Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/_EWh3tUSZckTqunKwwKW1IFGgQ4.roa
File: _EWh3tUSZckTqunKwwKW1IFGgQ4.roa (raw, json)
Hash identifier: bSjXAzeEl5gia5KUaWKwHaCrrdRfDjCt/4MYXFigzqo=
Subject key identifier: FC:45:A1:DE:D5:12:65:C9:13:AA:E9:CA:C3:02:96:D4:81:46:81:0E
Certificate issuer: /CN=7affbbb1e445dc2b8f11421420eb3c16f564ee61
Certificate serial: 019349C33438686EB766BD0F9E9E5F01DAE0
Authority key identifier: 7A:FF:BB:B1:E4:45:DC:2B:8F:11:42:14:20:EB:3C:16:F5:64:EE:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ev-7seRF3CuPEUIUIOs8FvVk7mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/_EWh3tUSZckTqunKwwKW1IFGgQ4.roa
Signing time: Wed 20 Nov 2024 13:29:09 +0000
ROA not before: Wed 20 Nov 2024 13:29:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 185.1.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/ev-7seRF3CuPEUIUIOs8FvVk7mE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/ev-7seRF3CuPEUIUIOs8FvVk7mE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ev-7seRF3CuPEUIUIOs8FvVk7mE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 16:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:49:c3:34:38:68:6e:b7:66:bd:0f:9e:9e:5f:01:da:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7affbbb1e445dc2b8f11421420eb3c16f564ee61
Validity
Not Before: Nov 20 13:29:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc45a1ded51265c913aae9cac30296d48146810e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:91:29:50:2f:ef:d8:61:3e:f1:0e:21:23:88:
99:6d:e3:9d:ed:6a:7c:39:66:65:96:19:e8:8d:2e:
59:b5:6a:62:dd:b4:3e:96:a6:ac:75:e6:9c:0b:b0:
a0:17:68:5a:42:47:33:2d:cc:38:9c:2c:80:c8:c2:
68:a0:7f:f6:a1:5f:8a:29:e7:29:0c:cd:0a:9d:fa:
e3:b8:59:83:65:da:75:8e:52:5d:87:1d:b2:9f:c0:
bb:cf:5e:3d:ad:13:a5:84:37:07:43:50:cc:d0:9e:
a1:8b:64:4a:d4:53:17:8e:e8:5e:dd:de:c2:4e:25:
70:fb:06:45:97:bc:89:66:89:ba:8c:6b:93:e9:cb:
8d:c9:26:7f:e1:8b:01:9b:64:82:4f:3a:91:c5:fb:
ea:ae:9e:70:f9:75:6e:55:62:85:bc:23:14:48:ea:
d8:ea:1b:3c:83:f1:23:ca:e7:65:a4:dc:3e:41:06:
f2:0b:fd:53:da:14:dd:e2:2a:48:99:97:c8:fc:54:
6d:66:44:19:1c:32:10:2b:95:47:7a:1b:82:d4:9e:
a2:88:9b:ac:26:ef:3c:84:07:aa:90:e3:7f:24:30:
ad:85:3e:88:2f:35:2d:cb:d8:84:03:4e:ab:26:6d:
c0:49:76:68:ad:29:1d:dd:d3:9a:cf:2f:ad:21:97:
8b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:45:A1:DE:D5:12:65:C9:13:AA:E9:CA:C3:02:96:D4:81:46:81:0E
X509v3 Authority Key Identifier:
keyid:7A:FF:BB:B1:E4:45:DC:2B:8F:11:42:14:20:EB:3C:16:F5:64:EE:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ev-7seRF3CuPEUIUIOs8FvVk7mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/_EWh3tUSZckTqunKwwKW1IFGgQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/ev-7seRF3CuPEUIUIOs8FvVk7mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.179.0/24
