Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/oo5ltmmV0uIm2wKAh-MFKzDWTu4.roa
File: oo5ltmmV0uIm2wKAh-MFKzDWTu4.roa (raw, json)
Hash identifier: tGCrhFAx/wL1WaSFFfjkD5ckM1COwn4coGsbqac1n9o=
Subject key identifier: A2:8E:65:B6:69:95:D2:E2:26:DB:02:80:87:E3:05:2B:30:D6:4E:EE
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 018E9E7534A63A73F5F0818CA744ED242D29
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/oo5ltmmV0uIm2wKAh-MFKzDWTu4.roa
Signing time: Tue 02 Apr 2024 10:57:45 +0000
ROA not before: Tue 02 Apr 2024 10:57:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211908
IP address blocks: 93.180.222.0/24 maxlen: 24
185.254.15.0/24 maxlen: 24
199.74.188.0/24 maxlen: 24
199.74.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:75:34:a6:3a:73:f5:f0:81:8c:a7:44:ed:24:2d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: Apr 2 10:57:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a28e65b66995d2e226db028087e3052b30d64eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:30:e8:9f:ec:cf:31:b9:0c:68:17:7a:db:dd:
51:0e:c1:0e:8c:33:5f:f0:53:04:4b:49:e2:f3:85:
13:fc:c7:db:b5:b2:ca:00:69:c7:eb:50:80:69:da:
44:8f:b6:7b:be:51:70:8d:6e:3b:f0:34:f7:1a:81:
f1:d4:b9:24:f8:84:b2:75:da:4a:91:06:9c:a2:45:
cd:1c:84:0a:6f:0b:28:01:67:17:77:1d:bb:e8:61:
ac:01:89:0a:8d:1b:52:fc:23:8d:03:88:8b:87:c3:
71:5e:63:13:34:06:9f:e2:75:4c:06:7d:45:90:e3:
e3:9e:42:1d:29:35:78:e4:3e:f6:08:b1:b9:46:7f:
e1:98:17:42:d2:0a:fe:c8:e4:4d:50:de:56:4c:98:
e7:fa:88:63:0d:af:c4:6d:e4:74:3b:b4:f7:d2:b7:
8e:15:e5:29:2f:e4:91:71:a5:d3:41:a6:7f:ca:b9:
a6:2a:85:00:24:78:28:e2:7d:73:4b:7d:f3:94:dd:
97:ad:c7:bf:cf:e5:58:9a:37:77:05:66:72:c0:6d:
b3:cf:7f:0d:09:99:90:16:76:21:4f:dc:dd:82:f1:
b6:b9:90:02:45:0a:37:88:ea:61:58:0d:53:ed:b3:
76:11:de:87:f1:d3:fb:8a:86:b4:58:2c:a9:14:40:
57:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:8E:65:B6:69:95:D2:E2:26:DB:02:80:87:E3:05:2B:30:D6:4E:EE
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/oo5ltmmV0uIm2wKAh-MFKzDWTu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.222.0/24
185.254.15.0/24
199.74.188.0/24
199.74.190.0/24
Signature Algorithm: sha256WithRSAEncryption
13:05:4d:08:ba:b6:0d:3c:7e:95:ea:81:75:52:16:2a:51:c3:
ec:e8:03:59:36:b0:04:77:41:bf:40:62:d9:f6:75:8e:93:d3:
6f:0b:64:cb:7f:8c:41:0d:c1:cf:70:ad:f0:f3:ff:58:84:c1:
f9:7a:e5:ee:cd:65:6d:59:2c:5b:d9:c6:3d:28:72:1a:06:cd:
