Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/1DynPK55UzwBKfk4EVVA9Dom9MM.roa
File: 1DynPK55UzwBKfk4EVVA9Dom9MM.roa (raw, json)
Hash identifier: B0V4mSNRQIPKE5ddSaIyqTaTxRtw1ux759Xdl02tsHk=
Subject key identifier: D4:3C:A7:3C:AE:79:53:3C:01:29:F9:38:11:55:40:F4:3A:26:F4:C3
Certificate issuer: /CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Certificate serial: 018CC80161FCA82AAC4641D96D2CCBEEF62D
Authority key identifier: 79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/1DynPK55UzwBKfk4EVVA9Dom9MM.roa
Signing time: Tue 02 Jan 2024 02:29:42 +0000
ROA not before: Tue 02 Jan 2024 02:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202468
IP address blocks: 185.204.168.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:61:fc:a8:2a:ac:46:41:d9:6d:2c:cb:ee:f6:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5
Validity
Not Before: Jan 2 02:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d43ca73cae79533c0129f938115540f43a26f4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0a:be:dc:ac:e0:44:b2:ff:e3:50:68:20:fc:
ef:4b:f1:bd:f5:8c:0d:d7:49:af:8e:56:e8:81:5b:
03:da:53:0d:35:c2:14:4d:6e:bc:c6:62:b4:4e:29:
dd:75:a7:2e:4d:7d:a8:af:e2:b5:c2:04:98:20:ee:
fc:09:fd:13:d1:09:bd:07:43:8e:d4:55:29:c9:fa:
1a:ea:2c:aa:3b:a8:18:a9:c9:86:0a:cc:93:c1:e8:
d0:77:9b:2c:81:d2:0c:14:fb:52:83:f3:2e:30:46:
42:cc:47:6d:ae:7f:9b:7f:4b:53:cf:d8:7e:bf:bd:
fa:17:37:d7:5f:94:10:37:1b:ea:3b:c6:ca:53:8b:
81:23:68:2a:31:e9:b1:e9:5d:e9:91:5a:d0:1e:c0:
93:c7:d1:6f:63:c4:89:3b:7e:8c:2c:a8:3f:b9:69:
ba:6e:cd:50:cc:a5:c4:77:6a:d1:ad:20:0e:1c:51:
6e:f9:5b:b4:20:8f:ce:06:f2:71:a0:1a:2d:17:b8:
9d:19:dc:b4:62:e6:f1:e2:e8:83:ee:3e:7e:9a:fd:
84:97:be:17:30:f4:d1:d7:e6:d5:a4:2c:d2:62:61:
ba:23:50:0e:8d:ae:67:85:8e:b2:0f:f3:b5:ee:4c:
bf:04:3c:7b:46:b8:81:ed:e0:f1:f6:65:66:a9:b1:
b2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3C:A7:3C:AE:79:53:3C:01:29:F9:38:11:55:40:F4:3A:26:F4:C3
X509v3 Authority Key Identifier:
keyid:79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/1DynPK55UzwBKfk4EVVA9Dom9MM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.168.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:91:ab:f6:47:94:0e:a0:3b:ee:90:53:ed:ad:e9:39:8c:bb:
eb:f6:04:05:5a:09:35:dc:ba:02:8b:df:0c:c5:c9:ad:8f:76:
7e:be:bb:d3:c1:6b:79:04:64:b8:c5:b1:34:bd:a7:65:60:02:
15:39:40:e1:f0:04:d1:a3:4e:4d:1a:85:c8:e2:cb:ae:a1:2d:
37:0e:a6:ef:6c:b7:65:b9:71:06:e4:3a:72:e5:5f:3d:29:9d:
6d:d7:04:74:c2:ba:81:12:8c:09:c7:26:bd:e2:05:be:20:b7:
ba:f6:e4:c8:8b:b7:ea:3a:7a:27:e3:de:f2:f2:c0:2c:2c:87:
3b:36:8c:69:28:74:fb:a4:b4:49:10:69:f6:1b:a8:59:54:67:
1e:4f:c8:c1:b7:88:64:36:ba:38:70:ec:01:96:61:a1:60:13:
8e:ef:c8:83:4f:74:cd:da:7b:0a:57:e4:fe:f1:0b:71:55:72:
9d:f5:e3:65:5d:76:34:84:57:f7:b9:e6:1c:28:a7:4e:d3:c3:
89:6b:1d:3b:18:02:90:c2:08:a1:a5:76:1b:9f:ba:91:9b:6e:
e0:39:af:ad:d5:8d:8c:4d:19:c0:e2:ba:61:5b:3b:90:01:a2:
bc:f0:69:39:63:d2:f4:ca:df:0c:8a:83:0e:b3:ad:89:69:14:
4f:68:52:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAWH8qCqsRkHZbSzL7vYtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5ZDU2NWY5OWZmNWUwZmZiNWJkZjk5OTVlZDdhODA4ZDQx
NDA2ZTUwHhcNMjQwMTAyMDIyOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDNjYTczY2FlNzk1MzNjMDEyOWY5MzgxMTU1NDBmNDNhMjZmNGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQq+3KzgRLL/41BoIPzvS/G99YwN
10mvjlbogVsD2lMNNcIUTW68xmK0TinddacuTX2or+K1wgSYIO78Cf0T0Qm9B0OO
1FUpyfoa6iyqO6gYqcmGCsyTwejQd5ssgdIMFPtSg/MuMEZCzEdtrn+bf0tTz9h+
v736FzfXX5QQNxvqO8bKU4uBI2gqMemx6V3pkVrQHsCTx9FvY8SJO36MLKg/uWm6
bs1QzKXEd2rRrSAOHFFu+Vu0II/OBvJxoBotF7idGdy0Yubx4uiD7j5+mv2El74X
MPTR1+bVpCzSYmG6I1AOja5nhY6yD/O17ky/BDx7RriB7eDx9mVmqbGyxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNQ8pzyueVM8ASn5OBFVQPQ6JvTDMB8GA1UdIwQY
MBaAFHnVZfmf9eD/tb35mV7XqAjUFAblMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQt
NmMzYjg3NDQzZTA2LzEvMUR5blBLNTVVendCS2ZrNEVWVkE5RG9tOU1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQtNmMzYjg3NDQzZTA2
LzEvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucyoMA0G
CSqGSIb3DQEBCwUAA4IBAQCckav2R5QOoDvukFPtrek5jLvr9gQFWgk13LoCi98M
xcmtj3Z+vrvTwWt5BGS4xbE0vadlYAIVOUDh8ATRo05NGoXI4suuoS03DqbvbLdl
uXEG5Dpy5V89KZ1t1wR0wrqBEowJxya94gW+ILe69uTIi7fqOnon497y8sAsLIc7
NoxpKHT7pLRJEGn2G6hZVGceT8jBt4hkNro4cOwBlmGhYBOO78iDT3TN2nsKV+T+
8QtxVXKd9eNlXXY0hFf3ueYcKKdO08OJax07GAKQwgihpXYbn7qRm27gOa+t1Y2M
TRnA4rphWzuQAaK88Gk5Y9L0yt8MioMOs62JaRRPaFLh
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:20:25 2024 by rpki-client on console-fra.rpki-client.org