Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/oJR3nyG8g0dr0ZNqVbdQY-nYE78.roa
File: oJR3nyG8g0dr0ZNqVbdQY-nYE78.roa (raw, json)
Hash identifier: +IH4Xeuqbug8hEgld8K3Iz2Kyyey74uVx37uQysFgS0=
Subject key identifier: A0:94:77:9F:21:BC:83:47:6B:D1:93:6A:55:B7:50:63:E9:D8:13:BF
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 018DC671C1D209336A1BCC1C81B71C0C4EEA
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/oJR3nyG8g0dr0ZNqVbdQY-nYE78.roa
Signing time: Tue 20 Feb 2024 12:16:00 +0000
ROA not before: Tue 20 Feb 2024 12:16:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212141
IP address blocks: 185.203.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jul 2024 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c6:71:c1:d2:09:33:6a:1b:cc:1c:81:b7:1c:0c:4e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Feb 20 12:16:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a094779f21bc83476bd1936a55b75063e9d813bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1c:3e:a6:7c:d1:83:69:43:01:99:41:21:06:
10:0a:97:d8:e5:f7:24:c2:d3:9c:84:ec:e4:b5:4d:
90:8c:d6:75:13:2d:8f:59:35:3c:10:09:1b:9f:e6:
a7:86:b4:45:ef:b6:db:1d:71:a6:1b:a8:c6:fd:19:
c9:61:db:8d:ec:7e:11:1b:26:88:4d:14:4a:e4:ab:
61:23:2a:90:6a:7f:46:35:fc:82:c7:4e:fb:da:90:
b7:9b:f5:6c:c9:47:c9:6a:52:b9:0b:fa:48:af:48:
98:7b:53:73:e0:da:d1:dc:f1:3c:69:00:ce:28:e0:
72:75:ee:1e:d3:e3:16:62:47:27:bc:f8:48:6a:1d:
e8:eb:e5:0e:b4:b8:ed:c1:e8:bf:60:3d:fe:3a:84:
78:1d:b9:92:d9:f6:77:a1:3c:b4:98:c3:0e:e1:7c:
d1:d1:3a:e9:a2:10:34:2d:bb:e2:5d:ea:a1:47:9e:
f7:a6:28:d8:61:e6:c5:59:f0:f5:49:3d:a5:45:b2:
28:5d:b1:f3:98:7f:16:47:72:ff:f8:1e:64:bb:42:
6e:62:22:bd:cf:ed:01:a2:9f:07:6d:d1:d6:af:a5:
e1:12:4e:43:36:55:5e:f1:9b:13:7a:a1:55:7b:74:
1b:ed:f3:79:99:2d:ad:17:7d:a1:d8:db:82:c6:a2:
c2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:94:77:9F:21:BC:83:47:6B:D1:93:6A:55:B7:50:63:E9:D8:13:BF
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/oJR3nyG8g0dr0ZNqVbdQY-nYE78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.199.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d4:60:7f:0d:ef:1c:07:3f:be:31:ab:81:96:1e:7b:dd:84:
25:34:cc:89:be:a4:eb:93:bb:34:5a:45:8d:b9:d1:57:34:a0:
64:a2:8b:5b:a4:f2:da:45:5d:b7:b0:d6:0d:c1:16:1e:f2:e0:
42:06:d4:61:98:4d:66:d7:31:fc:47:74:f5:e2:ff:33:45:1f:
73:92:75:49:e9:1d:98:fc:b3:b8:17:71:f7:4f:8e:80:d7:94:
1a:5a:5f:b1:72:6d:b0:58:45:c6:5e:6e:0d:bf:fc:56:1e:11:
36:f9:27:97:31:25:b0:7d:99:30:4e:02:16:f7:ad:0b:70:f3:
11:c6:f7:d9:4c:18:10:d6:29:81:be:25:5c:70:35:4b:28:c6:
87:67:a2:37:f9:71:82:5c:b0:98:aa:11:be:32:3d:c5:78:d2:
3c:ab:87:a0:1d:8d:82:1f:0b:b7:45:82:64:ef:74:42:e9:d1:
5b:b5:a0:d6:64:9a:32:b3:2a:1a:b7:ce:2f:c9:fd:f2:ac:aa:
a7:91:7a:74:7f:aa:05:79:f6:47:47:39:2d:ea:60:75:ac:cf:
d9:64:8e:11:40:7a:47:ac:45:6f:c1:e0:7e:0a:7d:ab:52:7e:
2c:48:f2:4d:be:5a:8c:73:43:8a:79:4c:39:4c:e7:60:5f:f7:
2c:9b:91:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3GccHSCTNqG8wcgbccDE7qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm
OGNiZDgwHhcNMjQwMjIwMTIxNjAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDk0Nzc5ZjIxYmM4MzQ3NmJkMTkzNmE1NWI3NTA2M2U5ZDgxM2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAghw+pnzRg2lDAZlBIQYQCpfY5fck
wtOchOzktU2QjNZ1Ey2PWTU8EAkbn+anhrRF77bbHXGmG6jG/RnJYduN7H4RGyaI
TRRK5KthIyqQan9GNfyCx0772pC3m/VsyUfJalK5C/pIr0iYe1Nz4NrR3PE8aQDO
KOByde4e0+MWYkcnvPhIah3o6+UOtLjtwei/YD3+OoR4HbmS2fZ3oTy0mMMO4XzR
0TrpohA0LbviXeqhR573pijYYebFWfD1ST2lRbIoXbHzmH8WR3L/+B5ku0JuYiK9
z+0Bop8HbdHWr6XhEk5DNlVe8ZsTeqFVe3Qb7fN5mS2tF32h2NuCxqLCaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKCUd58hvINHa9GTalW3UGPp2BO/MB8GA1UdIwQY
MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt
NjA5YTQ4YjJiMTRkLzEvb0pSM255RzhnMGRyMFpOcVZiZFFZLW5ZRTc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk
LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucvHMA0G
CSqGSIb3DQEBCwUAA4IBAQAh1GB/De8cBz++MauBlh573YQlNMyJvqTrk7s0WkWN
udFXNKBkootbpPLaRV23sNYNwRYe8uBCBtRhmE1m1zH8R3T14v8zRR9zknVJ6R2Y
/LO4F3H3T46A15QaWl+xcm2wWEXGXm4Nv/xWHhE2+SeXMSWwfZkwTgIW960LcPMR
xvfZTBgQ1imBviVccDVLKMaHZ6I3+XGCXLCYqhG+Mj3FeNI8q4egHY2CHwu3RYJk
73RC6dFbtaDWZJoysyoat84vyf3yrKqnkXp0f6oFefZHRzkt6mB1rM/ZZI4RQHpH
rEVvweB+Cn2rUn4sSPJNvlqMc0OKeUw5TOdgX/csm5EV
-----END CERTIFICATE-----
Generated at Thu Jul 4 13:41:17 2024 by rpki-client on console-fra.rpki-client.org