Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/JlIRNB83GazXS6JxkeLbEOwWnhI.roa
File: JlIRNB83GazXS6JxkeLbEOwWnhI.roa (raw, json)
Hash identifier: tWRfxWFZDX9H9BIznQYKYNyO4Z+fsKTH0Sqv0jhzSZI=
Subject key identifier: 26:52:11:34:1F:37:19:AC:D7:4B:A2:71:91:E2:DB:10:EC:16:9E:12
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 01929A8F2922CACD8CE12450B7C3235B8FE9
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/JlIRNB83GazXS6JxkeLbEOwWnhI.roa
Signing time: Thu 17 Oct 2024 12:58:46 +0000
ROA not before: Thu 17 Oct 2024 12:58:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48095
IP address blocks: 77.83.164.0/23 maxlen: 23
77.83.166.0/23 maxlen: 23
80.65.220.0/22 maxlen: 22
185.210.40.0/22 maxlen: 22
185.224.140.0/22 maxlen: 22
185.228.216.0/22 maxlen: 22
194.15.104.0/23 maxlen: 23
194.15.106.0/23 maxlen: 23
195.242.208.0/22 maxlen: 22
212.115.60.0/23 maxlen: 23
212.115.62.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9a:8f:29:22:ca:cd:8c:e1:24:50:b7:c3:23:5b:8f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Oct 17 12:58:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=265211341f3719acd74ba27191e2db10ec169e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e8:ea:53:94:fe:60:e2:3e:b4:bc:0f:1d:30:
76:84:eb:3a:a1:9c:a9:37:7c:98:5d:9b:ee:7b:e3:
e1:be:52:b4:6e:f4:30:7c:4d:b4:d4:e0:71:c5:8a:
e8:8a:4c:d6:61:f1:45:21:04:e3:d6:82:5f:e5:3b:
56:bb:58:51:04:ff:26:0d:c8:73:8a:54:ed:81:e4:
49:ed:53:e7:8e:fd:6e:0a:da:2d:7d:8a:50:95:26:
0c:d8:ca:77:c7:cc:55:53:58:12:75:10:a1:3b:01:
b8:f8:c0:91:06:82:fc:56:86:42:5e:82:6d:79:25:
02:3c:84:96:09:f8:82:86:f6:79:71:b2:2d:94:9d:
08:fc:03:65:62:1e:aa:33:8a:b0:e6:23:a4:32:d6:
e5:fa:47:93:82:7c:73:79:ab:76:f7:dd:45:8f:31:
50:37:a0:a3:e8:da:da:51:6e:af:af:3f:c1:ab:a9:
07:f6:30:bb:3e:ed:ed:bc:1c:ff:e8:6f:71:50:9c:
7e:97:6c:5e:aa:51:20:32:78:01:de:f7:50:af:16:
d9:06:6d:1e:48:00:9b:27:88:e4:83:f1:43:c8:bf:
f5:0f:93:64:0a:a0:f9:07:95:86:d3:f8:61:63:80:
5f:c4:c8:46:a9:94:c6:84:45:96:35:1c:53:43:37:
38:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:52:11:34:1F:37:19:AC:D7:4B:A2:71:91:E2:DB:10:EC:16:9E:12
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/JlIRNB83GazXS6JxkeLbEOwWnhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.164.0/22
80.65.220.0/22
185.210.40.0/22
185.224.140.0/22
185.228.216.0/22
194.15.104.0/22
195.242.208.0/22
212.115.60.0/22
Signature Algorithm: sha256WithRSAEncryption
79:73:5d:c4:75:45:1f:e5:67:5e:3e:44:3e:cf:d1:c3:ab:b7:
c0:b6:29:aa:71:3d:bf:c0:1d:02:6a:4d:17:84:7a:45:21:6b:
