmVj
YTRlN2MwHhcNMjQwMTAyMTIzMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzlmMTgzZTkwNmZkNmJlNzE5OWVmZGMzMzk3MDYzM2ZhZTE1YjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1miBN0Gndzxy+4MLVjA8e3i3fTEX
92kVV37iy8Dbiu1XVroDxRjyFwmgH8Y4NoYUCcZC1ueaONALfqeJmLuoTUj7buJG
CaoLYB6nrfJOcZOVNwsX1D+uYSg4I0t1KusXkC8o5dGvjCI8zmwBwPYVoIxhW7JG
KWOIutf6PhBz/ugaiFGd1lynILXY0PJ2A6SmOiCwkI+aZBy+fw6+QZqdmXgfVdHm
6UPR+bCypcn1yCj7T5pB2+P0R3nuqYYk7UeBIC83RY5gZ1A8MYrx7kwONJfrv00D
rUOF2miD2TcAm+SEu4HSoMUsZYjGcy7kEi1MzP7RBUsZ9b0fKxbyeiDNZQIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFAyfGD6Qb9a+cZnv3DOXBjP64VuOMB8GA1UdIwQY
MBaAFO8fAYgbc8jptdkiOSKablEuyk58MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3g4QmlCdHp5T20xMlNJNUlwcHVVUzdLVG53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS82NzUzOTktODFiZS00ZmVjLTlmODYt
NTUxMzFjYzFlZmVhLzEvREo4WVBwQnYxcjV4bWVfY001Y0dNX3JoVzQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS82NzUzOTktODFiZS00ZmVjLTlmODYtNTUxMzFjYzFlZmVh
LzEvN3g4QmlCdHp5T20xMlNJNUlwcHVVUzdLVG53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQAuZu1AwQA
uZu3MBgEAgACMBIDBwAqAIxAAjUDBwAqAIxAAkMwDQYJKoZIhvcNAQELBQADggEB
ADHzhTKJWY94nhZmRw/GcFAXaQ61HxZyRGXOzpSTXa7cRSDRBzlLXrPEFFWnrvWL
rs70fLc1elfyIeNlJ+J3Y5mig40HlU6EDKtNyqjfRqqqExYLyD+vQlAYuZAse6vU
TUoUECOGdA4ZWXiOnDtcpWGCBCG62RMS57/YFSOlNHC7rMHSf7EA0lX9i3UXpfbk
xJeywT+gHqnTdwyp60DKEfJO81GIuPnW7o8UBXUhn/QVX2MzYLQ5cUuMvE3RDeX0
H5lNjTK2ZiaDX8EIgEvDrwkOGwYA5GGACLi3lIsuIBlPfXlMaxQhvKMd3kVUZVor
cl4tQK7T9ssTiPucip0Gsv8=
-----END CERTIFICATE-----
Generated at Sun Jun 23 17:40:02 2024 by rpki-client on console-ams.rpki-client.org