Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/cA9y-e1iOxbTOqZMkVW7qOGIKTo.roa
File: cA9y-e1iOxbTOqZMkVW7qOGIKTo.roa (raw, json)
Hash identifier: gPdzJEDRC/HzU7efo5JepK3m0iYoJpiQMnJ+rsfhgOk=
Subject key identifier: 70:0F:72:F9:ED:62:3B:16:D3:3A:A6:4C:91:55:BB:A8:E1:88:29:3A
Certificate issuer: /CN=761e791f3ae83ae8b263e3cdb682a3475b5707df
Certificate serial: 018CC501550611CB43F73D6927D4C3BDECE7
Authority key identifier: 76:1E:79:1F:3A:E8:3A:E8:B2:63:E3:CD:B6:82:A3:47:5B:57:07:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dh55HzroOuiyY-PNtoKjR1tXB98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/cA9y-e1iOxbTOqZMkVW7qOGIKTo.roa
Signing time: Mon 01 Jan 2024 12:30:48 +0000
ROA not before: Mon 01 Jan 2024 12:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43341
IP address blocks: 77.83.176.0/22 maxlen: 22
2a09:8580::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/dh55HzroOuiyY-PNtoKjR1tXB98.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/dh55HzroOuiyY-PNtoKjR1tXB98.mft
rsync://rpki.ripe.net/repository/DEFAULT/dh55HzroOuiyY-PNtoKjR1tXB98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:55:06:11:cb:43:f7:3d:69:27:d4:c3:bd:ec:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761e791f3ae83ae8b263e3cdb682a3475b5707df
Validity
Not Before: Jan 1 12:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=700f72f9ed623b16d33aa64c9155bba8e188293a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:90:43:7a:c4:cb:2e:a5:4c:4e:e6:f8:8f:48:
8f:fc:b0:df:9c:f8:f8:41:e2:d2:8b:e8:6c:ba:4b:
6f:1d:a6:ef:5f:7d:e9:6d:94:f8:a5:32:52:e5:1d:
ac:06:67:e1:50:46:67:d3:22:ce:f7:57:b9:20:a2:
9b:2e:c3:08:b9:8c:71:e6:ed:27:85:37:62:f2:bf:
75:5d:ba:49:ce:61:68:04:11:dd:fc:9e:a3:3a:a4:
88:13:d9:69:54:2b:47:2e:e0:ae:a6:f8:f0:8d:e1:
d1:fb:15:d4:7c:ce:97:89:77:96:17:ac:82:23:a7:
df:e8:2f:44:55:e4:df:9d:7a:ec:df:8c:2b:65:a3:
28:80:e7:5c:2c:dd:59:ff:9d:4c:88:f7:86:c4:47:
15:e2:64:bd:0d:e8:bf:21:73:48:ae:b2:44:76:bd:
45:3a:8d:03:23:28:2f:20:24:81:76:5f:8a:e3:c3:
ff:68:30:fe:00:aa:c4:a3:45:b3:54:84:24:db:e3:
1a:f5:3d:df:9c:39:f4:24:c1:9c:ed:0a:a4:dc:6e:
a3:77:e2:3f:2d:db:61:c1:7f:dd:4e:a0:c8:51:d8:
56:1a:40:d5:40:74:23:48:33:7f:ce:5f:77:04:dd:
0d:5c:5f:62:05:bb:44:1b:7a:3b:83:33:fc:c0:d4:
f0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:0F:72:F9:ED:62:3B:16:D3:3A:A6:4C:91:55:BB:A8:E1:88:29:3A
X509v3 Authority Key Identifier:
keyid:76:1E:79:1F:3A:E8:3A:E8:B2:63:E3:CD:B6:82:A3:47:5B:57:07:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dh55HzroOuiyY-PNtoKjR1tXB98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/cA9y-e1iOxbTOqZMkVW7qOGIKTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/fcd990-72f4-4ebd-864a-92e451877d2c/1/dh55HzroOuiyY-PNtoKjR1tXB98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.176.0/22
