Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/9boaKhnLfo_HAfDHKuZe-iJKJPQ.roa
File: 9boaKhnLfo_HAfDHKuZe-iJKJPQ.roa (raw, json)
Hash identifier: JaBkoH6AJkW8arvm6vCf1IrlP55rgUYUxhgyGIQuIrw=
Subject key identifier: F5:BA:1A:2A:19:CB:7E:8F:C7:01:F0:C7:2A:E6:5E:FA:22:4A:24:F4
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 0191E50708E5C8DE22AEAB092AD12B23C566
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/9boaKhnLfo_HAfDHKuZe-iJKJPQ.roa
Signing time: Thu 12 Sep 2024 06:58:49 +0000
ROA not before: Thu 12 Sep 2024 06:58:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215480
IP address blocks: 185.212.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:07:08:e5:c8:de:22:ae:ab:09:2a:d1:2b:23:c5:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Sep 12 06:58:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5ba1a2a19cb7e8fc701f0c72ae65efa224a24f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bc:c0:05:e4:97:be:7a:87:d0:f0:cd:7e:6c:
4c:c1:31:57:f1:b4:0d:15:c2:f2:ea:af:8a:b3:00:
d6:94:74:cd:77:9b:79:9f:94:7d:ba:c3:b1:ca:5f:
2c:da:eb:9b:a0:5e:54:e9:9b:c3:48:0c:a6:6f:e1:
3b:94:61:88:cc:72:7d:0c:1a:56:fe:9e:42:6e:f0:
a9:71:70:99:ac:c6:26:81:44:b2:06:09:cf:10:57:
ba:86:54:b4:da:e9:30:a9:75:68:76:01:7d:59:fc:
10:3f:74:df:f8:a6:82:ac:c9:b5:96:4f:12:b2:19:
39:ae:b8:a4:3d:9d:70:24:d6:59:72:34:67:20:28:
22:99:b9:9e:e9:fe:71:87:fa:e8:b2:de:48:ab:50:
3c:39:81:35:87:c1:40:ff:4a:ad:9a:d6:20:36:a9:
d9:9b:83:75:62:b4:97:19:4d:07:a7:ae:d9:b4:c1:
5b:a6:e2:32:41:21:81:a7:6f:d0:3b:bf:ee:e8:d9:
2b:2b:27:5e:63:37:91:f7:99:79:9b:4c:f6:aa:8c:
4c:a8:c5:84:6c:8d:01:eb:d6:ca:8a:a9:97:b5:83:
5e:32:e5:f6:8f:79:b0:f9:04:e5:53:08:38:c3:b2:
8d:0f:10:ca:89:b5:32:6f:d0:eb:b7:99:5c:95:b8:
0f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BA:1A:2A:19:CB:7E:8F:C7:01:F0:C7:2A:E6:5E:FA:22:4A:24:F4
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/9boaKhnLfo_HAfDHKuZe-iJKJPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.50.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:f5:1a:70:8a:a3:bd:a5:0a:b6:76:41:66:ff:45:4c:a3:a0:
f4:7f:fa:2c:43:46:85:f3:49:75:e9:11:2d:e5:5e:66:6e:a6:
52:a5:aa:bb:a3:02:04:37:84:e6:7c:de:35:66:a7:0f:a6:82:
10:e1:43:e8:e1:e2:79:94:c4:0c:fe:5e:7c:33:73:26:fe:a4:
2b:1f:bc:dd:1f:07:2a:f3:19:b3:3f:49:4d:07:1a:30:9f:5f:
50:eb:1a:13:bb:2f:20:38:86:56:c0:3d:a1:49:00:43:e7:8b:
80:2a:c5:39:2f:4e:c5:c0:b0:38:e1:84:9f:92:71:c7:3d:0c:
1e:11:12:23:85:d1:f6:d7:62:72:a1:45:55:f1:e3:55:7c:9f:
06:6a:d6:90:9f:82:88:b0:5a:48:42:0a:20:2e:18:d1:17:c5:
5a:b6:22:f4:59:ba:c4:33:2f:73:fc:03:4c:a7:14:db:3b:15:
db:da:80:87:36:6e:6a:76:74:53:3f:29:89:dd:d1:aa:8e:2c:
92:1f:53:c6:b9:c2:03:b7:61:60:60:64:ad:19:66:08:20:e2:
f3:cc:84:95:8b:da:d5:fb:76:9c:e9:38:45:95:ef:ca:37:b3:
aa:74:97:d7:37:ba:cf:8f:20:2c:c5:bf:a6:ca:6c:b6:4a:34:
09:62:4c:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHlBwjlyN4irqsJKtErI8VmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0
ZDY0NjQwHhcNMjQwOTEyMDY1ODQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWJhMWEyYTE5Y2I3ZThmYzcwMWYwYzcyYWU2NWVmYTIyNGEyNGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5bzABeSXvnqH0PDNfmxMwTFX8bQN
FcLy6q+KswDWlHTNd5t5n5R9usOxyl8s2uuboF5U6ZvDSAymb+E7lGGIzHJ9DBpW
/p5CbvCpcXCZrMYmgUSyBgnPEFe6hlS02ukwqXVodgF9WfwQP3Tf+KaCrMm1lk8S
shk5rrikPZ1wJNZZcjRnICgimbme6f5xh/rost5Iq1A8OYE1h8FA/0qtmtYgNqnZ
m4N1YrSXGU0Hp67ZtMFbpuIyQSGBp2/QO7/u6NkrKydeYzeR95l5m0z2qoxMqMWE
bI0B69bKiqmXtYNeMuX2j3mw+QTlUwg4w7KNDxDKibUyb9Drt5lclbgP5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPW6GioZy36PxwHwxyrmXvoiSiT0MB8GA1UdIwQY
MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt
OTg5MTY2ODgxOTY5LzEvOWJvYUtobkxmb19IQWZESEt1WmUtaUpLSlBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5
LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudQyMA0G
CSqGSIb3DQEBCwUAA4IBAQDE9RpwiqO9pQq2dkFm/0VMo6D0f/osQ0aF80l16REt
5V5mbqZSpaq7owIEN4TmfN41ZqcPpoIQ4UPo4eJ5lMQM/l58M3Mm/qQrH7zdHwcq
8xmzP0lNBxown19Q6xoTuy8gOIZWwD2hSQBD54uAKsU5L07FwLA44YSfknHHPQwe
ERIjhdH212JyoUVV8eNVfJ8GataQn4KIsFpIQgogLhjRF8VatiL0WbrEMy9z/ANM
pxTbOxXb2oCHNm5qdnRTPymJ3dGqjiySH1PGucIDt2FgYGStGWYIIOLzzISVi9rV
+3ac6ThFle/KN7OqdJfXN7rPjyAsxb+mymy2SjQJYkxx
-----END CERTIFICATE-----
Generated at Sat Sep 28 16:06:28 2024 by rpki-client on console-fra.rpki-client.org