Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/b667aa-c415-4bbc-ad4c-c3377c1e3a2d/1/JefNDTQLrfqMAzsvdoXD3lVacg4.roa
File: JefNDTQLrfqMAzsvdoXD3lVacg4.roa (raw, json)
Hash identifier: /bW+m4w4WQ5mLsPWOeVqvNtWgP95Z44SgroItD5n214=
Subject key identifier: 25:E7:CD:0D:34:0B:AD:FA:8C:03:3B:2F:76:85:C3:DE:55:5A:72:0E
Certificate issuer: /CN=e9318a5198dcd3fcac2498055385d9af2110a6b4
Certificate serial: 018E17F82288366BF1DD565669C3D2DDD4B0
Authority key identifier: E9:31:8A:51:98:DC:D3:FC:AC:24:98:05:53:85:D9:AF:21:10:A6:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6TGKUZjc0_ysJJgFU4XZryEQprQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/b667aa-c415-4bbc-ad4c-c3377c1e3a2d/1/JefNDTQLrfqMAzsvdoXD3lVacg4.roa
Signing time: Thu 07 Mar 2024 08:12:01 +0000
ROA not before: Thu 07 Mar 2024 08:12:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43190
IP address blocks: 77.95.248.0/21 maxlen: 21
185.217.32.0/22 maxlen: 22
2a00:1478::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/b667aa-c415-4bbc-ad4c-c3377c1e3a2d/1/6TGKUZjc0_ysJJgFU4XZryEQprQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/b667aa-c415-4bbc-ad4c-c3377c1e3a2d/1/6TGKUZjc0_ysJJgFU4XZryEQprQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/6TGKUZjc0_ysJJgFU4XZryEQprQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jul 2024 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:17:f8:22:88:36:6b:f1:dd:56:56:69:c3:d2:dd:d4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9318a5198dcd3fcac2498055385d9af2110a6b4
Validity
Not Before: Mar 7 08:12:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25e7cd0d340badfa8c033b2f7685c3de555a720e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2c:ad:2f:8a:6c:79:db:07:d2:69:1d:25:6f:
52:7d:80:39:39:fd:d0:4d:ba:df:09:a4:7c:d5:21:
52:89:b6:8c:22:98:d2:af:53:5b:b7:ca:ae:a1:c3:
7d:6e:73:9f:29:86:2c:e6:e0:c8:05:91:9f:fb:e9:
77:47:2e:c4:d1:21:e5:6c:a7:a5:7c:c9:23:35:b9:
d4:6e:1c:f7:12:62:7a:a3:33:26:72:f5:43:9b:6f:
5c:a5:8b:0d:98:12:22:74:d8:ba:08:eb:a4:ed:eb:
30:2f:06:f8:33:7c:b0:7c:21:6c:56:ca:c0:9e:08:
0d:66:04:7a:2c:11:ea:d1:eb:63:92:96:38:df:01:
5e:59:09:1e:57:61:68:71:67:27:56:87:2b:09:36:
95:2d:f8:a0:1d:3b:76:c6:44:2d:56:88:1e:b4:3f:
09:6d:6d:4c:0a:49:cb:54:32:8b:90:94:b5:b5:37:
ed:e2:b2:e2:ae:85:fd:4e:8f:4e:6e:d4:47:35:a8:
e4:94:52:e2:61:61:eb:75:0e:9e:f5:84:3b:6e:aa:
f3:75:c8:72:e8:ef:98:1e:43:4d:84:69:88:3e:ca:
86:b4:fd:07:a7:cc:02:20:91:13:5a:9b:b9:d8:e4:
fd:77:86:3d:4e:6e:bf:cd:f7:d7:7c:4f:e7:22:bb:
b5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E7:CD:0D:34:0B:AD:FA:8C:03:3B:2F:76:85:C3:DE:55:5A:72:0E
X509v3 Authority Key Identifier:
keyid:E9:31:8A:51:98:DC:D3:FC:AC:24:98:05:53:85:D9:AF:21:10:A6:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6TGKUZjc0_ysJJgFU4XZryEQprQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/b667aa-c415-4bbc-ad4c-c3377c1e3a2d/1/JefNDTQLrfqMAzsvdoXD3lVacg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/b667aa-c415-4bbc-ad4c-c3377c1e3a2d/1/6TGKUZjc0_ysJJgFU4XZryEQprQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.248.0/21
