Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/870123-719d-4506-bf86-e8de059278bd/1/kEvHJm0xfcE-udlLZ89zGNgT_kc.roa
File: kEvHJm0xfcE-udlLZ89zGNgT_kc.roa (raw, json)
Hash identifier: w5R84g1pG3aKju8NyF/T/+G95LogoPy1QwRnXWmFo/M=
Subject key identifier: 90:4B:C7:26:6D:31:7D:C1:3E:B9:D9:4B:67:CF:73:18:D8:13:FE:47
Certificate issuer: /CN=18c1ac6882de0893060f80917d7b858c5c30f061
Certificate serial: 018CF283A9D685B52D3C50207E1240816512
Authority key identifier: 18:C1:AC:68:82:DE:08:93:06:0F:80:91:7D:7B:85:8C:5C:30:F0:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GMGsaILeCJMGD4CRfXuFjFww8GE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/870123-719d-4506-bf86-e8de059278bd/1/kEvHJm0xfcE-udlLZ89zGNgT_kc.roa
Signing time: Wed 10 Jan 2024 08:36:04 +0000
ROA not before: Wed 10 Jan 2024 08:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56987
IP address blocks: 5.180.57.0/24 maxlen: 24
5.180.58.0/23 maxlen: 23
185.197.150.0/24 maxlen: 24
2a0c:3d00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/870123-719d-4506-bf86-e8de059278bd/1/GMGsaILeCJMGD4CRfXuFjFww8GE.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/870123-719d-4506-bf86-e8de059278bd/1/GMGsaILeCJMGD4CRfXuFjFww8GE.mft
rsync://rpki.ripe.net/repository/DEFAULT/GMGsaILeCJMGD4CRfXuFjFww8GE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f2:83:a9:d6:85:b5:2d:3c:50:20:7e:12:40:81:65:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18c1ac6882de0893060f80917d7b858c5c30f061
Validity
Not Before: Jan 10 08:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=904bc7266d317dc13eb9d94b67cf7318d813fe47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8c:ba:c6:6d:57:c4:5f:d5:37:0f:f2:cc:1f:
c4:3d:dc:34:8c:4c:df:63:75:b4:12:9a:43:18:e0:
7e:1a:0a:42:14:58:af:9d:3c:f4:60:b7:e1:c3:c3:
56:12:79:5a:0d:ce:da:63:e9:ab:2a:a9:36:c9:58:
88:75:b7:a6:83:f6:c7:0a:ab:fa:9c:c0:95:7a:8a:
87:0d:4b:65:22:dc:cd:2f:85:6a:f0:e5:25:3b:8e:
c8:a3:7a:93:0e:8e:a2:3f:61:6c:d4:2d:ed:bb:8a:
f7:7f:98:e6:53:28:ec:31:ef:03:3b:ab:1b:ab:6f:
1d:0e:b7:2d:f0:6f:8f:9b:4f:e1:1b:6e:e7:b4:69:
19:d5:ee:3a:aa:69:3a:9d:b1:dc:28:76:30:22:1e:
fd:b7:b6:c2:a7:f3:ef:08:14:e7:36:0a:d1:67:31:
36:2f:76:37:56:13:b2:ff:47:7e:04:ab:4d:35:7d:
50:37:0d:52:ac:f2:4d:7a:e2:c2:c5:36:9d:78:0d:
51:54:c3:56:e2:fe:94:39:c4:17:a9:bf:e7:bd:b1:
5a:3e:ba:71:a2:96:ed:a7:5f:84:3f:6e:54:b2:cc:
d2:e0:67:8c:eb:b2:fd:e1:ac:9b:f6:d9:41:5c:0b:
ac:05:12:c8:4b:6d:3f:50:96:ed:40:bb:35:17:7a:
fe:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4B:C7:26:6D:31:7D:C1:3E:B9:D9:4B:67:CF:73:18:D8:13:FE:47
X509v3 Authority Key Identifier:
keyid:18:C1:AC:68:82:DE:08:93:06:0F:80:91:7D:7B:85:8C:5C:30:F0:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GMGsaILeCJMGD4CRfXuFjFww8GE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/870123-719d-4506-bf86-e8de059278bd/1/kEvHJm0xfcE-udlLZ89zGNgT_kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/870123-719d-4506-bf86-e8de059278bd/1/GMGsaILeCJMGD4CRfXuFjFww8GE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.57.0-5.180.59.255
