Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Ce86kV8_1tnw-li25_2KTB0OBiI.roa
File: Ce86kV8_1tnw-li25_2KTB0OBiI.roa (raw, json)
Hash identifier: pE4OfEq0Ao45tdXDMZePcBTmQdh2XCIDq1ReIyYFIj0=
Subject key identifier: 09:EF:3A:91:5F:3F:D6:D9:F0:FA:58:B6:E7:FD:8A:4C:1D:0E:06:22
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 018FEC95471844CB3FABF83EA1FFC3E84764
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Ce86kV8_1tnw-li25_2KTB0OBiI.roa
Signing time: Thu 06 Jun 2024 08:05:56 +0000
ROA not before: Thu 06 Jun 2024 08:05:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 78.136.248.0/23 maxlen: 24
78.136.250.0/23 maxlen: 24
78.136.252.0/23 maxlen: 24
78.136.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 20:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:95:47:18:44:cb:3f:ab:f8:3e:a1:ff:c3:e8:47:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jun 6 08:05:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09ef3a915f3fd6d9f0fa58b6e7fd8a4c1d0e0622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0a:7f:f7:fc:0f:ba:9c:8b:e5:bc:c9:7f:86:
ec:83:e5:91:13:cd:85:18:43:6b:50:a7:28:1b:60:
cc:78:83:f0:6d:65:9f:76:0c:02:bd:ce:08:1a:4f:
7f:ea:23:77:3c:fa:be:3b:30:b5:4f:e4:de:6c:48:
58:c1:98:ab:39:cd:86:cc:58:08:e2:87:d2:ea:94:
31:df:2c:82:33:f1:8f:79:7e:6a:57:13:38:11:ee:
a8:1a:a2:54:61:d3:40:c8:1a:ba:62:5a:08:80:00:
f4:e8:d6:54:d5:ec:21:d9:bb:8e:f9:42:b7:22:48:
5d:5b:0d:37:91:74:10:b7:0a:a5:c4:ab:2c:03:9f:
91:2d:fc:03:7c:96:e3:c7:d7:a9:a4:94:41:7d:d7:
2c:be:95:ad:2d:79:26:e6:21:c8:d8:e5:e5:86:c2:
40:bf:cd:df:08:a4:33:9b:79:3d:f5:ab:26:4f:96:
1c:b3:1e:e8:89:32:7c:c5:15:70:10:01:0f:09:42:
db:cd:09:78:a8:69:65:c8:0a:0a:9b:e2:25:3b:4c:
62:4a:f1:ad:53:23:92:25:88:ca:af:a6:aa:f5:7e:
4b:27:9c:ee:a0:71:f5:6c:c3:29:8a:90:87:86:8c:
fe:07:4d:2a:6a:f1:3f:11:b3:66:4c:95:79:b1:47:
4f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EF:3A:91:5F:3F:D6:D9:F0:FA:58:B6:E7:FD:8A:4C:1D:0E:06:22
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Ce86kV8_1tnw-li25_2KTB0OBiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.248.0-78.136.254.255
Signature Algorithm: sha256WithRSAEncryption
84:14:ef:1c:15:91:8c:09:d2:04:76:5c:17:8a:b7:bb:d2:50:
d5:27:79:62:e1:22:88:f4:5a:5c:64:67:59:a9:cd:cc:d3:c1:
c4:2e:a3:7c:f0:cc:64:af:a5:7e:4b:43:03:40:5c:47:30:38:
ff:c1:e9:69:16:7f:75:d9:11:74:18:06:0c:d2:91:c9:64:c7:
