Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/g1pMAeaHJgIIszouOiJcFXaVYiY.roa
File: g1pMAeaHJgIIszouOiJcFXaVYiY.roa (raw, json)
Hash identifier: WEBCkXP82M0Gp1j1vciwv9A6Lw7yYdgFixOtduPlESk=
Subject key identifier: 83:5A:4C:01:E6:87:26:02:08:B3:3A:2E:3A:22:5C:15:76:95:62:26
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 018CC64B4BCE24BEF89BAC3ADF9887B06444
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/g1pMAeaHJgIIszouOiJcFXaVYiY.roa
Signing time: Mon 01 Jan 2024 18:31:12 +0000
ROA not before: Mon 01 Jan 2024 18:31:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49234
IP address blocks: 77.87.224.0/21 maxlen: 21
77.87.224.0/22 maxlen: 22
77.87.228.0/22 maxlen: 22
193.30.80.0/24 maxlen: 25
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:4b:ce:24:be:f8:9b:ac:3a:df:98:87:b0:64:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 1 18:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=835a4c01e687260208b33a2e3a225c1576956226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:67:d5:ce:2d:af:af:42:0b:95:02:09:58:23:
4c:d7:26:b1:e2:0a:fb:da:66:3f:05:71:ac:a8:e5:
99:6e:bd:97:55:ee:49:39:05:c7:4b:c5:15:00:57:
dc:58:97:18:b8:10:ad:51:2f:ee:a6:08:7b:88:87:
27:56:9b:e7:fa:b4:aa:aa:3b:e1:81:b1:08:e5:e6:
02:17:5e:57:f8:cf:5f:cb:66:51:0c:31:88:53:28:
90:25:5a:37:0e:a8:89:df:7e:79:72:b9:dc:ea:5e:
13:ca:80:6f:9d:43:d3:7e:f0:70:ea:b1:a7:84:50:
2e:90:cc:4a:73:55:c6:9a:fa:6a:63:f9:2b:1a:ac:
ec:11:30:f4:cf:11:d1:c1:00:34:46:c2:d2:8d:72:
db:c4:df:1f:1d:60:57:50:cb:71:d7:02:01:0d:f4:
7a:0e:9e:7d:85:f7:fc:56:37:1b:9b:ca:6c:2e:27:
54:36:b3:7a:94:76:55:a1:96:ec:2f:f7:7a:3a:83:
b2:54:1c:d3:85:a7:54:8f:3a:8b:58:19:c0:02:2e:
b6:8a:ae:3a:91:f3:41:43:ff:61:e0:1f:e2:0b:29:
a3:1a:17:93:81:d0:a0:15:ff:af:86:f4:ea:8a:2c:
d5:62:14:70:6d:74:e1:4c:39:87:a9:31:4f:67:65:
d5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5A:4C:01:E6:87:26:02:08:B3:3A:2E:3A:22:5C:15:76:95:62:26
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/g1pMAeaHJgIIszouOiJcFXaVYiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.224.0/21
193.30.80.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ca:03:61:96:d9:54:49:92:e2:bb:57:5a:57:f2:55:d1:1f:
b6:7f:df:c4:09:1b:b2:61:e4:c6:31:8e:19:f9:10:26:d5:e0:
ea:b1:51:8d:7b:90:29:f2:57:53:27:fd:1e:b2:97:7d:56:8b:
c2:54:25:3c:27:26:18:b0:06:06:38:01:17:56:b8:49:77:ab:
57:62:ba:af:4a:ba:94:8f:c6:2a:f9:82:00:24:73:05:6b:50:
08:80:ed:47:4c:f5:bc:65:96:87:f1:55:84:c8:81:da:ad:33:
5b:02:bf:0a:88:82:e7:23:5b:e6:7d:72:ec:4c:95:a5:66:1f:
b5:ff:20:be:22:d6:aa:8a:da:3e:1b:f5:cd:98:a6:68:4e:c1:
d9:27:a7:56:55:e9:84:52:70:c4:2a:eb:5e:42:51:bf:d0:34:
97:09:10:58:3c:6f:53:7a:ff:bc:a9:f3:9b:7a:6c:e7:ad:8b:
8a:a5:92:0f:57:10:32:63:72:60:e4:3e:dd:82:d9:f2:00:43:
f2:d0:60:48:41:e0:ff:23:cb:bd:3a:07:a9:23:28:99:13:d4:
c7:a5:40:28:f3:41:40:b2:04:89:73:31:3f:fd:d7:64:b7:d1:
52:f5:29:8d:a0:27:79:38:d8:e1:cc:db:b1:51:0c:99:ce:8d:
0a:0a:90:09
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzGS0vOJL74m6w635iHsGREMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MTgyYWFiNWFkOWVmYTM4MGE2YzZmMDZjMDE2ZTE1OGJl
OTc3YmMwHhcNMjQwMTAxMTgzMTEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzVhNGMwMWU2ODcyNjAyMDhiMzNhMmUzYTIyNWMxNTc2OTU2MjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWfVzi2vr0ILlQIJWCNM1yax4gr7
2mY/BXGsqOWZbr2XVe5JOQXHS8UVAFfcWJcYuBCtUS/upgh7iIcnVpvn+rSqqjvh
gbEI5eYCF15X+M9fy2ZRDDGIUyiQJVo3DqiJ3355crnc6l4TyoBvnUPTfvBw6rGn
hFAukMxKc1XGmvpqY/krGqzsETD0zxHRwQA0RsLSjXLbxN8fHWBXUMtx1wIBDfR6
Dp59hff8Vjcbm8psLidUNrN6lHZVoZbsL/d6OoOyVBzThadUjzqLWBnAAi62iq46
kfNBQ/9h4B/iCymjGheTgdCgFf+vhvTqiizVYhRwbXThTDmHqTFPZ2XVvwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFINaTAHmhyYCCLM6LjoiXBV2lWImMB8GA1UdIwQY
MBaAFFcYKqta2e+jgKbG8GwBbhWL6Xe8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnhncXExclo3Nk9BcHNid2JBRnVGWXZwZDd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84YzUxY2ItYTNiZC00NzZkLTg4MGYt
YTk2YzYyNjZhYmRiLzEvZzFwTUFlYUhKZ0lJc3pvdU9pSmNGWGFWWWlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni84YzUxY2ItYTNiZC00NzZkLTg4MGYtYTk2YzYyNjZhYmRi
LzEvVnhncXExclo3Nk9BcHNid2JBRnVGWXZwZDd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDTVfgAwQA
wR5QMA0GCSqGSIb3DQEBCwUAA4IBAQBRygNhltlUSZLiu1daV/JV0R+2f9/ECRuy
YeTGMY4Z+RAm1eDqsVGNe5Ap8ldTJ/0espd9VovCVCU8JyYYsAYGOAEXVrhJd6tX
YrqvSrqUj8Yq+YIAJHMFa1AIgO1HTPW8ZZaH8VWEyIHarTNbAr8KiILnI1vmfXLs
TJWlZh+1/yC+Itaqito+G/XNmKZoTsHZJ6dWVemEUnDEKuteQlG/0DSXCRBYPG9T
ev+8qfObemznrYuKpZIPVxAyY3Jg5D7dgtnyAEPy0GBIQeD/I8u9OgepIyiZE9TH
pUAo80FAsgSJczE//ddkt9FS9SmNoCd5ONjhzNuxUQyZzo0KCpAJ
-----END CERTIFICATE-----
Generated at Fri Nov 22 20:07:32 2024 by rpki-client on console-ams.rpki-client.org