Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/4Er2ViRtSvzuFK02_8vx6xVSJVA.roa
File: 4Er2ViRtSvzuFK02_8vx6xVSJVA.roa (raw, json)
Hash identifier: 0nsaic/SkK9RivTChd3eqEOrPdXrdCEkHZBctTlXuCU=
Subject key identifier: E0:4A:F6:56:24:6D:4A:FC:EE:14:AD:36:FF:CB:F1:EB:15:52:25:50
Certificate issuer: /CN=2979cc43c2469ffa5cf8b7ac639b01f3a768ac55
Certificate serial: 018CC42536E7FC6C7376792CAC1867B96D99
Authority key identifier: 29:79:CC:43:C2:46:9F:FA:5C:F8:B7:AC:63:9B:01:F3:A7:68:AC:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXnMQ8JGn_pc-LesY5sB86dorFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/4Er2ViRtSvzuFK02_8vx6xVSJVA.roa
Signing time: Mon 01 Jan 2024 08:30:22 +0000
ROA not before: Mon 01 Jan 2024 08:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12859
IP address blocks: 185.188.141.0/24 maxlen: 24
185.188.142.0/24 maxlen: 24
185.121.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/KXnMQ8JGn_pc-LesY5sB86dorFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/KXnMQ8JGn_pc-LesY5sB86dorFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXnMQ8JGn_pc-LesY5sB86dorFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:36:e7:fc:6c:73:76:79:2c:ac:18:67:b9:6d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2979cc43c2469ffa5cf8b7ac639b01f3a768ac55
Validity
Not Before: Jan 1 08:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e04af656246d4afcee14ad36ffcbf1eb15522550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:29:d1:cd:6f:4c:3f:4f:04:33:09:06:4a:0b:
05:9d:6a:96:6c:06:b1:e7:8e:49:3d:ab:1d:cf:43:
e2:1a:11:e9:bc:b3:a3:8f:ea:3a:f7:56:37:e1:f5:
e9:5b:aa:b2:4a:72:5a:aa:27:5b:5d:ba:52:75:f8:
a1:08:ea:a1:34:af:4a:01:5c:1f:f5:d3:fb:7e:0e:
df:6b:84:71:c6:ad:ac:c1:1e:62:c3:39:2f:23:d1:
d8:0a:aa:bf:e9:d8:96:8d:cb:d6:c3:f8:86:a4:36:
f4:8d:5a:a1:80:41:40:32:20:eb:26:bd:21:82:df:
83:88:ca:d9:f1:63:3e:06:0e:68:29:c1:60:34:60:
8b:2d:ad:b5:f2:5a:db:a3:a6:ed:ec:fa:8e:08:ea:
db:53:71:cf:35:1c:91:f8:c4:b8:f5:76:9d:42:8c:
4c:1d:61:0e:de:2c:d7:e1:1e:02:ad:8e:85:37:40:
2b:f2:bd:75:49:7e:77:52:e2:fc:bc:c6:65:31:c0:
04:f0:cc:9b:2c:c7:48:cf:3d:c2:63:57:5e:be:d2:
b7:f8:f3:95:e5:83:9f:d9:90:7d:a1:2e:ea:1c:59:
b1:24:95:97:b6:8a:96:ad:be:c5:65:c1:65:8b:a6:
c7:99:b0:36:3f:be:bd:e3:9a:be:d8:76:c6:cf:17:
ba:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4A:F6:56:24:6D:4A:FC:EE:14:AD:36:FF:CB:F1:EB:15:52:25:50
X509v3 Authority Key Identifier:
keyid:29:79:CC:43:C2:46:9F:FA:5C:F8:B7:AC:63:9B:01:F3:A7:68:AC:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXnMQ8JGn_pc-LesY5sB86dorFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/4Er2ViRtSvzuFK02_8vx6xVSJVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/KXnMQ8JGn_pc-LesY5sB86dorFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.224.0/24
