Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/F7eyjgD9pUUUHWItfbm9ElF7TIs.roa
File: F7eyjgD9pUUUHWItfbm9ElF7TIs.roa (raw, json)
Hash identifier: Wm4RyVT5EsquYlAYHTqeuliqWNoqF/kSkV0ceBossiw=
Subject key identifier: 17:B7:B2:8E:00:FD:A5:45:14:1D:62:2D:7D:B9:BD:12:51:7B:4C:8B
Certificate issuer: /CN=f3b90781dbbebdb8ec42baf66488059ea5866aac
Certificate serial: 018F3D7D0E3F95F871F6266741E794E6ADD2
Authority key identifier: F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/F7eyjgD9pUUUHWItfbm9ElF7TIs.roa
Signing time: Fri 03 May 2024 08:05:56 +0000
ROA not before: Fri 03 May 2024 08:05:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61266
IP address blocks: 185.10.244.0/22 maxlen: 22
2a03:6940::/32 maxlen: 32
2a03:6947:300::/40 maxlen: 40
2a03:6947:400::/40 maxlen: 40
2a03:6947:500::/40 maxlen: 40
2a03:6947:900::/40 maxlen: 40
2a03:6947:a00::/40 maxlen: 40
2a03:6947:c00::/40 maxlen: 40
2a03:6947:f00::/40 maxlen: 40
2a03:6947:1100::/40 maxlen: 40
2a03:6947:1200::/40 maxlen: 40
2a03:6947:1300::/40 maxlen: 40
2a03:6947:1700::/40 maxlen: 40
2a03:6947:1900::/40 maxlen: 40
2a03:6947:1b00::/40 maxlen: 40
2a03:6947:1d00::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.mft
rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3d:7d:0e:3f:95:f8:71:f6:26:67:41:e7:94:e6:ad:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b90781dbbebdb8ec42baf66488059ea5866aac
Validity
Not Before: May 3 08:05:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17b7b28e00fda545141d622d7db9bd12517b4c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8d:d0:fd:cd:79:cc:c4:27:b6:dc:ce:e1:1e:
36:f6:8b:a4:f7:1e:b2:83:2c:4e:19:6d:92:1a:b2:
6f:b6:a3:4a:3c:a9:ba:e4:33:65:d3:8d:e2:8a:9d:
6e:46:e4:83:c4:47:51:fc:e1:2c:4f:36:8b:2c:24:
15:d5:5d:83:91:2b:64:62:3d:fa:4c:2a:5e:ca:b0:
12:3b:90:8a:6a:c6:9a:d7:d4:cc:80:1c:6f:d4:d7:
3c:9d:44:ad:cb:5b:14:d5:e3:8d:8e:bb:66:4f:de:
de:19:df:0f:0d:4c:36:51:a9:43:50:e0:62:3f:ce:
90:8b:a4:91:fa:2b:8f:28:70:de:52:aa:e1:cf:b6:
ec:df:89:13:5a:f2:0b:9b:ca:64:43:fd:5a:12:57:
fd:8c:b6:93:9a:16:23:9b:27:21:c4:be:56:8c:15:
a3:1a:ad:37:52:c1:a7:67:97:e9:61:48:44:b6:ee:
71:fd:68:7d:c5:92:fa:55:98:33:2a:0c:5e:2c:9d:
2a:95:76:e1:fe:6c:bb:76:71:48:47:1d:0b:28:b8:
dc:5a:f9:d0:17:12:48:c2:a5:f5:0c:87:13:80:c6:
2a:ca:66:9d:ab:4a:b8:af:e2:69:8b:48:34:10:bf:
21:4c:14:4e:24:a7:7f:9d:46:1f:f6:9c:fd:10:40:
3b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B7:B2:8E:00:FD:A5:45:14:1D:62:2D:7D:B9:BD:12:51:7B:4C:8B
X509v3 Authority Key Identifier:
keyid:F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/F7eyjgD9pUUUHWItfbm9ElF7TIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.244.0/22
IPv6:
2a03:6940::/32
2a03:6947:300::-2a03:6947:5ff:ffff:ffff:ffff:ffff:ffff
2a03:6947:900::-2a03:6947:aff:ffff:ffff:ffff:ffff:ffff
2a03:6947:c00::/40
2a03:6947:f00::/40