185.217.32.0/22
IPv6:
2a00:1478::/32
Signature Algorithm: sha256WithRSAEncryption
0c:a8:6b:01:32:00:b0:28:40:6e:5c:29:09:a1:1c:4b:f2:d5:
90:fa:d4:27:59:e6:ce:6e:82:7d:4a:8f:20:00:1f:de:4a:23:
4e:8d:7d:bc:4c:8c:11:bb:94:e5:e4:c5:19:fc:87:bf:6f:46:
f4:7f:91:f4:71:f0:29:26:f0:c4:bf:ac:b2:29:4e:75:ae:95:
e8:b7:3a:25:fa:fb:18:1f:5c:79:07:e0:68:65:bd:ee:e7:36:
71:1b:6d:44:25:31:d4:cf:70:8e:94:9c:fb:fc:0a:73:3f:c6:
24:3d:3c:0c:ae:87:31:0a:77:88:13:e2:92:43:d4:32:73:77:
8e:9b:c8:26:a8:f0:92:5d:a1:e2:b0:68:89:b5:b2:0f:92:a9:
1a:8c:3b:29:9b:c4:4b:4b:85:69:aa:dc:30:3e:15:49:02:d8:
25:3c:a7:5d:78:c3:2a:2c:65:27:e9:82:fa:fe:6f:9e:ad:f6:
7d:57:5e:fc:61:83:fb:70:3a:bf:39:11:6d:da:59:70:90:e9:
5e:a3:28:11:1f:75:b1:de:ef:02:98:8f:52:b6:20:a8:4e:aa:
de:75:33:06:0e:8c:d1:12:e7:8d:19:67:85:62:f9:df:68:43:
7f:f9:1a:c9:fe:7d:c3:87:6d:6a:32:9e:d0:42:e7:5f:e9:a0:
26:87:d8:e5
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAY4X+CKINmvx3VZWacPS3dSwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5MzE4YTUxOThkY2QzZmNhYzI0OTgwNTUzODVkOWFmMjEx
MGE2YjQwHhcNMjQwMzA3MDgxMjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNWU3Y2QwZDM0MGJhZGZhOGMwMzNiMmY3Njg1YzNkZTU1NWE3MjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkyytL4psedsH0mkdJW9SfYA5Of3Q
TbrfCaR81SFSibaMIpjSr1Nbt8quocN9bnOfKYYs5uDIBZGf++l3Ry7E0SHlbKel
fMkjNbnUbhz3EmJ6ozMmcvVDm29cpYsNmBIidNi6COuk7eswLwb4M3ywfCFsVsrA
nggNZgR6LBHq0etjkpY43wFeWQkeV2FocWcnVocrCTaVLfigHTt2xkQtVogetD8J
bW1MCknLVDKLkJS1tTft4rLiroX9To9ObtRHNajklFLiYWHrdQ6e9YQ7bqrzdchy
6O+YHkNNhGmIPsqGtP0Hp8wCIJETWpu52OT9d4Y9Tm6/zffXfE/nIru1/QIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFCXnzQ00C636jAM7L3aFw95VWnIOMB8GA1UdIwQY
MBaAFOkxilGY3NP8rCSYBVOF2a8hEKa0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlRHS1VaamMwX3lzSkpnRlU0WFpyeUVRcHJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iNjY3YWEtYzQxNS00YmJjLWFkNGMt
YzMzNzdjMWUzYTJkLzEvSmVmTkRUUUxyZnFNQXpzdmRvWEQzbFZhY2c0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iNjY3YWEtYzQxNS00YmJjLWFkNGMtYzMzNzdjMWUzYTJk
LzEvNlRHS1VaamMwX3lzSkpnRlU0WFpyeUVRcHJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDTV/4AwQC
udkgMA0EAgACMAcDBQAqABR4MA0GCSqGSIb3DQEBCwUAA4IBAQAMqGsBMgCwKEBu
XCkJoRxL8tWQ+tQnWebOboJ9So8gAB/eSiNOjX28TIwRu5Tl5MUZ/Ie/b0b0f5H0
cfApJvDEv6yyKU51rpXotzol+vsYH1x5B+BoZb3u5zZxG21EJTHUz3COlJz7/Apz
P8YkPTwMrocxCneIE+KSQ9Qyc3eOm8gmqPCSXaHisGiJtbIPkqkajDspm8RLS4Vp
qtwwPhVJAtglPKddeMMqLGUn6YL6/m+erfZ9V178YYP7cDq/ORFt2llwkOleoygR
H3Wx3u8CmI9StiCoTqredTMGDozREueNGWeFYvnfaEN/+RrJ/n3Dh21qMp7QQudf
6aAmh9jl
-----END CERTIFICATE-----
Generated at Thu Jul 4 13:41:16 2024 by rpki-client on console-fra.rpki-client.org