185.188.141.0-185.188.142.255
Signature Algorithm: sha256WithRSAEncryption
02:c1:fd:9c:65:ba:ea:82:23:a3:ce:1c:86:05:a0:7a:50:1d:
6f:bf:f9:d1:8e:84:a8:67:be:a0:e8:9e:48:33:3c:ff:9a:54:
53:32:ac:c8:92:31:0c:a3:d0:1d:37:4d:1f:e1:02:86:28:e9:
b1:01:0c:07:b1:86:ac:cd:30:7d:9c:5f:d6:e4:56:60:8d:70:
06:ee:05:b6:b6:b5:0e:1a:f0:e9:fb:fb:87:72:91:ae:ad:e3:
1d:60:e4:e2:ac:6b:e8:0c:a5:83:7e:f4:7d:a8:80:ac:43:6c:
99:16:a5:b8:73:91:9d:9c:f1:fe:6f:95:c2:39:7b:34:0c:a1:
e9:ed:f9:aa:ac:d6:02:3f:6f:f9:3d:bb:56:6f:59:91:2d:9f:
a6:6a:11:26:41:07:34:a7:fe:9e:ef:59:e5:83:d8:c7:99:1b:
38:1e:a9:e0:2c:44:28:10:a3:d4:32:97:af:06:76:97:a7:57:
aa:51:85:c7:c3:83:c6:77:7a:a5:f6:22:29:f0:b4:aa:a4:9a:
b0:94:a5:d4:c2:23:69:ef:89:33:6c:a1:0e:af:86:d1:ce:95:
da:08:d8:af:6a:64:53:da:1d:2e:35:a7:ac:41:98:13:9e:f6:
66:41:1b:6b:53:2f:32:e3:ea:79:93:b0:4e:28:96:b7:22:32:
10:78:8b:01
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYzEJTbn/GxzdnksrBhnuW2ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NzljYzQzYzI0NjlmZmE1Y2Y4YjdhYzYzOWIwMWYzYTc2
OGFjNTUwHhcNMjQwMTAxMDgzMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDRhZjY1NjI0NmQ0YWZjZWUxNGFkMzZmZmNiZjFlYjE1NTIyNTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCnRzW9MP08EMwkGSgsFnWqWbAax
545JPasdz0PiGhHpvLOjj+o691Y34fXpW6qySnJaqidbXbpSdfihCOqhNK9KAVwf
9dP7fg7fa4Rxxq2swR5iwzkvI9HYCqq/6diWjcvWw/iGpDb0jVqhgEFAMiDrJr0h
gt+DiMrZ8WM+Bg5oKcFgNGCLLa218lrbo6bt7PqOCOrbU3HPNRyR+MS49XadQoxM
HWEO3izX4R4CrY6FN0Ar8r11SX53UuL8vMZlMcAE8MybLMdIzz3CY1devtK3+POV
5YOf2ZB9oS7qHFmxJJWXtoqWrb7FZcFli6bHmbA2P76945q+2HbGzxe6FwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFOBK9lYkbUr87hStNv/L8esVUiVQMB8GA1UdIwQY
MBaAFCl5zEPCRp/6XPi3rGObAfOnaKxVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1huTVE4SkduX3BjLUxlc1k1c0I4NmRvckZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9lNDBmOWQtMDBmNC00MGQ5LThiOGQt
NDBlYWViYzFjNDdlLzEvNEVyMlZpUnRTdnp1RkswMl84dng2eFZTSlZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9lNDBmOWQtMDBmNC00MGQ5LThiOGQtNDBlYWViYzFjNDdl
LzEvS1huTVE4SkduX3BjLUxlc1k1c0I4NmRvckZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAuXngMAwD
BAC5vI0DBAC5vI4wDQYJKoZIhvcNAQELBQADggEBAALB/ZxluuqCI6POHIYFoHpQ
HW+/+dGOhKhnvqDonkgzPP+aVFMyrMiSMQyj0B03TR/hAoYo6bEBDAexhqzNMH2c
X9bkVmCNcAbuBba2tQ4a8On7+4dyka6t4x1g5OKsa+gMpYN+9H2ogKxDbJkWpbhz
kZ2c8f5vlcI5ezQMoent+aqs1gI/b/k9u1ZvWZEtn6ZqESZBBzSn/p7vWeWD2MeZ
GzgeqeAsRCgQo9Qyl68GdpenV6pRhcfDg8Z3eqX2IinwtKqkmrCUpdTCI2nviTNs
oQ6vhtHOldoI2K9qZFPaHS41p6xBmBOe9mZBG2tTLzLj6nmTsE4olrciMhB4iwE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:33:28 2024 by rpki-client on console-fra.rpki-client.org