Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/j8VzlWKdUZdIo36C6FM84fkk3N4.roa
File: j8VzlWKdUZdIo36C6FM84fkk3N4.roa (raw, json)
Hash identifier: 8bxWGaKFazxniYDG6JWbUXnHTZDJeCvLfRca/8wWcEo=
Subject key identifier: 8F:C5:73:95:62:9D:51:97:48:A3:7E:82:E8:53:3C:E1:F9:24:DC:DE
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 018DEB5ABB84FD7D0F81E4277D264E4E58B7
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/j8VzlWKdUZdIo36C6FM84fkk3N4.roa
Signing time: Tue 27 Feb 2024 16:16:48 +0000
ROA not before: Tue 27 Feb 2024 16:16:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215415
IP address blocks: 185.229.240.0/24 maxlen: 24
185.229.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:5a:bb:84:fd:7d:0f:81:e4:27:7d:26:4e:4e:58:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Feb 27 16:16:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fc57395629d519748a37e82e8533ce1f924dcde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:15:eb:88:11:ba:6f:3f:4c:b7:95:12:79:c9:
9c:20:00:e4:f0:d0:fe:a1:70:1a:4f:ed:d7:5c:32:
0a:da:52:7a:81:16:7e:a2:ed:41:f5:41:d5:a6:bb:
f6:f9:a7:b0:7f:e3:b7:a6:54:f9:9a:5d:a5:a1:09:
e7:8c:e5:d1:8d:02:ec:4a:45:df:f2:9f:55:5d:18:
ff:3b:d2:1f:2b:de:40:20:e9:2e:04:1b:16:de:7c:
64:95:6f:d7:e0:96:03:84:af:c8:6d:e0:74:a7:69:
c7:14:09:31:68:2d:ff:67:8e:70:9e:a6:f0:63:64:
ec:c2:d5:5e:cc:48:f5:02:3f:67:ee:fc:9b:6b:51:
f1:82:29:cc:03:bb:08:6e:74:f2:77:c4:3c:3f:db:
42:cf:65:8f:07:89:a0:54:25:44:9f:0a:78:8a:4b:
6e:32:a5:3d:0d:dc:31:83:56:20:3d:4a:84:ce:8f:
49:79:fc:f1:f5:7e:df:1a:f2:97:4e:01:31:25:77:
ce:ac:33:e6:c9:1b:a2:b7:13:45:6a:b5:5f:4a:bb:
32:34:19:3a:56:15:3d:5d:22:dc:d7:8d:3d:2c:3e:
34:4e:8d:ad:06:2c:f0:ee:d2:10:d4:39:28:80:78:
fd:ea:55:db:1c:05:f9:d1:64:f7:28:51:ef:4f:75:
5b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C5:73:95:62:9D:51:97:48:A3:7E:82:E8:53:3C:E1:F9:24:DC:DE
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/j8VzlWKdUZdIo36C6FM84fkk3N4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.240.0/23
Signature Algorithm: sha256WithRSAEncryption
53:a9:9a:0d:be:59:df:f2:98:93:b7:74:c1:46:f3:26:b9:7f:
ce:59:ec:2b:a1:81:6b:7f:a6:d4:bc:c9:59:bd:cc:e1:89:c2:
5a:e5:ad:8a:88:5d:73:e3:68:52:e9:b9:1e:10:6f:ed:2c:60:
5e:b1:40:5e:df:ba:29:6f:af:0e:37:08:b5:2e:1f:4f:46:25:
b0:a6:a1:4d:3b:e6:1e:48:55:8f:2b:66:77:2c:11:af:e3:19:
aa:53:af:1d:8f:22:5d:bb:cc:5d:60:be:c8:a4:56:ca:3e:8b:
5f:6d:4f:05:81:7c:94:0d:15:35:68:29:7b:f5:f8:b4:5b:0d:
90:41:fa:83:15:8f:51:cb:9f:a2:8e:ca:1e:86:2e:a0:54:66:
c8:27:c4:40:2b:fe:07:29:26:ee:6d:bc:18:32:3a:fe:fb:7a:
f9:ea:df:0b:97:7b:63:28:eb:b6:a0:2e:6e:25:fd:f5:a3:74:
a1:3e:b6:f8:4c:6e:8e:bc:32:23:d0:41:b7:0e:8d:07:d0:fd:
9d:15:20:02:a1:dd:b9:10:25:66:fe:cc:bf:91:8e:03:b9:84:
f2:8e:04:ae:b0:26:15:fd:2f:06:15:76:ca:56:bb:df:5e:45:
9a:32:e8:83:8b:4d:d1:8a:a4:a8:83:01:cf:4f:8d:89:95:f0:
e6:1b:a3:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3rWruE/X0PgeQnfSZOTli3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYzhiNzNhYjdiZGViNzZmZjQ4YjJjYTA5OTYxNmVkYmU3
MWM0MjYwHhcNMjQwMjI3MTYxNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZmM1NzM5NTYyOWQ1MTk3NDhhMzdlODJlODUzM2NlMWY5MjRkY2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlhXriBG6bz9Mt5USecmcIADk8ND+
oXAaT+3XXDIK2lJ6gRZ+ou1B9UHVprv2+aewf+O3plT5ml2loQnnjOXRjQLsSkXf
8p9VXRj/O9IfK95AIOkuBBsW3nxklW/X4JYDhK/IbeB0p2nHFAkxaC3/Z45wnqbw
Y2TswtVezEj1Aj9n7vyba1HxginMA7sIbnTyd8Q8P9tCz2WPB4mgVCVEnwp4iktu
MqU9Ddwxg1YgPUqEzo9Jefzx9X7fGvKXTgExJXfOrDPmyRuitxNFarVfSrsyNBk6
VhU9XSLc1409LD40To2tBizw7tIQ1DkogHj96lXbHAX50WT3KFHvT3VbvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI/Fc5VinVGXSKN+guhTPOH5JNzeMB8GA1UdIwQY
MBaAFIHItzq3vet2/0iyygmWFu2+ccQmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2NpM09yZTk2M2JfU0xMS0NaWVc3YjV4eENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8yMDc5MzQtOWVkYy00YTg5LTgyMGUt
ZDg0ODhiM2FiNDJmLzEvajhWemxXS2RVWmRJbzM2QzZGTTg0ZmtrM040LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC8yMDc5MzQtOWVkYy00YTg5LTgyMGUtZDg0ODhiM2FiNDJm
LzEvZ2NpM09yZTk2M2JfU0xMS0NaWVc3YjV4eENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBueXwMA0G
CSqGSIb3DQEBCwUAA4IBAQBTqZoNvlnf8piTt3TBRvMmuX/OWewroYFrf6bUvMlZ
vczhicJa5a2KiF1z42hS6bkeEG/tLGBesUBe37opb68ONwi1Lh9PRiWwpqFNO+Ye
SFWPK2Z3LBGv4xmqU68djyJdu8xdYL7IpFbKPotfbU8FgXyUDRU1aCl79fi0Ww2Q
QfqDFY9Ry5+ijsoehi6gVGbIJ8RAK/4HKSbubbwYMjr++3r56t8Ll3tjKOu2oC5u
Jf31o3ShPrb4TG6OvDIj0EG3Do0H0P2dFSACod25ECVm/sy/kY4DuYTyjgSusCYV
/S8GFXbKVrvfXkWaMuiDi03RiqSogwHPT42JlfDmG6M3
-----END CERTIFICATE-----
Generated at Sat Jun 1 20:37:41 2024 by rpki-client on console-fra.rpki-client.org