28:56:4a:48:f6:18:e4:c2:30:ad:1f:a8:40:78:60:30:e3:4d:
c0:fc:c3:5b:73:a6:a3:6f:7f:1e:d9:ad:fe:ca:89:b1:16:88:
cf:ef:d0:30:00:d1:9d:ae:5c:97:8c:79:3d:b4:69:c9:0a:41:
42:ca:9d:75:c5:c7:c9:65:c0:2c:a4:d6:b0:c9:bb:4d:e9:41:
4f:5e:d0:b5:6e:12:b1:bc:69:0d:72:ad:97:ea:56:44:af:ee:
54:11:33:6e:76:74:b2:19:73:5f:16:5f:34:c9:94:d1:4e:74:
39:c8:63:4d:65:54:17:f0:39:d3:c6:1b:0c:e3:61:11:02:5e:
62:4e:7e:e1:0e:5a:ec:3c:84:9c:d2:8f:0e:93:15:48:2a:08:
20:70:aa:a5:63:d4:bb:03:25:d0:cf:19:48:9f:60:67:b0:9a:
7a:46:f1:93:88:5b:67:de:53:ff:41:8b:12:f5:5c:f9:b1:55:
83:03:f6:9e
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAY6edTSmOnP18IGMp0TtJC0pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNTRkOWU0MWVhNWUyZDE2MWI3YzRjZGIyZTQ3MDJjNGYy
NDhlMTQwHhcNMjQwNDAyMTA1NzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjhlNjViNjY5OTVkMmUyMjZkYjAyODA4N2UzMDUyYjMwZDY0ZWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgzDon+zPMbkMaBd6291RDsEOjDNf
8FMES0ni84UT/MfbtbLKAGnH61CAadpEj7Z7vlFwjW478DT3GoHx1Lkk+ISyddpK
kQacokXNHIQKbwsoAWcXdx276GGsAYkKjRtS/CONA4iLh8NxXmMTNAaf4nVMBn1F
kOPjnkIdKTV45D72CLG5Rn/hmBdC0gr+yORNUN5WTJjn+ohjDa/EbeR0O7T30reO
FeUpL+SRcaXTQaZ/yrmmKoUAJHgo4n1zS33zlN2Xrce/z+VYmjd3BWZywG2zz38N
CZmQFnYhT9zdgvG2uZACRQo3iOphWA1T7bN2Ed6H8dP7ioa0WCypFEBXeQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFKKOZbZpldLiJtsCgIfjBSsw1k7uMB8GA1UdIwQY
MBaAFO9U2eQepeLRYbfEzbLkcCxPJI4UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzFUWjVCNmw0dEZodDhUTnN1UndMRThramhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9lYzAwZTItY2JkYS00YjMyLThjMzIt
ZmJjNmZjYjVlN2E2LzEvb281bHRtbVYwdUltMndLQWgtTUZLekRXVHU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9lYzAwZTItY2JkYS00YjMyLThjMzItZmJjNmZjYjVlN2E2
LzEvNzFUWjVCNmw0dEZodDhUTnN1UndMRThramhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAXbTeAwQA
uf4PAwQAx0q8AwQAx0q+MA0GCSqGSIb3DQEBCwUAA4IBAQATBU0IurYNPH6V6oF1
UhYqUcPs6ANZNrAEd0G/QGLZ9nWOk9NvC2TLf4xBDcHPcK3w8/9YhMH5euXuzWVt
WSxb2cY9KHIaBs0oVkpI9hjkwjCtH6hAeGAw403A/MNbc6ajb38e2a3+yomxFojP
79AwANGdrlyXjHk9tGnJCkFCyp11xcfJZcAspNawybtN6UFPXtC1bhKxvGkNcq2X
6lZEr+5UETNudnSyGXNfFl80yZTRTnQ5yGNNZVQX8DnTxhsM42ERAl5iTn7hDlrs
PISc0o8OkxVIKgggcKqlY9S7AyXQzxlIn2BnsJp6RvGTiFtn3lP/QYsS9Vz5sVWD
A/ae
-----END CERTIFICATE-----
Generated at Fri May 17 20:08:18 2024 by rpki-client on console-ams.rpki-client.org