2a03:6947:1100::-2a03:6947:13ff:ffff:ffff:ffff:ffff:ffff
2a03:6947:1700::/40
2a03:6947:1900::/40
2a03:6947:1b00::/40
2a03:6947:1d00::/40
Signature Algorithm: sha256WithRSAEncryption
5a:a9:dd:c6:40:bb:d5:65:9c:cc:b6:ce:94:0b:0c:50:75:87:
d8:62:f8:df:93:33:4c:12:31:e0:f7:ab:39:92:97:a3:01:2c:
93:68:e9:56:90:ac:b0:a1:7a:61:9b:dc:43:e2:e5:29:d9:20:
3e:99:51:16:82:9e:c8:d7:bb:94:48:60:5e:cf:99:ca:1a:b2:
28:2c:f6:b1:f6:fc:df:34:ef:0f:00:47:38:3a:0f:81:41:b7:
47:fd:9d:ef:35:7d:fb:50:d4:c8:b1:8f:f0:62:b2:aa:84:5c:
00:12:75:45:5d:87:75:11:5a:f0:61:ea:b5:3d:81:15:67:8e:
d4:1c:e5:d3:80:bf:69:18:9d:b3:21:de:f6:b3:36:5b:38:7a:
0a:4b:58:d8:67:8e:a9:f7:c5:fa:43:28:1a:51:0a:4b:e6:17:
a4:75:fb:c0:75:17:8d:95:d9:2b:2d:32:2b:c3:d2:fa:a1:94:
68:e0:8a:9a:5b:85:6f:53:9f:65:c8:83:c6:57:45:cd:22:d2:
a5:5d:2b:e5:58:09:1e:4f:93:4d:cd:6b:3b:fd:a4:8b:4b:ef:
35:9b:7a:08:16:0c:81:ad:db:94:76:ed:41:77:73:1b:2c:9a:
5d:c4:a7:1a:ab:c4:43:75:1f:1a:ff:a6:5b:43:04:d5:2a:5f:
4d:4c:c4:c7
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgISAY89fQ4/lfhx9iZnQeeU5q3SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzYjkwNzgxZGJiZWJkYjhlYzQyYmFmNjY0ODgwNTllYTU4
NjZhYWMwHhcNMjQwNTAzMDgwNTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxN2I3YjI4ZTAwZmRhNTQ1MTQxZDYyMmQ3ZGI5YmQxMjUxN2I0YzhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoI3Q/c15zMQnttzO4R429ouk9x6y
gyxOGW2SGrJvtqNKPKm65DNl043iip1uRuSDxEdR/OEsTzaLLCQV1V2DkStkYj36
TCpeyrASO5CKasaa19TMgBxv1Nc8nUSty1sU1eONjrtmT97eGd8PDUw2UalDUOBi
P86Qi6SR+iuPKHDeUqrhz7bs34kTWvILm8pkQ/1aElf9jLaTmhYjmychxL5WjBWj
Gq03UsGnZ5fpYUhEtu5x/Wh9xZL6VZgzKgxeLJ0qlXbh/my7dnFIRx0LKLjcWvnQ
FxJIwqX1DIcTgMYqymadq0q4r+Jpi0g0EL8hTBROJKd/nUYf9pz9EEA7/wIDAQAB
o4ICgTCCAn0wHQYDVR0OBBYEFBe3so4A/aVFFB1iLX25vRJRe0yLMB8GA1UdIwQY
MBaAFPO5B4Hbvr247EK69mSIBZ6lhmqsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvODdrSGdkdS12YmpzUXJyMlpJZ0ZucVdHYXF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi84YzU4MDgtMzE2NS00MWRjLTkwYTAt
M2VmNWViN2M4NTk4LzEvRjdleWpnRDlwVVVVSFdJdGZibTlFbEY3VElzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi84YzU4MDgtMzE2NS00MWRjLTkwYTAtM2VmNWViN2M4NTk4
LzEvODdrSGdkdS12YmpzUXJyMlpJZ0ZucVdHYXF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzAMBAIAATAGAwQCuQr0
MHMEAgACMG0DBQAqA2lAMBADBgAqA2lHAwMGASoDaUcEMBADBgAqA2lHCQMGACoD
aUcKAwYAKgNpRwwDBgAqA2lHDzAQAwYAKgNpRxEDBgIqA2lHEAMGACoDaUcXAwYA
KgNpRxkDBgAqA2lHGwMGACoDaUcdMA0GCSqGSIb3DQEBCwUAA4IBAQBaqd3GQLvV
ZZzMts6UCwxQdYfYYvjfkzNMEjHg96s5kpejASyTaOlWkKywoXphm9xD4uUp2SA+
mVEWgp7I17uUSGBez5nKGrIoLPax9vzfNO8PAEc4Og+BQbdH/Z3vNX37UNTIsY/w
YrKqhFwAEnVFXYd1EVrwYeq1PYEVZ47UHOXTgL9pGJ2zId72szZbOHoKS1jYZ46p
98X6QygaUQpL5hekdfvAdReNldkrLTIrw9L6oZRo4IqaW4VvU59lyIPGV0XNItKl
XSvlWAkeT5NNzWs7/aSLS+81m3oIFgyBrduUdu1Bd3MbLJpdxKcaq8RDdR8a/6Zb
QwTVKl9NTMTH
-----END CERTIFICATE-----
Generated at Sat Jun 1 11:41:33 2024 by rpki-client on console-fra.rpki-client.org