Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/F2PLeUANNpspMSr8eJYmZ7NekGc.roa
File: F2PLeUANNpspMSr8eJYmZ7NekGc.roa (raw, json)
Hash identifier: ik3fXJneDZoA5uFWGdQDNmEUuBPol2zqeTpdwLY8KLQ=
Subject key identifier: 17:63:CB:79:40:0D:36:9B:29:31:2A:FC:78:96:26:67:B3:5E:90:67
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018CC9BCB937796BCC26B5341C0DA6F4F42F
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/F2PLeUANNpspMSr8eJYmZ7NekGc.roa
Signing time: Tue 02 Jan 2024 10:33:57 +0000
ROA not before: Tue 02 Jan 2024 10:33:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30846
IP address blocks: 212.170.114.0/24 maxlen: 24
195.53.217.0/24 maxlen: 24
212.170.33.0/24 maxlen: 24
195.235.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:b9:37:79:6b:cc:26:b5:34:1c:0d:a6:f4:f4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 2 10:33:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1763cb79400d369b29312afc78962667b35e9067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5d:04:e1:f5:59:13:56:5b:58:e1:5a:e5:3f:
40:6e:db:f8:d7:96:63:0e:f5:4e:18:b6:af:6d:b4:
ab:0b:74:a2:ba:86:57:8c:7d:10:3f:a6:68:7c:df:
54:73:4c:9f:8c:79:90:bc:f1:e1:2f:99:49:46:7a:
a7:98:77:df:11:09:ac:bf:57:7f:46:77:8a:13:50:
7c:94:b6:36:03:80:94:b9:29:d6:55:88:6b:6b:c6:
c1:52:78:db:c4:12:90:f1:1a:9e:77:8e:e9:df:a9:
4e:18:e7:de:78:a1:1f:d2:dc:8b:59:76:b7:5a:d9:
6e:2a:f3:92:36:5e:ae:87:3a:90:c7:d1:ce:31:e5:
40:4b:7e:37:62:ec:ce:65:57:1f:ca:38:6d:47:0c:
84:7a:c6:1a:57:c3:86:08:c2:f7:11:81:24:1b:86:
0a:12:09:62:bf:24:56:a8:5f:ef:d6:eb:6a:6d:9a:
96:7c:0f:dd:25:ae:b2:4f:3d:25:90:75:7e:12:43:
2e:52:d1:55:88:b8:89:59:71:76:67:2f:d7:8b:8a:
5b:17:9d:bb:19:a0:8f:5f:be:76:f9:7b:99:b9:71:
db:da:49:55:64:23:09:eb:33:b3:3c:9b:84:c8:55:
64:da:a6:77:09:a5:24:7b:af:e6:00:ad:c9:62:ae:
ca:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:63:CB:79:40:0D:36:9B:29:31:2A:FC:78:96:26:67:B3:5E:90:67
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/F2PLeUANNpspMSr8eJYmZ7NekGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.53.217.0/24
195.235.248.0/24
212.170.33.0/24
212.170.114.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:25:cb:0c:fb:ae:05:e1:81:6a:8f:d4:7b:98:47:c7:07:c4:
fd:cf:9f:62:29:2f:57:e8:68:8a:47:05:77:5f:0f:46:17:28:
3b:2d:41:75:13:c7:71:ac:62:74:20:47:9d:b8:2c:59:9a:3f:
0f:4e:54:f5:9e:03:60:7d:cd:2a:f9:c0:04:52:dd:db:26:fa:
90:13:ce:6b:a8:34:3b:5b:6f:d3:32:c2:56:54:14:c7:60:1a:
fa:25:a7:44:72:b3:3f:97:48:a2:4a:4f:de:f8:f7:8b:12:d9:
1c:d4:0b:e6:24:2c:52:1e:e8:d6:a8:03:25:68:bd:26:8e:30:
ed:ff:cb:47:48:ec:30:5d:d6:a2:df:f1:99:56:c8:cf:5c:df:
2d:bd:1d:a2:ec:b9:80:11:6f:6c:73:3b:f0:26:17:5b:1c:6c:
99:0b:f5:69:3f:ba:13:ce:94:48:59:a3:97:b1:af:55:ab:e3:
01:7c:57:26:58:20:da:09:26:58:07:24:fb:e3:80:cd:9c:6e:
d0:70:82:b0:ba:1d:58:b0:20:be:fd:06:a4:e7:db:af:11:44:
0c:d3:a2:f0:41:48:d2:b9:a8:5b:2c:38:d2:f7:b2:77:6b:5c:
8c:e9:29:c8:a9:f7:a4:4f:ae:2f:83:64:3b:5e:68:cb:e6:7c:
a0:32:39:d3
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYzJvLk3eWvMJrU0HA2m9PQvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwMTAyMTAzMzU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzYzY2I3OTQwMGQzNjliMjkzMTJhZmM3ODk2MjY2N2IzNWU5MDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtl0E4fVZE1ZbWOFa5T9Abtv415Zj
DvVOGLavbbSrC3SiuoZXjH0QP6ZofN9Uc0yfjHmQvPHhL5lJRnqnmHffEQmsv1d/
RneKE1B8lLY2A4CUuSnWVYhra8bBUnjbxBKQ8Rqed47p36lOGOfeeKEf0tyLWXa3
WtluKvOSNl6uhzqQx9HOMeVAS343YuzOZVcfyjhtRwyEesYaV8OGCML3EYEkG4YK
EglivyRWqF/v1utqbZqWfA/dJa6yTz0lkHV+EkMuUtFViLiJWXF2Zy/Xi4pbF527
GaCPX752+XuZuXHb2klVZCMJ6zOzPJuEyFVk2qZ3CaUke6/mAK3JYq7KrwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFBdjy3lADTabKTEq/HiWJmezXpBnMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvRjJQTGVVQU5OcHNwTVNyOGVKWW1aN05la0djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAwzXZAwQA
w+v4AwQA1KohAwQA1KpyMA0GCSqGSIb3DQEBCwUAA4IBAQCiJcsM+64F4YFqj9R7
mEfHB8T9z59iKS9X6GiKRwV3Xw9GFyg7LUF1E8dxrGJ0IEeduCxZmj8PTlT1ngNg
fc0q+cAEUt3bJvqQE85rqDQ7W2/TMsJWVBTHYBr6JadEcrM/l0iiSk/e+PeLEtkc
1AvmJCxSHujWqAMlaL0mjjDt/8tHSOwwXdai3/GZVsjPXN8tvR2i7LmAEW9sczvw
JhdbHGyZC/VpP7oTzpRIWaOXsa9Vq+MBfFcmWCDaCSZYByT744DNnG7QcIKwuh1Y
sCC+/Qak59uvEUQM06LwQUjSuahbLDjS97J3a1yM6SnIqfekT64vg2Q7XmjL5nyg
MjnT
-----END CERTIFICATE-----
Generated at Sat Jun 22 09:02:07 2024 by rpki-client on console-fra.rpki-client.org