Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/evJ3380ga8jjdRzTlQKQbqyhcmk.roa
File: evJ3380ga8jjdRzTlQKQbqyhcmk.roa (raw, json)
Hash identifier: mrF2MKrmsL/csp1+zZzOOq4wJcPlMlIx4Q1QzqcbVuM=
Subject key identifier: 7A:F2:77:DF:CD:20:6B:C8:E3:75:1C:D3:95:02:90:6E:AC:A1:72:69
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 0191601790DBE876F848DBD61111E6EB7E46
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/evJ3380ga8jjdRzTlQKQbqyhcmk.roa
Signing time: Sat 17 Aug 2024 11:27:22 +0000
ROA not before: Sat 17 Aug 2024 11:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215415
IP address blocks: 45.8.178.0/24 maxlen: 24
45.8.179.0/24 maxlen: 24
45.148.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.mft
rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 07:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:60:17:90:db:e8:76:f8:48:db:d6:11:11:e6:eb:7e:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Aug 17 11:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7af277dfcd206bc8e3751cd39502906eaca17269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:23:d4:9f:6c:c4:f6:95:de:37:47:3b:31:9a:
91:c6:bd:e5:11:98:48:4b:c6:bb:aa:bc:d1:16:2c:
0e:7c:5f:52:6c:8f:6f:25:a5:8f:f6:47:59:86:30:
3a:07:2e:df:92:18:d4:db:6a:76:b0:7f:70:c0:88:
7a:31:70:fa:32:39:7b:17:d7:d6:35:30:1f:fa:f4:
c6:d4:4a:77:05:59:2d:b1:55:9a:0d:f8:62:2b:68:
38:99:44:f3:b8:d4:f3:ea:11:f2:4c:9d:74:07:eb:
65:77:33:07:bf:51:da:1e:13:34:3e:25:d3:5f:e0:
e7:73:46:88:dd:cf:fa:07:00:2e:d0:99:5e:a7:8d:
b5:69:61:a1:d3:9b:10:a9:58:5a:96:cd:a7:34:93:
b5:49:54:5a:d2:d0:92:09:0b:08:36:18:b1:21:34:
8f:33:67:0a:92:51:06:bd:c2:89:61:5a:22:60:50:
08:4b:8d:ad:38:6d:bf:7d:ec:b1:3d:16:4d:46:e2:
9a:57:3b:e4:43:14:c0:bc:c0:c0:8b:79:83:dc:43:
8e:f6:c8:35:d5:d4:73:a8:54:7b:a4:6f:4c:6f:84:
93:6c:32:a6:89:a7:0b:80:29:c4:84:23:3a:fa:8d:
44:83:2f:8a:4c:32:76:46:c1:32:f0:8c:7b:7e:18:
8f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F2:77:DF:CD:20:6B:C8:E3:75:1C:D3:95:02:90:6E:AC:A1:72:69
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/evJ3380ga8jjdRzTlQKQbqyhcmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.178.0/23
45.148.147.0/24
Signature Algorithm: sha256WithRSAEncryption
55:77:0e:36:1d:77:f2:16:49:c3:e3:a9:9d:1c:a0:e5:73:84:
8d:3b:80:4f:eb:ec:c2:41:cc:ee:7f:49:af:a0:f6:63:69:32:
f4:28:ce:f2:72:6c:bc:e3:a0:ee:70:b9:64:13:45:ee:fc:1a:
6c:05:bf:0d:45:ac:ae:cd:e8:32:48:cc:21:bb:45:61:8d:b6:
61:d7:aa:98:9d:55:91:87:c4:d8:33:73:88:2e:2f:5a:44:c4:
68:42:f7:0b:71:6c:fc:ef:8e:5d:53:9b:2f:4c:34:9a:29:c7:
c9:3e:fa:62:fa:38:c5:1d:58:47:26:b3:59:07:af:d7:f4:ea:
64:18:74:5a:a3:b9:75:a0:36:74:56:78:a9:be:f4:13:17:79:
37:80:86:bd:69:47:fe:92:4a:fd:63:ed:ec:4f:f3:ec:2e:c3:
1d:00:20:a4:88:92:ed:40:10:3e:83:29:25:21:71:b9:47:44:
e6:e6:e1:45:0e:39:36:78:cb:fc:e1:da:a0:f4:a0:41:03:d1:
0c:f3:82:a5:8e:29:ce:b6:21:d2:64:36:06:9f:ec:63:22:85:
91:df:33:2a:8b:29:4d:53:7a:4a:0f:f6:f3:47:7f:e5:2d:73:
91:5e:18:7c:fe:00:dc:4e:e0:d7:14:48:c7:d5:cd:15:b9:1f:
96:54:d5:b4
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFgF5Db6Hb4SNvWERHm635GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxYmRkZWFmMGYzMGZiZGFmOWU3NWI5MmFjN2Q1YmQxM2Yy
ODVkZTcwHhcNMjQwODE3MTEyNzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWYyNzdkZmNkMjA2YmM4ZTM3NTFjZDM5NTAyOTA2ZWFjYTE3MjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSPUn2zE9pXeN0c7MZqRxr3lEZhI
S8a7qrzRFiwOfF9SbI9vJaWP9kdZhjA6By7fkhjU22p2sH9wwIh6MXD6Mjl7F9fW
NTAf+vTG1Ep3BVktsVWaDfhiK2g4mUTzuNTz6hHyTJ10B+tldzMHv1HaHhM0PiXT
X+Dnc0aI3c/6BwAu0Jlep421aWGh05sQqVhals2nNJO1SVRa0tCSCQsINhixITSP
M2cKklEGvcKJYVoiYFAIS42tOG2/feyxPRZNRuKaVzvkQxTAvMDAi3mD3EOO9sg1
1dRzqFR7pG9Mb4STbDKmiacLgCnEhCM6+o1Egy+KTDJ2RsEy8Ix7fhiPmwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHryd9/NIGvI43Uc05UCkG6soXJpMB8GA1UdIwQY
MBaAFHG93q8PMPva+edbkqx9W9E/KF3nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUt
NDc3MjMxMTkxYTM1LzEvZXZKMzM4MGdhOGpqZFJ6VGxRS1FicXloY21rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUtNDc3MjMxMTkxYTM1
LzEvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLQiyAwQA
LZSTMA0GCSqGSIb3DQEBCwUAA4IBAQBVdw42HXfyFknD46mdHKDlc4SNO4BP6+zC
Qczuf0mvoPZjaTL0KM7ycmy846DucLlkE0Xu/BpsBb8NRayuzegySMwhu0VhjbZh
16qYnVWRh8TYM3OILi9aRMRoQvcLcWz8745dU5svTDSaKcfJPvpi+jjFHVhHJrNZ
B6/X9OpkGHRao7l1oDZ0VnipvvQTF3k3gIa9aUf+kkr9Y+3sT/PsLsMdACCkiJLt
QBA+gyklIXG5R0Tm5uFFDjk2eMv84dqg9KBBA9EM84KljinOtiHSZDYGn+xjIoWR
3zMqiylNU3pKD/bzR3/lLXORXhh8/gDcTuDXFEjH1c0VuR+WVNW0
-----END CERTIFICATE-----
Generated at Tue Nov 26 11:16:14 2024 by rpki-client on console-fra.rpki-client.org