Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8tSbGUpqsr_2BUfuCA5I9z-dA_Q.roa
File: 8tSbGUpqsr_2BUfuCA5I9z-dA_Q.roa (raw, json)
Hash identifier: DrxbVwZpZikT13D3iKLmFjQs05IPGABtG3VeN+KAvvg=
Subject key identifier: F2:D4:9B:19:4A:6A:B2:BF:F6:05:47:EE:08:0E:48:F7:3F:9D:03:F4
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018CC26D5A4F4FE2B92E536DBDF6092760D1
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8tSbGUpqsr_2BUfuCA5I9z-dA_Q.roa
Signing time: Mon 01 Jan 2024 00:29:55 +0000
ROA not before: Mon 01 Jan 2024 00:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49850
IP address blocks: 213.91.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:5a:4f:4f:e2:b9:2e:53:6d:bd:f6:09:27:60:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 00:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2d49b194a6ab2bff60547ee080e48f73f9d03f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5f:15:c3:81:f2:b3:d8:9c:13:3d:8e:83:4e:
eb:3e:2a:1b:b7:f2:7a:bc:c3:68:e4:fd:16:ff:3e:
6a:bc:0e:55:86:a9:22:6b:9d:3a:67:08:bf:4c:ce:
c7:d6:ae:03:5b:4d:c3:43:e9:c9:e2:e5:87:4d:50:
46:6c:ea:6a:10:c4:8e:de:c8:ac:d4:a6:85:5f:53:
8c:a1:f2:8d:26:94:94:62:0c:41:48:f9:7a:47:d4:
87:10:ce:af:74:96:9a:b5:3e:b3:a0:13:3c:7e:ee:
cd:41:a9:52:b7:61:fc:ed:4e:c1:47:27:55:ec:e8:
3d:25:ee:fb:c0:90:0f:31:06:15:69:27:da:1f:c2:
d0:62:75:ae:e8:97:af:48:e5:1a:c4:7f:3d:21:54:
f7:07:72:d1:ed:0d:28:15:56:f3:b5:21:7a:5d:61:
ac:1f:fc:5f:69:b2:68:da:b1:df:d1:20:e9:cb:8c:
a8:87:bf:93:6a:22:6c:cf:52:b1:ac:b7:d0:9d:50:
95:ea:c3:eb:dc:16:d4:8b:df:e4:cc:f6:06:be:e8:
c3:6c:6c:f6:32:e8:39:6b:20:90:b4:a2:74:4f:f3:
f0:84:29:11:02:18:da:ec:16:37:39:8e:43:c3:49:
75:35:a3:2a:48:04:ef:aa:c9:8c:6e:d2:47:4c:85:
59:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D4:9B:19:4A:6A:B2:BF:F6:05:47:EE:08:0E:48:F7:3F:9D:03:F4
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8tSbGUpqsr_2BUfuCA5I9z-dA_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.174.0/24
Signature Algorithm: sha256WithRSAEncryption
33:56:f9:a8:f5:97:4f:14:aa:9a:6f:49:b4:aa:d4:bd:ce:4e:
25:2d:7f:d1:30:c5:8e:63:47:ea:8a:13:fc:f2:d4:e1:4f:25:
e2:04:4c:e5:bd:bd:3a:ad:a3:3b:da:4c:73:a2:04:d9:9f:5a:
a0:54:ae:9f:02:06:86:77:70:07:f3:bc:de:b0:51:ae:35:e1:
29:63:69:d4:f1:8e:c3:8e:8c:59:38:80:81:83:7b:8a:69:fe:
ff:91:7e:c9:0d:6d:ff:05:fe:18:75:7d:22:ce:b6:4d:69:fe:
75:2b:74:d4:56:b8:a0:78:79:7c:c3:5e:45:4f:24:06:4f:57:
2b:df:73:df:a3:4f:71:25:db:9e:a8:c8:72:9e:1b:46:8c:09:
f7:d4:c4:bb:b1:a6:d9:05:b9:43:b6:1c:a5:b4:26:e4:4b:c5:
24:4f:05:ae:3a:46:d2:5f:04:41:e9:8b:de:0b:21:dd:0b:db:
26:90:26:27:b2:c0:31:e3:b1:ac:9b:af:e0:4d:93:dc:3d:f4:
cb:5d:c7:f6:c2:cb:b2:1a:53:32:5f:a0:e7:ee:11:0a:53:33:
cc:64:0b:63:29:a4:52:15:2f:d0:f5:b6:2e:0e:04:83:88:a0:
9c:30:cd:9b:2b:9c:ff:fc:cb:2b:d4:10:9f:c5:91:50:af:e9:
c6:56:1e:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzCbVpPT+K5LlNtvfYJJ2DRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjQwMTAxMDAyOTU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMmQ0OWIxOTRhNmFiMmJmZjYwNTQ3ZWUwODBlNDhmNzNmOWQwM2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlF8Vw4Hys9icEz2Og07rPiobt/J6
vMNo5P0W/z5qvA5Vhqkia506Zwi/TM7H1q4DW03DQ+nJ4uWHTVBGbOpqEMSO3sis
1KaFX1OMofKNJpSUYgxBSPl6R9SHEM6vdJaatT6zoBM8fu7NQalSt2H87U7BRydV
7Og9Je77wJAPMQYVaSfaH8LQYnWu6JevSOUaxH89IVT3B3LR7Q0oFVbztSF6XWGs
H/xfabJo2rHf0SDpy4yoh7+TaiJsz1KxrLfQnVCV6sPr3BbUi9/kzPYGvujDbGz2
Mug5ayCQtKJ0T/PwhCkRAhja7BY3OY5Dw0l1NaMqSATvqsmMbtJHTIVZ3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPLUmxlKarK/9gVH7ggOSPc/nQP0MB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvOHRTYkdVcHFzcl8yQlVmdUNBNUk5ei1kQV9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1VuuMA0G
CSqGSIb3DQEBCwUAA4IBAQAzVvmo9ZdPFKqab0m0qtS9zk4lLX/RMMWOY0fqihP8
8tThTyXiBEzlvb06raM72kxzogTZn1qgVK6fAgaGd3AH87zesFGuNeEpY2nU8Y7D
joxZOICBg3uKaf7/kX7JDW3/Bf4YdX0izrZNaf51K3TUVrigeHl8w15FTyQGT1cr
33Pfo09xJdueqMhynhtGjAn31MS7sabZBblDthyltCbkS8UkTwWuOkbSXwRB6Yve
CyHdC9smkCYnssAx47Gsm6/gTZPcPfTLXcf2wsuyGlMyX6Dn7hEKUzPMZAtjKaRS
FS/Q9bYuDgSDiKCcMM2bK5z//Msr1BCfxZFQr+nGVh5M
-----END CERTIFICATE-----
Generated at Mon Jun 24 12:31:54 2024 by rpki-client on console-fra.rpki-client.org