Signature Algorithm: sha256WithRSAEncryption
45:80:a6:c9:c3:b5:99:ad:71:1e:7b:76:0b:24:1b:35:de:41:
46:50:13:04:a4:92:fa:88:97:41:72:da:4d:a5:cd:72:f6:23:
f8:4d:57:ca:28:94:f2:15:09:d8:ac:bc:94:41:b7:ce:8f:f2:
57:57:5a:dd:c3:2a:7a:fa:d6:f2:75:a9:27:94:1c:00:15:af:
bc:ea:a0:d4:9d:3d:ba:97:3e:62:a0:6f:e3:18:b0:0a:45:8d:
c3:d3:4a:96:03:77:32:9c:5b:4a:37:15:87:2e:1e:22:48:6a:
1f:49:17:04:4e:e6:09:91:b2:c9:e8:1a:49:db:fd:53:5a:ea:
a6:47:6f:31:14:ca:b5:c0:74:d3:5d:3b:b5:8e:b5:b7:4d:fb:
14:20:63:14:e4:5e:70:d6:42:91:00:b7:d4:39:df:54:18:8c:
53:58:4c:e1:56:2e:a0:1a:b6:82:87:78:54:80:a6:8e:55:20:
5f:cd:96:4a:dd:69:ba:76:46:6a:ed:9c:41:14:e3:ed:2f:9d:
bb:69:16:c8:94:05:c3:04:18:88:28:b7:52:b7:b5:77:e4:97:
37:8c:55:98:aa:09:1e:8b:5f:4a:6b:8f:85:8e:b6:77:f1:9c:
2d:eb:8d:fe:d0:59:7d:6a:7e:c1:5a:c8:d1:1b:05:b5:18:7d:
34:a1:f1:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNJwzQ4aG63Zr0Pnp5fAdrgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhZmZiYmIxZTQ0NWRjMmI4ZjExNDIxNDIwZWIzYzE2ZjU2
NGVlNjEwHhcNMjQxMTIwMTMyOTA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzQ1YTFkZWQ1MTI2NWM5MTNhYWU5Y2FjMzAyOTZkNDgxNDY4MTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+JEpUC/v2GE+8Q4hI4iZbeOd7Wp8
OWZllhnojS5ZtWpi3bQ+lqasdeacC7CgF2haQkczLcw4nCyAyMJooH/2oV+KKecp
DM0KnfrjuFmDZdp1jlJdhx2yn8C7z149rROlhDcHQ1DM0J6hi2RK1FMXjuhe3d7C
TiVw+wZFl7yJZom6jGuT6cuNySZ/4YsBm2SCTzqRxfvqrp5w+XVuVWKFvCMUSOrY
6hs8g/EjyudlpNw+QQbyC/1T2hTd4ipImZfI/FRtZkQZHDIQK5VHehuC1J6iiJus
Ju88hAeqkON/JDCthT6ILzUty9iEA06rJm3ASXZorSkd3dOazy+tIZeLKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPxFod7VEmXJE6rpysMCltSBRoEOMB8GA1UdIwQY
MBaAFHr/u7HkRdwrjxFCFCDrPBb1ZO5hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXYtN3NlUkYzQ3VQRVVJVUlPczhGdlZrN21FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83NTg4YjYtYzQ3MC00MjhkLWIzOWUt
NjJmNGQyN2E5OWQxLzEvX0VXaDN0VVNaY2tUcXVuS3d3S1cxSUZHZ1E0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83NTg4YjYtYzQ3MC00MjhkLWIzOWUtNjJmNGQyN2E5OWQx
LzEvZXYtN3NlUkYzQ3VQRVVJVUlPczhGdlZrN21FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQGzMA0G
CSqGSIb3DQEBCwUAA4IBAQBFgKbJw7WZrXEee3YLJBs13kFGUBMEpJL6iJdBctpN
pc1y9iP4TVfKKJTyFQnYrLyUQbfOj/JXV1rdwyp6+tbydaknlBwAFa+86qDUnT26
lz5ioG/jGLAKRY3D00qWA3cynFtKNxWHLh4iSGofSRcETuYJkbLJ6BpJ2/1TWuqm
R28xFMq1wHTTXTu1jrW3TfsUIGMU5F5w1kKRALfUOd9UGIxTWEzhVi6gGraCh3hU
gKaOVSBfzZZK3Wm6dkZq7ZxBFOPtL527aRbIlAXDBBiIKLdSt7V35Jc3jFWYqgke
i19Ka4+FjrZ38Zwt643+0Fl9an7BWsjRGwW1GH00ofE3
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:29:46 2024 by rpki-client on console-fra.rpki-client.org