a9:82:f9:2a:61:19:4e:0c:53:dc:76:57:91:23:a6:d9:3c:9b:
07:e7:84:0d:60:a0:84:22:c0:0b:bb:21:f6:da:13:3a:b1:9e:
d1:e2:b0:fa:22:93:d3:df:12:75:e3:9b:63:58:3c:88:af:82:
41:93:d4:98:ce:9b:c9:d6:9f:2a:ff:27:09:7a:3d:e6:7e:ad:
b9:f5:f7:1e:77:d7:eb:0e:8d:b1:ab:11:d4:68:30:51:e1:8a:
11:b2:c1:40:b6:fd:c6:fb:1b:6d:01:d8:bc:00:81:cc:ea:f4:
e0:7b:2c:d9:17:13:63:2a:81:34:8c:58:71:d8:2d:8e:87:d5:
16:74:69:3b:3f:a6:c4:23:90:83:16:c1:84:37:fb:4d:6b:c2:
ce:8c:a0:d2:85:d9:5c:47:12:4e:fb:61:dd:49:06:6d:ac:10:
ba:28:c1:30:b6:ec:70:64:8b:52:9e:4b:2b:36:cd:f9:c5:80:
9d:a8:6b:b5
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAY/slUcYRMs/q/g+of/D6EdkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyOWMyNzMwOThiNTI3NjhjYTBlNDRhM2EyYzE2ZWZlZDRh
NjVjYTAwHhcNMjQwNjA2MDgwNTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOWVmM2E5MTVmM2ZkNmQ5ZjBmYTU4YjZlN2ZkOGE0YzFkMGUwNjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wp/9/wPupyL5bzJf4bsg+WRE82F
GENrUKcoG2DMeIPwbWWfdgwCvc4IGk9/6iN3PPq+OzC1T+TebEhYwZirOc2GzFgI
4ofS6pQx3yyCM/GPeX5qVxM4Ee6oGqJUYdNAyBq6YloIgAD06NZU1ewh2buO+UK3
IkhdWw03kXQQtwqlxKssA5+RLfwDfJbjx9eppJRBfdcsvpWtLXkm5iHI2OXlhsJA
v83fCKQzm3k99asmT5Ycsx7oiTJ8xRVwEAEPCULbzQl4qGllyAoKm+IlO0xiSvGt
UyOSJYjKr6aq9X5LJ5zuoHH1bMMpipCHhoz+B00qavE/EbNmTJV5sUdPDQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFAnvOpFfP9bZ8PpYtuf9ikwdDgYiMB8GA1UdIwQY
MBaAFFKcJzCYtSdoyg5Eo6LBbv7UplygMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXB3bk1KaTFKMmpLRGtTam9zRnVfdFNtWEtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS82ZDkzNTktYWZlZi00NTM1LTljOTMt
ZjMzZDNiYjM2NDg0LzEvQ2U4NmtWOF8xdG53LWxpMjVfMktUQjBPQmlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS82ZDkzNTktYWZlZi00NTM1LTljOTMtZjMzZDNiYjM2NDg0
LzEvVXB3bk1KaTFKMmpLRGtTam9zRnVfdFNtWEtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBANOiPgD
BABOiP4wDQYJKoZIhvcNAQELBQADggEBAIQU7xwVkYwJ0gR2XBeKt7vSUNUneWLh
Ioj0WlxkZ1mpzczTwcQuo3zwzGSvpX5LQwNAXEcwOP/B6WkWf3XZEXQYBgzSkclk
x6mC+SphGU4MU9x2V5Ejptk8mwfnhA1goIQiwAu7IfbaEzqxntHisPoik9PfEnXj
m2NYPIivgkGT1JjOm8nWnyr/Jwl6PeZ+rbn19x531+sOjbGrEdRoMFHhihGywUC2
/cb7G20B2LwAgczq9OB7LNkXE2MqgTSMWHHYLY6H1RZ0aTs/psQjkIMWwYQ3+01r
ws6MoNKF2VxHEk77Yd1JBm2sELoowTC27HBki1KeSys2zfnFgJ2oa7U=
-----END CERTIFICATE-----
Generated at Sun Jun 23 01:12:06 2024 by rpki-client on console-fra.rpki-client.org