Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/7cab15-c904-4236-89af-2093b6dffa64/1/EMfHL9N1LYXXN0QP7n62GBIIMLo.roa
File: EMfHL9N1LYXXN0QP7n62GBIIMLo.roa (raw, json)
Hash identifier: tYd93vlIlXuuTelCJp9I2jO1yVIkJXp4WwuuD8LdrFw=
Subject key identifier: 10:C7:C7:2F:D3:75:2D:85:D7:37:44:0F:EE:7E:B6:18:12:08:30:BA
Certificate issuer: /CN=97c757f2f3b2290bbc28d65f9bdf0016f61f1397
Certificate serial: 018CC8DFAD92D3B952EB525937956BAEB364
Authority key identifier: 97:C7:57:F2:F3:B2:29:0B:BC:28:D6:5F:9B:DF:00:16:F6:1F:13:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8dX8vOyKQu8KNZfm98AFvYfE5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/7cab15-c904-4236-89af-2093b6dffa64/1/EMfHL9N1LYXXN0QP7n62GBIIMLo.roa
Signing time: Tue 02 Jan 2024 06:32:31 +0000
ROA not before: Tue 02 Jan 2024 06:32:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41816
IP address blocks: 185.209.44.0/22 maxlen: 22
91.143.16.0/22 maxlen: 22
91.143.24.0/22 maxlen: 22
91.143.24.0/24 maxlen: 24
91.143.20.0/23 maxlen: 23
91.143.22.0/23 maxlen: 23
91.143.31.0/24 maxlen: 24
91.143.30.0/24 maxlen: 24
91.143.26.0/24 maxlen: 24
91.143.25.0/24 maxlen: 24
91.143.28.0/24 maxlen: 24
91.143.28.0/22 maxlen: 22
91.143.27.0/24 maxlen: 24
91.143.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/7cab15-c904-4236-89af-2093b6dffa64/1/l8dX8vOyKQu8KNZfm98AFvYfE5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/7cab15-c904-4236-89af-2093b6dffa64/1/l8dX8vOyKQu8KNZfm98AFvYfE5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8dX8vOyKQu8KNZfm98AFvYfE5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 12:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:ad:92:d3:b9:52:eb:52:59:37:95:6b:ae:b3:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c757f2f3b2290bbc28d65f9bdf0016f61f1397
Validity
Not Before: Jan 2 06:32:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10c7c72fd3752d85d737440fee7eb618120830ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:81:86:02:56:e1:01:4b:a3:0f:97:d6:0c:42:
27:05:69:90:54:2d:bd:82:29:f3:ea:09:a3:d3:6d:
21:73:14:7a:15:a9:64:9a:98:55:fd:ff:4f:8f:c2:
9c:74:7c:56:79:93:ca:2b:8b:d2:76:4d:48:d4:62:
ee:ff:32:84:59:40:ab:a4:b7:38:14:f3:2d:9f:33:
6d:1c:2f:eb:e5:4b:7e:ac:78:32:db:0b:2b:02:7f:
e5:9e:2c:9c:f2:3c:c6:b4:3f:6a:52:fe:5e:be:80:
83:db:d3:b1:a3:6f:f9:64:ea:f2:32:87:6f:eb:67:
56:b9:5a:62:ec:a6:50:5f:25:50:88:ba:6c:16:98:
ce:3b:19:14:e3:9e:28:48:25:73:2d:14:6e:12:fe:
78:8a:5a:c8:01:7c:76:b7:fe:5e:27:55:3a:a8:03:
da:3f:e3:dc:44:bf:45:12:ea:c9:5a:c4:e2:9a:1f:
0d:2c:68:57:c5:65:28:64:92:8f:7e:7f:1b:63:53:
84:17:db:4f:2c:2a:af:17:f2:46:29:51:f0:50:f2:
b8:4c:29:e0:1c:94:5e:ac:3b:8f:ff:ed:6c:70:52:
fa:aa:86:1c:7c:1e:2f:aa:89:32:d2:a1:cf:5e:3b:
97:77:a2:9b:45:0e:5f:e2:32:b7:18:8d:e1:67:08:
2a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C7:C7:2F:D3:75:2D:85:D7:37:44:0F:EE:7E:B6:18:12:08:30:BA
X509v3 Authority Key Identifier:
