Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/zsEZNJ-9qmbfcFLV17_KXBDabQk.roa
File: zsEZNJ-9qmbfcFLV17_KXBDabQk.roa (raw, json)
Hash identifier: pSaKJz4h0Fe3tV3+vCm+s6wu8JhQyjgH1tNAr1CaCOg=
Subject key identifier: CE:C1:19:34:9F:BD:AA:66:DF:70:52:D5:D7:BF:CA:5C:10:DA:6D:09
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018F2E86E2C5245924D41166363838C779D4
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/zsEZNJ-9qmbfcFLV17_KXBDabQk.roa
Signing time: Tue 30 Apr 2024 10:22:22 +0000
ROA not before: Tue 30 Apr 2024 10:22:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212496
IP address blocks: 45.129.184.0/24 maxlen: 24
85.92.109.0/24 maxlen: 24
185.166.199.0/24 maxlen: 24
195.80.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 May 2024 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2e:86:e2:c5:24:59:24:d4:11:66:36:38:38:c7:79:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Apr 30 10:22:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cec119349fbdaa66df7052d5d7bfca5c10da6d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:89:98:1d:a5:e4:e1:e1:37:14:ce:7e:ca:dd:
89:76:aa:ec:c1:d0:38:eb:0e:7c:2b:06:d0:b5:d0:
19:e0:b3:57:e3:b8:19:62:e2:32:bb:e8:0e:5e:b5:
79:35:95:17:af:d8:4f:48:1b:3b:9e:13:66:58:99:
28:ab:66:d9:77:5f:d7:6b:e8:40:b0:51:b0:17:08:
15:84:ce:5c:17:6d:dd:5e:5c:af:0f:71:88:fa:40:
35:1f:9f:7a:c7:ab:f3:f5:72:3b:b8:c7:4d:b6:88:
43:be:2e:74:25:48:3e:4a:fe:0c:52:b2:2f:ab:f8:
c7:e7:fd:b1:00:ff:ae:cd:ea:16:46:5c:d0:c5:04:
b9:42:62:98:fa:f4:46:0f:cc:32:0d:d3:59:75:a9:
15:dc:3c:a6:d9:a3:eb:ae:2d:e1:65:a0:41:6c:f5:
58:b1:60:3f:c1:43:33:2d:5c:00:c9:a4:41:20:70:
7c:25:b8:43:5f:67:cb:26:10:0a:80:d0:8b:51:12:
8a:54:38:1b:fb:02:85:d9:80:5a:9c:ce:34:04:29:
a1:c0:33:53:56:b9:8b:ed:a1:5f:01:6c:bd:98:bd:
c1:6d:30:cc:66:b9:47:a9:d8:a2:3b:ac:24:39:38:
ef:c5:05:06:ce:44:f6:64:5b:c5:fd:89:e7:f9:4c:
c4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C1:19:34:9F:BD:AA:66:DF:70:52:D5:D7:BF:CA:5C:10:DA:6D:09
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/zsEZNJ-9qmbfcFLV17_KXBDabQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.184.0/24
85.92.109.0/24
185.166.199.0/24
195.80.48.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:05:6f:5d:27:1a:41:03:38:20:b9:28:db:3c:4d:5d:aa:98:
2b:03:a3:4d:bb:28:27:ac:cf:78:48:ae:56:56:bb:40:38:d9:
5e:8d:e2:01:e0:47:6d:ed:38:86:a8:a1:7e:fe:8b:bb:42:57:
af:55:92:02:4f:ee:34:65:6f:25:3a:29:df:c6:02:0b:88:e3:
cf:51:7a:fd:f3:62:97:b3:48:db:9e:b5:92:76:fc:8a:03:fc:
91:c4:71:4c:15:19:54:5c:44:f5:87:8f:3e:3c:eb:40:54:f7:
7a:12:8d:55:0a:d3:b4:dd:f2:61:f0:bc:d1:9f:ac:45:95:9f:
c7:fe:92:26:d5:b1:08:3f:26:47:1f:98:ee:06:c8:72:17:9e:
43:83:7c:07:a8:8e:bd:a9:ab:9e:a8:35:8f:da:9e:b6:bd:79:
0a:a6:4e:06:f2:e8:25:81:3c:59:8f:c6:9c:41:b1:57:99:4f:
42:92:52:d7:0f:ae:9c:f1:7c:a6:ca:80:26:b7:b4:e9:c7:58:
28:c8:f1:de:da:4d:08:bd:97:9f:f0:c3:8f:87:61:08:04:26:
34:9d:70:7b:89:f4:28:79:51:61:5b:38:e8:db:1c:9c:b3:14:
59:ac:59:4d:8d:d6:3e:c4:90:78:8a:d6:5b:35:2b:f1:ea:83:
9f:d7:b7:8e
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAY8uhuLFJFkk1BFmNjg4x3nUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2
NGIyMGYwHhcNMjQwNDMwMTAyMjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWMxMTkzNDlmYmRhYTY2ZGY3MDUyZDVkN2JmY2E1YzEwZGE2ZDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ImYHaXk4eE3FM5+yt2JdqrswdA4
6w58KwbQtdAZ4LNX47gZYuIyu+gOXrV5NZUXr9hPSBs7nhNmWJkoq2bZd1/Xa+hA
sFGwFwgVhM5cF23dXlyvD3GI+kA1H596x6vz9XI7uMdNtohDvi50JUg+Sv4MUrIv
q/jH5/2xAP+uzeoWRlzQxQS5QmKY+vRGD8wyDdNZdakV3Dym2aPrri3hZaBBbPVY
sWA/wUMzLVwAyaRBIHB8JbhDX2fLJhAKgNCLURKKVDgb+wKF2YBanM40BCmhwDNT
VrmL7aFfAWy9mL3BbTDMZrlHqdiiO6wkOTjvxQUGzkT2ZFvF/Ynn+UzEEwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFM7BGTSfvapm33BS1de/ylwQ2m0JMB8GA1UdIwQY
MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct
NDkwNTI0M2JjODI4LzEvenNFWk5KLTlxbWJmY0ZMVjE3X0tYQkRhYlFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4
LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALYG4AwQA
VVxtAwQAuabHAwQAw1AwMA0GCSqGSIb3DQEBCwUAA4IBAQCPBW9dJxpBAzgguSjb
PE1dqpgrA6NNuygnrM94SK5WVrtAONlejeIB4Edt7TiGqKF+/ou7QlevVZICT+40
ZW8lOinfxgILiOPPUXr982KXs0jbnrWSdvyKA/yRxHFMFRlUXET1h48+POtAVPd6
Eo1VCtO03fJh8LzRn6xFlZ/H/pIm1bEIPyZHH5juBshyF55Dg3wHqI69qaueqDWP
2p62vXkKpk4G8uglgTxZj8acQbFXmU9CklLXD66c8XymyoAmt7Tpx1goyPHe2k0I
vZef8MOPh2EIBCY0nXB7ifQoeVFhWzjo2xycsxRZrFlNjdY+xJB4itZbNSvx6oOf
17eO
-----END CERTIFICATE-----
Generated at Sat May 25 05:04:39 2024 by rpki-client on console-ams.rpki-client.org