Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/rhGBk7gT-sNA1-bW_M7voDH-8oQ.roa
File: rhGBk7gT-sNA1-bW_M7voDH-8oQ.roa (raw, json)
Hash identifier: 1xksr27795p492d5x8AOs5OkQfMHxVWE8ByH1ziDkfY=
Subject key identifier: AE:11:81:93:B8:13:FA:C3:40:D7:E6:D6:FC:CE:EF:A0:31:FE:F2:84
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 018CC8016AD9D6E7E921CBDA844851357815
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/rhGBk7gT-sNA1-bW_M7voDH-8oQ.roa
Signing time: Tue 02 Jan 2024 02:29:45 +0000
ROA not before: Tue 02 Jan 2024 02:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198621
IP address blocks: 77.234.47.0/24 maxlen: 24
185.51.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 22:03:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:6a:d9:d6:e7:e9:21:cb:da:84:48:51:35:78:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 2 02:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae118193b813fac340d7e6d6fcceefa031fef284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3d:8d:3e:ee:ea:78:7f:c1:b5:e7:28:22:6c:
bc:03:79:8d:19:5a:62:85:5b:70:53:04:6b:3e:ff:
90:37:22:97:6f:3c:84:86:b4:20:b7:04:8e:54:fb:
a3:ee:91:b2:9f:80:77:6a:e4:d3:05:93:59:d3:4e:
fd:be:55:a0:2d:0b:17:c1:28:51:05:0e:53:e6:03:
bd:08:fa:e4:5e:02:36:b8:1a:30:d5:9e:e8:af:de:
64:6b:ec:5d:53:5b:4a:6d:fc:8c:30:13:50:44:ab:
19:d5:ae:1c:ef:81:ad:bf:be:b9:b1:06:dd:de:0c:
fb:59:58:7e:01:e8:90:89:af:00:64:c1:bc:25:7b:
e4:5f:59:11:1b:be:53:8d:93:15:20:29:40:99:d6:
f3:fc:c4:8b:54:a8:1b:87:3d:1c:e8:a6:36:6f:cc:
8b:88:39:61:c8:29:d5:95:f0:7f:5b:98:d2:fe:fc:
01:c4:0f:f7:39:d1:ff:64:b4:ff:b3:91:15:1f:e0:
be:e9:81:03:11:78:90:dc:be:d7:fd:b5:05:c9:96:
1d:02:ce:93:dd:df:78:2b:7a:9f:f0:50:35:16:81:
21:c4:5c:ad:b1:74:46:dd:08:1c:52:e3:1b:e1:27:
54:8c:36:ad:6d:23:3f:ba:36:5d:39:a7:6b:bb:80:
d4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:11:81:93:B8:13:FA:C3:40:D7:E6:D6:FC:CE:EF:A0:31:FE:F2:84
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/rhGBk7gT-sNA1-bW_M7voDH-8oQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.234.47.0/24
185.51.231.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:5a:8d:a7:d8:2b:80:aa:9c:d0:de:01:07:3b:41:45:65:e6:
6d:95:58:b5:c1:10:8a:30:3f:15:61:d6:5c:bb:cd:00:65:a3:
56:99:02:66:60:86:ac:82:9b:8d:f0:af:2b:6c:6c:5e:54:a5:
00:1e:fd:db:d0:e3:9f:1b:6a:e0:51:a3:15:31:3f:4a:47:14:
f6:79:32:67:d3:cd:94:ea:69:22:0b:ef:34:df:7e:20:30:d8:
53:5d:14:b5:ab:55:55:05:4a:ea:57:4e:ac:ce:e3:7c:ae:61:
9c:3b:9d:90:1e:fe:49:6f:c2:8b:3d:42:70:07:b0:79:4c:30:
09:46:20:f1:f4:c2:43:1c:c2:4b:2a:33:b5:a7:16:8e:78:85:
27:b1:0d:ab:09:b5:1d:f8:5b:a0:0b:4e:93:13:be:6b:e7:6b:
7c:48:31:94:f8:7b:74:ad:80:fe:6f:8e:c5:ea:25:1a:be:30:
19:38:6f:74:e9:55:e4:45:3e:13:cc:6c:14:84:44:90:ec:8f:
e7:42:d2:52:67:a4:3c:0e:08:c9:f4:de:6a:58:e0:95:0e:13:
f1:c7:06:7f:3d:0b:58:fb:fa:51:71:60:a1:70:f2:8a:13:ef:
27:ca:b8:d1:c1:73:8e:f2:1e:36:83:ed:01:b7:eb:ba:4a:22:
8f:09:a8:f9
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYzIAWrZ1ufpIcvahEhRNXgVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZjczYzVjMGYzYTEwNmE4YmE3ZGZmM2UzNWM4MTZkMTA3
OGRjNzEwHhcNMjQwMTAyMDIyOTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTExODE5M2I4MTNmYWMzNDBkN2U2ZDZmY2NlZWZhMDMxZmVmMjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAij2NPu7qeH/BtecoImy8A3mNGVpi
hVtwUwRrPv+QNyKXbzyEhrQgtwSOVPuj7pGyn4B3auTTBZNZ0079vlWgLQsXwShR
BQ5T5gO9CPrkXgI2uBow1Z7or95ka+xdU1tKbfyMMBNQRKsZ1a4c74Gtv765sQbd
3gz7WVh+AeiQia8AZMG8JXvkX1kRG75TjZMVIClAmdbz/MSLVKgbhz0c6KY2b8yL
iDlhyCnVlfB/W5jS/vwBxA/3OdH/ZLT/s5EVH+C+6YEDEXiQ3L7X/bUFyZYdAs6T
3d94K3qf8FA1FoEhxFytsXRG3QgcUuMb4SdUjDatbSM/ujZdOadru4DUzwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFK4RgZO4E/rDQNfm1vzO76Ax/vKEMB8GA1UdIwQY
MBaAFPj3PFwPOhBqi6ff8+NcgW0QeNxxMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1QYzhYQTg2RUdxTHA5X3o0MXlCYlJCNDNIRS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYvMDNjY2UzLWU2MjAtNDQ4My1iMDhi
LTZkOGZkMzMwZTlhYS8xL3JoR0JrN2dULXNOQTEtYldfTTd2b0RILThvUS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMjYvMDNjY2UzLWU2MjAtNDQ4My1iMDhiLTZkOGZkMzMwZTlh
YS8xLzEtUGM4WEE4NkVHcUxwOV96NDF5QmJSQjQzSEUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBABN6i8D
BAC5M+cwDQYJKoZIhvcNAQELBQADggEBAF1ajafYK4CqnNDeAQc7QUVl5m2VWLXB
EIowPxVh1ly7zQBlo1aZAmZghqyCm43wrytsbF5UpQAe/dvQ458bauBRoxUxP0pH
FPZ5MmfTzZTqaSIL7zTffiAw2FNdFLWrVVUFSupXTqzO43yuYZw7nZAe/klvwos9
QnAHsHlMMAlGIPH0wkMcwksqM7WnFo54hSexDasJtR34W6ALTpMTvmvna3xIMZT4
e3StgP5vjsXqJRq+MBk4b3TpVeRFPhPMbBSERJDsj+dC0lJnpDwOCMn03mpY4JUO
E/HHBn89C1j7+lFxYKFw8ooT7yfKuNHBc47yHjaD7QG367pKIo8JqPk=
-----END CERTIFICATE-----
Generated at Fri May 17 04:34:40 2024 by rpki-client on console-fra.rpki-client.org