Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/N-jS34kzuHLFkTBIbbF_sMceZLE.roa
File: N-jS34kzuHLFkTBIbbF_sMceZLE.roa (raw, json)
Hash identifier: 24Xs/wGwMHfSJcGjHB1tqI9C1/mYrKWC5gzjf+rBZDE=
Subject key identifier: 37:E8:D2:DF:89:33:B8:72:C5:91:30:48:6D:B1:7F:B0:C7:1E:64:B1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018FE7C1066F77B846CF3DE74442055D3735
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/N-jS34kzuHLFkTBIbbF_sMceZLE.roa
Signing time: Wed 05 Jun 2024 09:35:37 +0000
ROA not before: Wed 05 Jun 2024 09:35:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6939
IP address blocks: 94.156.112.0/24 maxlen: 24
94.156.114.0/24 maxlen: 24
94.156.115.0/24 maxlen: 24
94.156.118.0/24 maxlen: 24
94.156.120.0/24 maxlen: 24
94.156.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e7:c1:06:6f:77:b8:46:cf:3d:e7:44:42:05:5d:37:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 5 09:35:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37e8d2df8933b872c59130486db17fb0c71e64b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:28:39:76:42:55:b5:76:ea:0a:de:40:7b:aa:
4c:63:71:8f:b9:f7:bf:36:4b:30:f7:de:9b:b9:c3:
8b:92:86:20:9b:d9:6b:f1:d2:a9:b5:51:ff:e7:fe:
01:aa:36:d9:b2:03:5c:2d:c2:c5:cc:7e:e2:a4:df:
5f:26:66:85:2c:c5:c6:cb:c3:39:b5:dd:b6:c1:3a:
58:cc:de:e8:96:ac:d6:31:c9:50:36:5b:81:71:ee:
b1:c9:eb:c5:04:84:3a:f3:48:c2:3f:1c:ab:ba:25:
68:1d:d1:17:5a:be:1f:a9:54:1b:46:c2:78:9c:ae:
3d:84:bd:fb:7a:5a:9f:a6:35:59:36:f7:45:76:b1:
7e:cb:fd:20:21:35:15:3b:47:8b:e4:55:46:4d:4f:
dc:f9:cc:9d:74:c7:82:15:41:7e:77:a1:e5:a8:7c:
7e:58:73:3b:3c:e5:9d:dc:5d:26:de:d5:0d:41:ac:
2b:66:05:81:63:7e:05:61:2c:ec:0a:0f:a0:4d:dd:
eb:3d:bb:41:af:b7:9e:b2:85:fa:b5:03:bd:1d:41:
2d:ee:07:02:55:19:f0:56:42:e1:46:43:5c:60:68:
d6:a8:19:03:e4:41:dc:d9:35:39:91:06:bf:e7:ab:
a4:db:90:5a:a6:df:bf:5a:2f:48:be:fa:c9:b5:14:
cf:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E8:D2:DF:89:33:B8:72:C5:91:30:48:6D:B1:7F:B0:C7:1E:64:B1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/N-jS34kzuHLFkTBIbbF_sMceZLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.112.0/24
94.156.114.0/23
94.156.118.0/24
94.156.120.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:de:16:d2:2f:26:b3:5b:b8:d7:e5:77:c6:a7:41:39:ac:cd:
31:95:9d:3b:eb:57:3a:0c:05:30:2d:c6:e1:8f:4c:06:fe:3e:
db:f5:47:78:6a:85:e5:64:22:ba:d8:62:db:88:83:a8:6f:8a:
3b:4b:9f:16:dd:53:68:e6:a8:a2:7c:1d:75:97:77:6f:18:56:
f9:c9:db:b1:80:ce:ff:18:3c:b6:f7:a3:3f:c6:e3:5c:22:be:
74:62:e0:d0:3b:b1:a9:4d:bb:23:6a:ed:4c:e8:cf:fa:8f:58:
39:46:c5:5c:6c:75:52:85:c7:2c:02:ec:4a:bf:2e:c4:cb:6d:
7d:29:ca:b8:39:92:e7:5c:ae:af:c4:e6:8a:cb:e3:88:b6:0f:
76:42:24:94:42:6e:32:a7:7f:1f:ff:b4:0d:dd:5d:a5:67:66:
56:df:0b:5a:61:84:5c:30:db:8a:66:ee:d5:84:61:02:84:80:
3a:a7:58:93:60:2d:6f:9a:96:fa:a3:d6:dd:bc:27:ed:8c:f1:
7c:d8:63:87:7d:7f:dc:34:b8:15:d9:17:04:76:e7:8d:f4:fb:
80:ea:67:f3:0b:b5:76:5c:76:31:2b:94:82:da:15:0b:a0:cd:
d5:8c:fe:e6:cf:2c:3f:43:bd:4e:ee:9f:de:9f:f1:7d:ff:54:
d6:f1:77:e3
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAY/nwQZvd7hGzz3nREIFXTc1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwNjA1MDkzNTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2U4ZDJkZjg5MzNiODcyYzU5MTMwNDg2ZGIxN2ZiMGM3MWU2NGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4yg5dkJVtXbqCt5Ae6pMY3GPufe/
Nksw996bucOLkoYgm9lr8dKptVH/5/4BqjbZsgNcLcLFzH7ipN9fJmaFLMXGy8M5
td22wTpYzN7olqzWMclQNluBce6xyevFBIQ680jCPxyruiVoHdEXWr4fqVQbRsJ4
nK49hL37elqfpjVZNvdFdrF+y/0gITUVO0eL5FVGTU/c+cyddMeCFUF+d6HlqHx+
WHM7POWd3F0m3tUNQawrZgWBY34FYSzsCg+gTd3rPbtBr7eesoX6tQO9HUEt7gcC
VRnwVkLhRkNcYGjWqBkD5EHc2TU5kQa/56uk25Bapt+/Wi9IvvrJtRTPdwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFDfo0t+JM7hyxZEwSG2xf7DHHmSxMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvTi1qUzM0a3p1SExGa1RCSWJiRl9zTWNlWkxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAXpxwAwQB
XpxyAwQAXpx2AwQBXpx4MA0GCSqGSIb3DQEBCwUAA4IBAQCx3hbSLyazW7jX5XfG
p0E5rM0xlZ0761c6DAUwLcbhj0wG/j7b9Ud4aoXlZCK62GLbiIOob4o7S58W3VNo
5qiifB11l3dvGFb5yduxgM7/GDy296M/xuNcIr50YuDQO7GpTbsjau1M6M/6j1g5
RsVcbHVShccsAuxKvy7Ey219Kcq4OZLnXK6vxOaKy+OItg92QiSUQm4yp38f/7QN
3V2lZ2ZW3wtaYYRcMNuKZu7VhGEChIA6p1iTYC1vmpb6o9bdvCftjPF82GOHfX/c
NLgV2RcEdueN9PuA6mfzC7V2XHYxK5SC2hULoM3VjP7mzyw/Q71O7p/en/F9/1TW
8Xfj
-----END CERTIFICATE-----
Generated at Fri Nov 22 11:44:04 2024 by rpki-client on console-fra.rpki-client.org