Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/UUfKJFJCiU-AXyh9ePuYXye6a4U.roa
File: UUfKJFJCiU-AXyh9ePuYXye6a4U.roa (raw, json)
Hash identifier: M5udqKrE7oxMMpLKwfi8oAmb4LuLMhu5BIUJo6YiMW0=
Subject key identifier: 51:47:CA:24:52:42:89:4F:80:5F:28:7D:78:FB:98:5F:27:BA:6B:85
Certificate issuer: /CN=1ecb9bd5ed96e69dda8fc2a1fe02147adae8f713
Certificate serial: 018FA6DEAFE1B3B455160198CEC8F091CCEB
Authority key identifier: 1E:CB:9B:D5:ED:96:E6:9D:DA:8F:C2:A1:FE:02:14:7A:DA:E8:F7:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hsub1e2W5p3aj8Kh_gIUetro9xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/UUfKJFJCiU-AXyh9ePuYXye6a4U.roa
Signing time: Thu 23 May 2024 19:12:42 +0000
ROA not before: Thu 23 May 2024 19:12:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 77.95.81.0/24 maxlen: 24
217.64.228.0/24 maxlen: 24
217.64.239.0/24 maxlen: 24
217.147.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/Hsub1e2W5p3aj8Kh_gIUetro9xM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/Hsub1e2W5p3aj8Kh_gIUetro9xM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hsub1e2W5p3aj8Kh_gIUetro9xM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 14:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:de:af:e1:b3:b4:55:16:01:98:ce:c8:f0:91:cc:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ecb9bd5ed96e69dda8fc2a1fe02147adae8f713
Validity
Not Before: May 23 19:12:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5147ca245242894f805f287d78fb985f27ba6b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:01:af:1f:4d:71:f1:6f:34:9f:6a:13:fa:81:
0b:4b:a1:47:18:36:50:a2:43:a0:87:0e:af:93:4c:
0e:d7:79:18:02:3d:8a:cc:45:5c:6e:48:87:ee:30:
15:82:08:08:02:dd:b3:0a:02:99:d3:40:d5:56:76:
59:a1:ab:84:00:75:44:b8:43:ca:fd:4c:a8:ec:68:
38:44:d5:17:89:f9:22:5f:d3:83:fa:e8:f8:49:c5:
44:3e:06:7c:47:87:34:fe:88:ec:73:d2:4c:5c:f6:
fd:bd:73:a6:4c:32:5e:09:e1:67:63:e9:24:d5:e5:
5c:c2:c1:03:aa:7c:b6:61:80:51:bf:c5:d9:da:e7:
fa:e9:8c:f8:dd:1b:bd:9e:28:3a:c7:6c:39:d7:af:
dd:f6:7b:af:d2:90:4a:95:d8:91:80:ec:59:d8:2b:
e8:0c:60:ea:50:bc:47:e0:10:9d:8a:fe:54:4a:49:
f3:c7:8f:c3:82:8b:9c:f2:76:ec:7a:ef:50:bc:d0:
5a:13:e6:0c:d0:5c:ed:94:91:97:36:a7:ba:a8:b7:
d3:65:82:65:eb:70:51:00:1c:eb:3c:9b:9e:21:c2:
2d:d6:87:d7:72:3a:4d:d9:98:e2:f3:3a:b7:90:ee:
1a:5b:1d:66:93:80:07:a9:62:94:b4:f7:f0:28:34:
b1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:47:CA:24:52:42:89:4F:80:5F:28:7D:78:FB:98:5F:27:BA:6B:85
X509v3 Authority Key Identifier:
keyid:1E:CB:9B:D5:ED:96:E6:9D:DA:8F:C2:A1:FE:02:14:7A:DA:E8:F7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hsub1e2W5p3aj8Kh_gIUetro9xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/UUfKJFJCiU-AXyh9ePuYXye6a4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/Hsub1e2W5p3aj8Kh_gIUetro9xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.81.0/24