d5:78:55:84:f3:3f:62:a0:97:dc:61:b8:6b:3d:39:61:94:04:
18:c7:19:1d:06:82:cb:98:46:4a:d8:d6:64:c2:f9:f8:76:0e:
be:0b:e8:a9:76:19:1e:5a:2e:48:e2:8d:39:ef:3f:5b:74:74:
ff:7a:ab:9b:cd:e6:c2:df:a9:b1:34:1e:e7:eb:52:9a:7f:5e:
01:3b:91:ab:e5:26:db:e2:c2:d6:d9:f6:09:b6:03:1c:64:4b:
b9:38:8d:bc:3f:c9:d7:b4:28:95:58:8a:8f:86:95:03:4f:1e:
78:87:e7:5a:f3:0f:14:2c:f8:ec:07:a8:38:9f:f6:8b:56:b3:
49:d7:0b:4e:fa:55:3f:c8:90:5e:03:ff:3c:2c:b1:0d:15:01:
08:05:e1:f3:51:9f:b2:75:0a:b6:a9:25:c6:5b:55:47:29:b5:
60:e8:9a:49:6c:09:5d:4f:e7:bf:30:87:fa:96:9a:ed:99:d1:
90:57:38:82:85:56:6d:9a:f8:47:97:7c:d0:d6:9c:99:92:a9:
ff:c7:e0:13:f6:2f:ce:8e:e6:19:3e:8c:8b:79:b6:be:dd:ff:
e8:c0:b3:cf
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAZKajykiys2M4SRQt8MjW4/pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjY2JjNWUwNDVlYWE1Zjc2MmE5MTQ2MjQ0YzE5MjQ4YjYy
YmE5NzYwHhcNMjQxMDE3MTI1ODQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjUyMTEzNDFmMzcxOWFjZDc0YmEyNzE5MWUyZGIxMGVjMTY5ZTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+jqU5T+YOI+tLwPHTB2hOs6oZyp
N3yYXZvue+PhvlK0bvQwfE201OBxxYroikzWYfFFIQTj1oJf5TtWu1hRBP8mDchz
ilTtgeRJ7VPnjv1uCtotfYpQlSYM2Mp3x8xVU1gSdRChOwG4+MCRBoL8VoZCXoJt
eSUCPISWCfiChvZ5cbItlJ0I/ANlYh6qM4qw5iOkMtbl+keTgnxzeat2991FjzFQ
N6Cj6NraUW6vrz/Bq6kH9jC7Pu3tvBz/6G9xUJx+l2xeqlEgMngB3vdQrxbZBm0e
SACbJ4jkg/FDyL/1D5NkCqD5B5WG0/hhY4BfxMhGqZTGhEWWNRxTQzc4ewIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFCZSETQfNxms10uicZHi2xDsFp4SMB8GA1UdIwQY
MBaAFEzLxeBF6qX3YqkUYkTBkki2K6l2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVE12RjRFWHFwZmRpcVJSaVJNR1NTTFlycVhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9iZjY2ZGQtNjIzNy00OGRlLWFlZDct
YTdjNTlkZGNmNzZiLzEvSmxJUk5CODNHYXpYUzZKeGtlTGJFT3dXbmhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9iZjY2ZGQtNjIzNy00OGRlLWFlZDctYTdjNTlkZGNmNzZi
LzEvVE12RjRFWHFwZmRpcVJSaVJNR1NTTFlycVhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCTVOkAwQC
UEHcAwQCudIoAwQCueCMAwQCueTYAwQCwg9oAwQCw/LQAwQC1HM8MA0GCSqGSIb3
DQEBCwUAA4IBAQB5c13EdUUf5WdePkQ+z9HDq7fAtimqcT2/wB0Cak0XhHpFIWvV
eFWE8z9ioJfcYbhrPTlhlAQYxxkdBoLLmEZK2NZkwvn4dg6+C+ipdhkeWi5I4o05
7z9bdHT/equbzebC36mxNB7n61Kaf14BO5Gr5Sbb4sLW2fYJtgMcZEu5OI28P8nX
tCiVWIqPhpUDTx54h+da8w8ULPjsB6g4n/aLVrNJ1wtO+lU/yJBeA/88LLENFQEI
BeHzUZ+ydQq2qSXGW1VHKbVg6JpJbAldT+e/MIf6lprtmdGQVziChVZtmvhHl3zQ
1pyZkqn/x+AT9i/OjuYZPoyLeba+3f/owLPP
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:30:20 2024 by rpki-client on console-fra.rpki-client.org