185.197.150.0/24
IPv6:
2a0c:3d00::/29
Signature Algorithm: sha256WithRSAEncryption
ab:09:b5:ec:b5:11:1c:d8:e7:41:da:1d:a0:68:a4:78:e9:5b:
d0:67:78:37:80:af:de:4a:84:94:3a:4f:75:97:76:44:4f:91:
5b:c5:42:d5:5e:e7:56:34:ff:cb:af:fc:21:f7:56:2e:64:29:
8c:b8:dd:bf:89:37:40:cc:56:76:a7:99:0a:6c:e9:47:69:07:
69:2b:61:b0:a4:e1:bc:5e:05:19:ed:0f:74:0f:ce:8c:92:3f:
31:3e:70:91:89:ad:bb:35:88:4a:05:38:2a:4d:07:72:78:9b:
a3:2e:0d:df:93:5d:5b:30:de:41:ed:29:1a:8f:12:40:f9:56:
10:fd:9f:2e:98:bc:59:a7:7d:26:92:0e:30:8c:fa:8e:0c:d3:
76:70:73:6d:3e:20:6f:b4:60:58:e1:a0:55:1d:90:31:bf:9d:
af:ce:50:09:b4:65:cd:cf:eb:6b:32:b1:7e:19:63:be:84:da:
39:ba:8e:b9:71:96:60:78:49:bc:3c:7a:79:0d:d8:da:0d:1a:
56:4a:94:6c:f6:3e:d7:89:1e:bb:8c:43:e8:50:31:f1:56:d2:
60:31:52:cd:3e:42:84:9a:d2:93:3f:0c:44:0e:5d:6f:0e:9a:
22:39:2d:a7:c5:07:12:84:f1:62:d9:8c:3f:81:3a:70:15:71:
a3:f1:f9:cc
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgISAYzyg6nWhbUtPFAgfhJAgWUSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4YzFhYzY4ODJkZTA4OTMwNjBmODA5MTdkN2I4NThjNWMz
MGYwNjEwHhcNMjQwMTEwMDgzNjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDRiYzcyNjZkMzE3ZGMxM2ViOWQ5NGI2N2NmNzMxOGQ4MTNmZTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIy6xm1XxF/VNw/yzB/EPdw0jEzf
Y3W0EppDGOB+GgpCFFivnTz0YLfhw8NWEnlaDc7aY+mrKqk2yViIdbemg/bHCqv6
nMCVeoqHDUtlItzNL4Vq8OUlO47Io3qTDo6iP2Fs1C3tu4r3f5jmUyjsMe8DO6sb
q28dDrct8G+Pm0/hG27ntGkZ1e46qmk6nbHcKHYwIh79t7bCp/PvCBTnNgrRZzE2
L3Y3VhOy/0d+BKtNNX1QNw1SrPJNeuLCxTadeA1RVMNW4v6UOcQXqb/nvbFaPrpx
opbtp1+EP25UsszS4GeM67L94ayb9tlBXAusBRLIS20/UJbtQLs1F3r+kwIDAQAB
o4ICJjCCAiIwHQYDVR0OBBYEFJBLxyZtMX3BPrnZS2fPcxjYE/5HMB8GA1UdIwQY
MBaAFBjBrGiC3giTBg+AkX17hYxcMPBhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR01Hc2FJTGVDSk1HRDRDUmZYdUZqRnd3OEdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS84NzAxMjMtNzE5ZC00NTA2LWJmODYt
ZThkZTA1OTI3OGJkLzEva0V2SEptMHhmY0UtdWRsTFo4OXpHTmdUX2tjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS84NzAxMjMtNzE5ZC00NTA2LWJmODYtZThkZTA1OTI3OGJk
LzEvR01Hc2FJTGVDSk1HRDRDUmZYdUZqRnd3OEdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAaBAIAATAUMAwDBAAFtDkD
BAIFtDgDBAC5xZYwDQQCAAIwBwMFAyoMPQAwDQYJKoZIhvcNAQELBQADggEBAKsJ
tey1ERzY50HaHaBopHjpW9BneDeAr95KhJQ6T3WXdkRPkVvFQtVe51Y0/8uv/CH3
Vi5kKYy43b+JN0DMVnanmQps6UdpB2krYbCk4bxeBRntD3QPzoySPzE+cJGJrbs1
iEoFOCpNB3J4m6MuDd+TXVsw3kHtKRqPEkD5VhD9ny6YvFmnfSaSDjCM+o4M03Zw
c20+IG+0YFjhoFUdkDG/na/OUAm0Zc3P62sysX4ZY76E2jm6jrlxlmB4Sbw8enkN
2NoNGlZKlGz2PteJHruMQ+hQMfFW0mAxUs0+QoSa0pM/DEQOXW8OmiI5LafFBxKE
8WLZjD+BOnAVcaPx+cw=
-----END CERTIFICATE-----
Generated at Fri Nov 22 20:00:27 2024 by rpki-client on console-ams.rpki-client.org