Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/PAnavck1V1XT3gbP0JlIa7TnTTs.roa
File: PAnavck1V1XT3gbP0JlIa7TnTTs.roa (raw, json)
Hash identifier: IYXooDwfdwYBZcofuB8IfGJ4sAQdNsiXpYiX86SOiaI=
Subject key identifier: 3C:09:DA:BD:C9:35:57:55:D3:DE:06:CF:D0:99:48:6B:B4:E7:4D:3B
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018CC3B67C1365E98F68DF10E5C777DD54F0
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/PAnavck1V1XT3gbP0JlIa7TnTTs.roa
Signing time: Mon 01 Jan 2024 06:29:25 +0000
ROA not before: Mon 01 Jan 2024 06:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198469
IP address blocks: 194.110.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 20:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:7c:13:65:e9:8f:68:df:10:e5:c7:77:dd:54:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 06:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c09dabdc9355755d3de06cfd099486bb4e74d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ce:3d:ec:9b:ee:03:f7:54:d2:d1:8c:e7:a5:
ef:f3:c5:c4:4b:58:4d:2f:6a:77:d9:3f:2e:be:eb:
49:c8:fa:9e:61:c7:70:06:70:84:c4:e5:5d:7c:92:
16:65:e6:51:a0:dc:94:07:89:2d:3e:bd:ee:19:a2:
00:f7:c6:f0:7c:d3:6e:dd:62:ae:91:92:8d:e2:33:
2b:cf:25:f9:da:1d:e2:f6:7e:81:32:11:ab:22:1a:
73:8b:a8:27:f5:f5:72:a6:2a:8d:e7:6b:f5:c8:06:
a0:06:95:b8:e1:93:8e:26:e6:22:02:af:10:2d:07:
08:ba:f1:26:7c:d5:0b:78:07:68:94:b9:83:f0:04:
6f:26:ff:ac:d5:aa:fb:e1:dd:ee:bf:c6:97:c8:43:
34:1a:59:2e:5a:9d:76:e7:8c:80:bd:c3:0e:ef:cd:
e6:af:fd:56:d4:b1:71:89:01:62:4f:08:ea:40:e2:
fb:50:25:0f:18:a8:cb:91:5c:5a:a3:a2:f2:40:13:
87:42:f5:91:79:2e:32:65:64:c4:6b:76:f9:7b:ed:
05:ea:15:6b:ea:bc:d4:bb:1c:6c:c9:3e:aa:27:1a:
10:c0:98:5d:d4:b5:7b:62:cb:f0:f9:93:dd:1f:00:
9b:87:b6:6a:d7:d1:8a:1a:25:6c:b5:9e:78:82:3b:
fb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:09:DA:BD:C9:35:57:55:D3:DE:06:CF:D0:99:48:6B:B4:E7:4D:3B
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/PAnavck1V1XT3gbP0JlIa7TnTTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:17:53:0d:b2:24:fa:fe:b7:62:17:0a:ba:92:58:72:b0:4b:
42:59:39:35:ea:db:5e:68:ad:b0:34:34:37:33:92:dd:28:14:
b7:11:83:50:65:5a:0e:5a:43:54:af:4f:19:22:11:87:bb:4e:
97:3f:14:05:d6:20:d3:fc:37:16:c1:28:74:81:a1:1b:1c:d0:
4c:25:f9:7e:2d:43:2b:ad:5a:20:3e:e3:cf:c9:e6:47:b5:84:
08:e3:20:ff:7d:b9:7d:ba:78:b9:55:18:ff:98:87:f6:c2:60:
43:5b:a5:01:5d:3f:4d:22:2c:2d:d3:69:cf:e0:44:bb:14:72:
ce:a0:92:05:b4:eb:0c:0f:3d:bf:93:2d:38:5d:42:c6:e9:ab:
96:87:00:ba:83:fc:67:e0:a3:d1:3a:6f:8c:53:97:87:31:31:
cf:26:51:77:13:17:0f:5d:cf:81:30:5c:0e:01:20:ae:aa:8e:
cb:7e:34:76:45:a0:78:1d:95:3e:0d:e4:e9:40:fe:85:2a:1f:
be:8e:18:2d:1e:b5:82:b7:49:df:0f:3b:60:58:4c:ed:44:8a:
19:44:ef:2b:3b:e5:fa:b1:02:7e:76:0e:a6:45:59:3a:5a:4c:
fe:ef:54:75:2a:a4:32:4a:ff:b9:b8:1a:c4:7a:80:05:a8:dc:
61:36:6c:e6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDtnwTZemPaN8Q5cd33VTwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOGFlYTJmMDI1ZjQ5NWJlYWNlZTdjZTVhODgyMDUxOWRk
YTEzNzAwHhcNMjQwMTAxMDYyOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzA5ZGFiZGM5MzU1NzU1ZDNkZTA2Y2ZkMDk5NDg2YmI0ZTc0ZDNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArc497JvuA/dU0tGM56Xv88XES1hN
L2p32T8uvutJyPqeYcdwBnCExOVdfJIWZeZRoNyUB4ktPr3uGaIA98bwfNNu3WKu
kZKN4jMrzyX52h3i9n6BMhGrIhpzi6gn9fVypiqN52v1yAagBpW44ZOOJuYiAq8Q
LQcIuvEmfNULeAdolLmD8ARvJv+s1ar74d3uv8aXyEM0GlkuWp1254yAvcMO783m
r/1W1LFxiQFiTwjqQOL7UCUPGKjLkVxao6LyQBOHQvWReS4yZWTEa3b5e+0F6hVr
6rzUuxxsyT6qJxoQwJhd1LV7Ysvw+ZPdHwCbh7Zq19GKGiVstZ54gjv7JwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDwJ2r3JNVdV094Gz9CZSGu05007MB8GA1UdIwQY
MBaAFE+K6i8CX0lb6s7nzlqIIFGd2hNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUt
NjA4MDk1MmYwZTA0LzEvUEFuYXZjazFWMVhUM2diUDBKbElhN1RuVFRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUtNjA4MDk1MmYwZTA0
LzEvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwm6vMA0G
CSqGSIb3DQEBCwUAA4IBAQALF1MNsiT6/rdiFwq6klhysEtCWTk16tteaK2wNDQ3
M5LdKBS3EYNQZVoOWkNUr08ZIhGHu06XPxQF1iDT/DcWwSh0gaEbHNBMJfl+LUMr
rVogPuPPyeZHtYQI4yD/fbl9uni5VRj/mIf2wmBDW6UBXT9NIiwt02nP4ES7FHLO
oJIFtOsMDz2/ky04XULG6auWhwC6g/xn4KPROm+MU5eHMTHPJlF3ExcPXc+BMFwO
ASCuqo7LfjR2RaB4HZU+DeTpQP6FKh++jhgtHrWCt0nfDztgWEztRIoZRO8rO+X6
sQJ+dg6mRVk6Wkz+71R1KqQySv+5uBrEeoAFqNxhNmzm
-----END CERTIFICATE-----
Generated at Sun May 19 00:50:27 2024 by rpki-client on console-ams.rpki-client.org