keyid:97:C7:57:F2:F3:B2:29:0B:BC:28:D6:5F:9B:DF:00:16:F6:1F:13:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8dX8vOyKQu8KNZfm98AFvYfE5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/7cab15-c904-4236-89af-2093b6dffa64/1/EMfHL9N1LYXXN0QP7n62GBIIMLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/7cab15-c904-4236-89af-2093b6dffa64/1/l8dX8vOyKQu8KNZfm98AFvYfE5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.143.16.0/20
185.209.44.0/22
Signature Algorithm: sha256WithRSAEncryption
e7:e9:96:d7:22:38:05:33:be:2f:3e:49:95:6b:91:df:7f:d1:
f4:6a:8a:26:00:af:1c:29:c5:47:d1:27:ce:e6:c0:78:22:53:
12:03:84:97:e6:f8:6e:a9:e8:5f:91:13:77:68:ae:d8:f9:73:
1b:03:5c:38:16:36:a5:49:c5:10:1e:7f:f1:ae:ac:61:35:6a:
88:9a:58:58:e4:7c:6a:22:1f:50:97:2f:5e:2e:c8:04:00:8d:
95:8f:44:fc:cf:be:73:9c:a5:9e:cf:a8:a2:79:72:f6:64:e0:
56:af:30:64:56:fd:f0:f5:52:fe:66:1d:4f:52:b0:a5:50:27:
21:35:e6:7d:17:d0:fd:96:13:4b:b6:ac:e8:60:e1:a6:d4:99:
49:bb:73:c9:30:c1:0d:90:3c:0f:87:41:84:98:16:cd:a7:be:
2e:bb:b2:00:10:cb:2f:a6:fe:fd:db:17:2f:73:ca:77:78:ad:
a7:9e:c3:07:d1:62:a8:af:33:3e:6a:48:32:28:00:53:57:9c:
94:e9:83:65:3e:17:2a:b4:20:f3:1f:38:6a:4e:81:71:f4:cc:
1d:09:ad:fb:a0:b6:41:43:f9:3c:9c:4b:fe:33:39:79:12:31:
f9:23:d0:b3:4b:c1:27:b0:d0:bf:51:ae:d6:33:61:a3:d0:b8:
be:ee:0e:0e
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzI362S07lS61JZN5VrrrNkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3Yzc1N2YyZjNiMjI5MGJiYzI4ZDY1ZjliZGYwMDE2ZjYx
ZjEzOTcwHhcNMjQwMTAyMDYzMjMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMGM3YzcyZmQzNzUyZDg1ZDczNzQ0MGZlZTdlYjYxODEyMDgzMGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44GGAlbhAUujD5fWDEInBWmQVC29
ginz6gmj020hcxR6FalkmphV/f9Pj8KcdHxWeZPKK4vSdk1I1GLu/zKEWUCrpLc4
FPMtnzNtHC/r5Ut+rHgy2wsrAn/lniyc8jzGtD9qUv5evoCD29Oxo2/5ZOryModv
62dWuVpi7KZQXyVQiLpsFpjOOxkU454oSCVzLRRuEv54ilrIAXx2t/5eJ1U6qAPa
P+PcRL9FEurJWsTimh8NLGhXxWUoZJKPfn8bY1OEF9tPLCqvF/JGKVHwUPK4TCng
HJRerDuP/+1scFL6qoYcfB4vqoky0qHPXjuXd6KbRQ5f4jK3GI3hZwgq+wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBDHxy/TdS2F1zdED+5+thgSCDC6MB8GA1UdIwQY
MBaAFJfHV/LzsikLvCjWX5vfABb2HxOXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDhkWDh2T3lLUXU4S05aZm05OEFGdllmRTVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC83Y2FiMTUtYzkwNC00MjM2LTg5YWYt
MjA5M2I2ZGZmYTY0LzEvRU1mSEw5TjFMWVhYTjBRUDduNjJHQklJTUxvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC83Y2FiMTUtYzkwNC00MjM2LTg5YWYtMjA5M2I2ZGZmYTY0
LzEvbDhkWDh2T3lLUXU4S05aZm05OEFGdllmRTVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEW48QAwQC
udEsMA0GCSqGSIb3DQEBCwUAA4IBAQDn6ZbXIjgFM74vPkmVa5Hff9H0aoomAK8c
KcVH0SfO5sB4IlMSA4SX5vhuqehfkRN3aK7Y+XMbA1w4FjalScUQHn/xrqxhNWqI
mlhY5HxqIh9Qly9eLsgEAI2Vj0T8z75znKWez6iieXL2ZOBWrzBkVv3w9VL+Zh1P
UrClUCchNeZ9F9D9lhNLtqzoYOGm1JlJu3PJMMENkDwPh0GEmBbNp74uu7IAEMsv
pv792xcvc8p3eK2nnsMH0WKorzM+akgyKABTV5yU6YNlPhcqtCDzHzhqToFx9Mwd
Ca37oLZBQ/k8nEv+Mzl5EjH5I9CzS8EnsNC/Ua7WM2Gj0Li+7g4O
-----END CERTIFICATE-----
Generated at Sun Jun 23 18:58:22 2024 by rpki-client on console-fra.rpki-client.org