Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/bM_2w6t4ocKL1Seh6Kkmyv76huY.roa
File: bM_2w6t4ocKL1Seh6Kkmyv76huY.roa (raw, json)
Hash identifier: UhMOxCNIOGsgmP4jZgL8u/YHQUobEthyadpcfOHEcA4=
Subject key identifier: 6C:CF:F6:C3:AB:78:A1:C2:8B:D5:27:A1:E8:A9:26:CA:FE:FA:86:E6
Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Certificate serial: 018CC8021D8B2D85006637BA32FD404EABC0
Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/bM_2w6t4ocKL1Seh6Kkmyv76huY.roa
Signing time: Tue 02 Jan 2024 02:30:30 +0000
ROA not before: Tue 02 Jan 2024 02:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34535
IP address blocks: 178.250.190.0/23 maxlen: 24
193.0.230.0/24 maxlen: 24
193.0.227.0/24 maxlen: 24
178.250.184.0/23 maxlen: 24
2a0f:cdc0::/32 maxlen: 32
2a0f:cdc1::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:1d:8b:2d:85:00:66:37:ba:32:fd:40:4e:ab:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Validity
Not Before: Jan 2 02:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ccff6c3ab78a1c28bd527a1e8a926cafefa86e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:75:38:8c:53:b8:6c:3a:86:d1:7d:c2:53:46:
19:14:91:56:e3:98:cc:e5:08:fa:ec:8d:50:03:c4:
7d:9a:90:70:de:95:1d:84:bb:ac:b1:d0:d1:2d:a8:
8e:91:83:e4:02:55:5f:f6:b2:cd:e0:ee:6d:dc:85:
66:53:ba:6d:95:23:f6:94:1a:de:a2:90:0d:f6:40:
77:d4:2b:3e:d0:d3:ce:e9:9a:0e:41:3f:57:91:9f:
f4:4e:14:1e:3b:06:99:6c:bf:52:4a:9f:79:aa:ca:
3c:a7:71:77:db:6c:35:eb:45:53:de:33:5b:30:5d:
de:80:8d:cf:40:47:10:b3:9d:23:18:1a:2d:d2:4e:
5c:ea:7b:1b:c0:79:02:41:6d:ed:59:1e:4d:5c:57:
95:0c:41:45:ef:a4:72:39:52:7d:b5:57:68:34:9b:
ce:b5:ec:0b:ec:78:c1:d3:62:a0:1c:c7:0d:bd:45:
47:39:4c:5b:ee:19:ac:b7:45:b9:d6:93:af:6c:92:
ee:0e:4f:9e:6d:4f:11:ab:52:d4:80:1c:18:18:ad:
ad:8b:b1:1e:80:e3:d9:33:6a:ba:de:80:a4:b0:e6:
09:30:73:fc:34:08:6e:a8:f8:e5:b3:b3:89:5c:49:
3f:a2:1e:2e:92:36:39:39:75:e1:ef:24:f9:a3:6c:
d0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:CF:F6:C3:AB:78:A1:C2:8B:D5:27:A1:E8:A9:26:CA:FE:FA:86:E6
X509v3 Authority Key Identifier:
keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/bM_2w6t4ocKL1Seh6Kkmyv76huY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.184.0/23
178.250.190.0/23
193.0.227.0/24
193.0.230.0/24
IPv6:
2a0f:cdc0::/31
Signature Algorithm: sha256WithRSAEncryption
78:4e:a8:d7:50:9a:0f:9b:a8:dc:0b:1c:67:52:1f:bf:4b:32:
2d:d6:15:e2:1e:3d:f3:50:32:45:3a:05:fa:f5:12:4c:ce:16:
3e:fb:95:91:b8:ea:5f:dd:e9:76:ee:94:86:b2:07:65:bc:db:
0b:06:e4:fa:91:08:fd:2d:8a:10:ef:1c:22:40:cd:20:8f:ce:
65:ff:e9:b9:36:aa:1f:14:2c:33:bc:81:d3:61:60:12:96:87:
33:a1:3a:78:a8:cf:ed:0c:13:54:62:96:1a:86:7c:60:fd:5b:
09:90:7a:cc:4b:2d:03:2b:a1:22:42:6c:a0:51:50:a1:b3:75:
56:c6:b0:95:b2:cb:99:22:51:17:47:47:63:6e:98:d6:00:a3:
61:b3:35:c6:3e:67:ff:1e:c6:54:c9:f8:f5:4d:78:26:57:05:
d2:fd:5a:7d:53:eb:e4:9b:1f:cb:e3:6c:e4:9c:81:28:39:04:
02:04:cc:a0:71:34:b1:65:65:c6:b4:01:9a:16:6f:8e:6b:85:
42:98:a8:5d:c5:91:80:8c:9c:42:72:a4:d1:0e:75:18:ea:b1:
f9:e2:ff:e6:fc:7c:be:7b:e9:0d:ec:ff:5c:90:b6:68:1e:69:
50:b9:05:32:b3:8b:86:94:df:24:3b:9f:45:ed:a1:56:21:3c:
37:fc:f9:4e
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYzIAh2LLYUAZje6Mv1ATqvAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi
ZjA2OTIwHhcNMjQwMTAyMDIzMDMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2NmZjZjM2FiNzhhMWMyOGJkNTI3YTFlOGE5MjZjYWZlZmE4NmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3U4jFO4bDqG0X3CU0YZFJFW45jM
5Qj67I1QA8R9mpBw3pUdhLussdDRLaiOkYPkAlVf9rLN4O5t3IVmU7ptlSP2lBre
opAN9kB31Cs+0NPO6ZoOQT9XkZ/0ThQeOwaZbL9SSp95qso8p3F322w160VT3jNb
MF3egI3PQEcQs50jGBot0k5c6nsbwHkCQW3tWR5NXFeVDEFF76RyOVJ9tVdoNJvO
tewL7HjB02KgHMcNvUVHOUxb7hmst0W51pOvbJLuDk+ebU8Rq1LUgBwYGK2ti7Ee
gOPZM2q63oCksOYJMHP8NAhuqPjls7OJXEk/oh4ukjY5OXXh7yT5o2zQDQIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFGzP9sOreKHCi9UnoeipJsr++obmMB8GA1UdIwQY
MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt
YWE5ZDY5MTgxMWU3LzEvYk1fMnc2dDRvY0tMMVNlaDZLa215djc2aHVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3
LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQBsvq4AwQB
svq+AwQAwQDjAwQAwQDmMA0EAgACMAcDBQEqD83AMA0GCSqGSIb3DQEBCwUAA4IB
AQB4TqjXUJoPm6jcCxxnUh+/SzIt1hXiHj3zUDJFOgX69RJMzhY++5WRuOpf3el2
7pSGsgdlvNsLBuT6kQj9LYoQ7xwiQM0gj85l/+m5NqofFCwzvIHTYWASloczoTp4
qM/tDBNUYpYahnxg/VsJkHrMSy0DK6EiQmygUVChs3VWxrCVssuZIlEXR0djbpjW
AKNhszXGPmf/HsZUyfj1TXgmVwXS/Vp9U+vkmx/L42zknIEoOQQCBMygcTSxZWXG
tAGaFm+Oa4VCmKhdxZGAjJxCcqTRDnUY6rH54v/m/Hy+e+kN7P9ckLZoHmlQuQUy
s4uGlN8kO59F7aFWITw3/PlO
-----END CERTIFICATE-----
Generated at Sat Jun 22 20:53:39 2024 by rpki-client on console-ams.rpki-client.org