217.64.228.0/24
217.64.239.0/24
217.147.71.0/24
Signature Algorithm: sha256WithRSAEncryption
44:35:79:a1:33:3d:f5:a4:4b:4e:61:f8:b9:4b:62:bc:cc:43:
a8:3b:90:0f:5b:f4:4e:56:a9:10:11:a0:d0:02:8e:b7:d0:2c:
0b:76:61:f5:54:8c:84:54:b7:79:13:de:01:1b:15:b7:7f:05:
4e:20:8d:fa:19:41:cd:22:af:7b:22:db:da:b8:bb:f9:4c:5a:
a0:9e:4f:52:1c:df:ae:ad:72:3f:94:5f:8e:86:02:89:0a:60:
54:6d:45:29:4e:33:44:44:ca:96:f5:67:5b:24:ca:af:c8:c7:
07:5d:31:30:b6:b0:bb:0c:48:7e:25:b7:3f:ee:82:6b:22:ba:
3b:eb:cf:82:d2:8d:bf:ec:a2:83:ec:8e:95:5f:d7:20:6d:0b:
d5:f0:a3:55:7a:92:98:52:77:25:71:fa:f1:a1:47:8e:0b:9c:
79:62:bf:ac:de:36:dd:77:b6:bb:39:6e:e1:04:e0:33:dc:4e:
fc:a5:0f:31:7d:c1:ed:29:90:3c:0b:38:68:12:14:e6:9a:14:
12:d6:df:be:6e:4d:83:58:4f:17:16:e4:28:df:95:16:df:77:
8b:96:e2:23:e4:03:5b:c9:0f:d2:a5:3c:dc:63:e1:df:a1:1c:
21:1d:ac:c6:1a:e0:1a:da:6e:ba:2a:7f:98:19:b3:cf:72:fe:
a7:1c:49:7f
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAY+m3q/hs7RVFgGYzsjwkczrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlY2I5YmQ1ZWQ5NmU2OWRkYThmYzJhMWZlMDIxNDdhZGFl
OGY3MTMwHhcNMjQwNTIzMTkxMjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTQ3Y2EyNDUyNDI4OTRmODA1ZjI4N2Q3OGZiOTg1ZjI3YmE2Yjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wGvH01x8W80n2oT+oELS6FHGDZQ
okOghw6vk0wO13kYAj2KzEVcbkiH7jAVgggIAt2zCgKZ00DVVnZZoauEAHVEuEPK
/Uyo7Gg4RNUXifkiX9OD+uj4ScVEPgZ8R4c0/ojsc9JMXPb9vXOmTDJeCeFnY+kk
1eVcwsEDqny2YYBRv8XZ2uf66Yz43Ru9nig6x2w516/d9nuv0pBKldiRgOxZ2Cvo
DGDqULxH4BCdiv5USknzx4/Dgouc8nbseu9QvNBaE+YM0FztlJGXNqe6qLfTZYJl
63BRABzrPJueIcIt1ofXcjpN2Zji8zq3kO4aWx1mk4AHqWKUtPfwKDSxSQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFFFHyiRSQolPgF8ofXj7mF8numuFMB8GA1UdIwQY
MBaAFB7Lm9Xtluad2o/Cof4CFHra6PcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHN1YjFlMlc1cDNhajhLaF9nSVVldHJvOXhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9jMzQxNTAtNTkxMi00OTBjLWIzNWIt
ZjU0ZmJmNjkxN2JjLzEvVVVmS0pGSkNpVS1BWHloOWVQdVlYeWU2YTRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9jMzQxNTAtNTkxMi00OTBjLWIzNWItZjU0ZmJmNjkxN2Jj
LzEvSHN1YjFlMlc1cDNhajhLaF9nSVVldHJvOXhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQATV9RAwQA
2UDkAwQA2UDvAwQA2ZNHMA0GCSqGSIb3DQEBCwUAA4IBAQBENXmhMz31pEtOYfi5
S2K8zEOoO5APW/ROVqkQEaDQAo630CwLdmH1VIyEVLd5E94BGxW3fwVOII36GUHN
Iq97ItvauLv5TFqgnk9SHN+urXI/lF+OhgKJCmBUbUUpTjNERMqW9WdbJMqvyMcH
XTEwtrC7DEh+Jbc/7oJrIro768+C0o2/7KKD7I6VX9cgbQvV8KNVepKYUnclcfrx
oUeOC5x5Yr+s3jbdd7a7OW7hBOAz3E78pQ8xfcHtKZA8CzhoEhTmmhQS1t++bk2D
WE8XFuQo35UW33eLluIj5ANbyQ/SpTzcY+HfoRwhHazGGuAa2m66Kn+YGbPPcv6n
HEl/
-----END CERTIFICATE-----
Generated at Wed Sep 18 23:37:54 2024 by rpki-client on console-fra.rpki-client.org