Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/78TYyYGPlX1iawxhwCakWqghX3g.roa
File: 78TYyYGPlX1iawxhwCakWqghX3g.roa (raw, json)
Hash identifier: Ffd7BQoSb+x8EXsu1HXGI2UsMpsWvy1WADmZqdqbu8A=
Subject key identifier: EF:C4:D8:C9:81:8F:95:7D:62:6B:0C:61:C0:26:A4:5A:A8:21:5F:78
Certificate issuer: /CN=0c2ce64c3e65a8202a7c1b1b20ca11e45ae6d58c
Certificate serial: 018CC64B895408DA012A8B28263572676084
Authority key identifier: 0C:2C:E6:4C:3E:65:A8:20:2A:7C:1B:1B:20:CA:11:E4:5A:E6:D5:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/78TYyYGPlX1iawxhwCakWqghX3g.roa
Signing time: Mon 01 Jan 2024 18:31:28 +0000
ROA not before: Mon 01 Jan 2024 18:31:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39464
IP address blocks: 185.160.92.0/22 maxlen: 22
91.196.44.0/22 maxlen: 22
193.84.185.0/24 maxlen: 24
195.74.71.0/24 maxlen: 24
185.189.168.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:89:54:08:da:01:2a:8b:28:26:35:72:67:60:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2ce64c3e65a8202a7c1b1b20ca11e45ae6d58c
Validity
Not Before: Jan 1 18:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efc4d8c9818f957d626b0c61c026a45aa8215f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:11:ad:10:ba:b9:76:0c:91:6d:52:ea:76:bc:
32:ab:37:6c:06:3a:df:34:86:8b:c9:b3:09:03:08:
5a:de:9f:7e:8d:59:ac:5c:8f:0b:2d:ae:e5:4d:f5:
1b:5c:48:a4:82:24:28:25:7a:65:c2:50:a2:94:a9:
0e:f7:d9:f9:0e:00:94:63:27:2a:c1:52:ef:bb:13:
f4:bc:a8:f6:db:1a:b7:dc:bf:41:36:fc:9a:ce:b7:
d5:34:35:61:a0:bd:04:42:b4:7d:c1:14:54:99:01:
ba:89:10:42:1b:64:c2:fe:ee:05:85:39:60:ee:be:
f7:f0:6f:83:3f:c3:70:b3:27:77:cf:d4:e4:01:8a:
0a:97:cb:0d:f8:13:08:e0:fa:e6:77:ac:ac:f5:71:
9d:fe:34:76:d2:5b:3c:e0:5d:f9:99:58:90:43:19:
08:11:b8:95:ff:b8:98:1d:2b:51:38:27:fc:e5:e0:
84:72:22:a8:4e:c9:94:bc:3e:fb:ba:ea:4f:63:09:
14:39:ed:8f:65:13:5a:6b:97:37:48:0f:11:68:b2:
bf:6b:b3:d9:9c:6b:94:16:63:26:ae:50:e9:03:89:
47:c4:c9:96:7a:7e:bc:d1:c5:38:34:3c:85:ed:db:
9c:dd:5d:56:e1:c8:6b:de:3a:c2:76:21:fc:9f:e2:
22:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C4:D8:C9:81:8F:95:7D:62:6B:0C:61:C0:26:A4:5A:A8:21:5F:78
X509v3 Authority Key Identifier:
keyid:0C:2C:E6:4C:3E:65:A8:20:2A:7C:1B:1B:20:CA:11:E4:5A:E6:D5:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/78TYyYGPlX1iawxhwCakWqghX3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.44.0/22
185.160.92.0/22
185.189.168.0/22
193.84.185.0/24
195.74.71.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:95:65:f4:be:ee:02:b2:36:39:24:1c:37:c4:6d:cd:ec:3a:
78:5b:83:6c:ec:ab:c5:43:76:d4:cb:bb:d3:27:49:c6:a2:06:
f2:e7:82:85:b2:09:c2:5f:61:f3:b4:f2:a5:5d:71:1a:11:88:
5a:5b:46:97:22:59:23:cc:89:b8:e8:3a:27:7e:52:f6:a2:f9:
0f:c3:d4:ff:41:48:9f:12:e6:47:50:de:da:db:23:55:5f:28:
be:8c:8b:b6:39:ab:ef:73:e7:f8:8d:a7:55:4f:a4:2b:e5:83:
9f:20:6d:8f:23:2b:72:68:bc:4a:aa:fe:a7:e0:bb:5a:5d:77:
df:0f:5c:87:a1:62:1d:9c:6d:6f:3e:59:01:d0:84:ee:70:d7:
b4:e4:f9:4b:82:3b:f0:90:58:17:1b:cf:d4:59:58:d1:f8:99:
f9:0c:07:81:68:ec:c7:b8:70:72:1c:59:5d:3c:35:4a:21:2e:
36:63:ec:ba:8c:d0:85:81:53:0e:2b:3e:ea:52:b0:2f:98:f1:
46:f2:3c:4d:a3:d2:74:40:9a:f7:58:d5:79:dd:14:35:28:18:
db:de:37:aa:ae:53:f4:ca:90:87:60:a4:2f:72:d9:a3:be:3b:
62:0a:c6:d5:aa:7b:0c:28:d4:0a:ab:09:42:aa:d5:d9:59:ff:
ff:1e:c4:c2
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYzGS4lUCNoBKosoJjVyZ2CEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMmNlNjRjM2U2NWE4MjAyYTdjMWIxYjIwY2ExMWU0NWFl
NmQ1OGMwHhcNMjQwMTAxMTgzMTI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZmM0ZDhjOTgxOGY5NTdkNjI2YjBjNjFjMDI2YTQ1YWE4MjE1Zjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhRGtELq5dgyRbVLqdrwyqzdsBjrf
NIaLybMJAwha3p9+jVmsXI8LLa7lTfUbXEikgiQoJXplwlCilKkO99n5DgCUYycq
wVLvuxP0vKj22xq33L9BNvyazrfVNDVhoL0EQrR9wRRUmQG6iRBCG2TC/u4FhTlg
7r738G+DP8Nwsyd3z9TkAYoKl8sN+BMI4Prmd6ys9XGd/jR20ls84F35mViQQxkI
EbiV/7iYHStROCf85eCEciKoTsmUvD77uupPYwkUOe2PZRNaa5c3SA8RaLK/a7PZ
nGuUFmMmrlDpA4lHxMmWen680cU4NDyF7duc3V1W4chr3jrCdiH8n+IiyQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFO/E2MmBj5V9YmsMYcAmpFqoIV94MB8GA1UdIwQY
MBaAFAws5kw+ZaggKnwbGyDKEeRa5tWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREN6bVRENWxxQ0FxZkJzYklNb1I1RnJtMVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS84YTAwYzItYmI4Ny00MGE3LWIxZTkt
NWM0Yjc2ZjQ4ZDUwLzEvNzhUWXlZR1BsWDFpYXd4aHdDYWtXcWdoWDNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS84YTAwYzItYmI4Ny00MGE3LWIxZTktNWM0Yjc2ZjQ4ZDUw
LzEvREN6bVRENWxxQ0FxZkJzYklNb1I1RnJtMVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCW8QsAwQC
uaBcAwQCub2oAwQAwVS5AwQAw0pHMA0GCSqGSIb3DQEBCwUAA4IBAQDHlWX0vu4C
sjY5JBw3xG3N7Dp4W4Ns7KvFQ3bUy7vTJ0nGogby54KFsgnCX2HztPKlXXEaEYha
W0aXIlkjzIm46DonflL2ovkPw9T/QUifEuZHUN7a2yNVXyi+jIu2Oavvc+f4jadV
T6Qr5YOfIG2PIytyaLxKqv6n4LtaXXffD1yHoWIdnG1vPlkB0ITucNe05PlLgjvw
kFgXG8/UWVjR+Jn5DAeBaOzHuHByHFldPDVKIS42Y+y6jNCFgVMOKz7qUrAvmPFG
8jxNo9J0QJr3WNV53RQ1KBjb3jeqrlP0ypCHYKQvctmjvjtiCsbVqnsMKNQKqwlC
qtXZWf//HsTC
-----END CERTIFICATE-----
Generated at Sun Jun 23 18:47:02 2024 by rpki-client on console-ams.rpki-client.org