IPv6:
2a09:8580::/29
Signature Algorithm: sha256WithRSAEncryption
4a:2a:8d:0d:f7:21:6e:b4:3e:26:7d:22:03:f6:7f:ff:4f:2b:
5c:d2:b8:d1:33:c6:f6:37:97:d9:4c:4f:62:9b:35:52:2a:06:
5d:df:33:9a:95:f2:b2:65:48:ea:58:30:70:57:d9:82:14:3d:
5f:7d:43:dc:c4:2c:43:e4:6b:5e:15:6a:38:be:29:85:bb:a0:
13:7e:fb:57:54:f7:70:7b:b8:31:9d:60:75:18:ec:38:80:8a:
b5:28:c0:e8:83:a6:dd:82:da:c3:27:58:45:aa:37:43:da:b8:
97:67:f1:7a:8e:2b:a3:d8:de:a3:8f:41:4a:7b:96:30:61:38:
9b:02:cd:15:fa:4c:6c:a4:d4:1e:74:eb:7a:ea:fa:23:27:40:
a0:b2:7f:36:58:8f:97:7a:f5:1a:76:02:25:be:a6:d1:d3:5e:
84:10:35:3e:60:1e:86:19:24:04:89:fe:08:14:67:8c:7f:4d:
81:9d:82:62:6a:9b:b9:ae:a7:51:7c:9d:c3:d8:20:e3:7a:db:
0f:59:3f:16:b8:ec:67:aa:1a:85:45:16:08:22:95:1c:e5:c1:
19:34:7d:b5:e7:58:a8:7f:ca:4d:de:b4:09:f3:e7:97:cf:ef:
61:c1:0b:bc:c6:25:fb:55:46:ef:b7:b7:e8:c1:bb:52:3b:3a:
5f:3f:54:d3
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzFAVUGEctD9z1pJ9TDveznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MWU3OTFmM2FlODNhZThiMjYzZTNjZGI2ODJhMzQ3NWI1
NzA3ZGYwHhcNMjQwMTAxMTIzMDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDBmNzJmOWVkNjIzYjE2ZDMzYWE2NGM5MTU1YmJhOGUxODgyOTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpBDesTLLqVMTub4j0iP/LDfnPj4
QeLSi+hsuktvHabvX33pbZT4pTJS5R2sBmfhUEZn0yLO91e5IKKbLsMIuYxx5u0n
hTdi8r91XbpJzmFoBBHd/J6jOqSIE9lpVCtHLuCupvjwjeHR+xXUfM6XiXeWF6yC
I6ff6C9EVeTfnXrs34wrZaMogOdcLN1Z/51MiPeGxEcV4mS9Dei/IXNIrrJEdr1F
Oo0DIygvICSBdl+K48P/aDD+AKrEo0WzVIQk2+Ma9T3fnDn0JMGc7Qqk3G6jd+I/
LdthwX/dTqDIUdhWGkDVQHQjSDN/zl93BN0NXF9iBbtEG3o7gzP8wNTwsQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFHAPcvntYjsW0zqmTJFVu6jhiCk6MB8GA1UdIwQY
MBaAFHYeeR866DrosmPjzbaCo0dbVwffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGg1NUh6cm9PdWl5WS1QTnRvS2pSMXRYQjk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9mY2Q5OTAtNzJmNC00ZWJkLTg2NGEt
OTJlNDUxODc3ZDJjLzEvY0E5eS1lMWlPeGJUT3FaTWtWVzdxT0dJS1RvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9mY2Q5OTAtNzJmNC00ZWJkLTg2NGEtOTJlNDUxODc3ZDJj
LzEvZGg1NUh6cm9PdWl5WS1QTnRvS2pSMXRYQjk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCTVOwMA0E
AgACMAcDBQMqCYWAMA0GCSqGSIb3DQEBCwUAA4IBAQBKKo0N9yFutD4mfSID9n//
Tytc0rjRM8b2N5fZTE9imzVSKgZd3zOalfKyZUjqWDBwV9mCFD1ffUPcxCxD5Gte
FWo4vimFu6ATfvtXVPdwe7gxnWB1GOw4gIq1KMDog6bdgtrDJ1hFqjdD2riXZ/F6
jiuj2N6jj0FKe5YwYTibAs0V+kxspNQedOt66vojJ0Cgsn82WI+XevUadgIlvqbR
016EEDU+YB6GGSQEif4IFGeMf02BnYJiapu5rqdRfJ3D2CDjetsPWT8WuOxnqhqF
RRYIIpUc5cEZNH2151iof8pN3rQJ8+eXz+9hwQu8xiX7VUbvt7fowbtSOzpfP1TT
-----END CERTIFICATE-----
Generated at Sat Jun 22 20:58:07 2024 by rpki-client on console-ams.rpki-client.org