Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/jc5BvvGLc0z8TUQ2FxcVuBM_wWE.roa
File: jc5BvvGLc0z8TUQ2FxcVuBM_wWE.roa (raw, json)
Hash identifier: YMz7ABEQRWI8Mj45qDwXVu2NF68o3uA17BzdBcI0pK8=
Subject key identifier: 8D:CE:41:BE:F1:8B:73:4C:FC:4D:44:36:17:17:15:B8:13:3F:C1:61
Certificate issuer: /CN=b7b67ba579f48a4207ac409abf4f01194046ea3a
Certificate serial: 018CC8DF97B6028D54E3BA2C0A35ED719875
Authority key identifier: B7:B6:7B:A5:79:F4:8A:42:07:AC:40:9A:BF:4F:01:19:40:46:EA:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t7Z7pXn0ikIHrECav08BGUBG6jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/jc5BvvGLc0z8TUQ2FxcVuBM_wWE.roa
Signing time: Tue 02 Jan 2024 06:32:25 +0000
ROA not before: Tue 02 Jan 2024 06:32:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199332
IP address blocks: 79.171.192.0/21 maxlen: 24
185.19.236.0/22 maxlen: 24
2a02:fe00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/t7Z7pXn0ikIHrECav08BGUBG6jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/t7Z7pXn0ikIHrECav08BGUBG6jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t7Z7pXn0ikIHrECav08BGUBG6jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:97:b6:02:8d:54:e3:ba:2c:0a:35:ed:71:98:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7b67ba579f48a4207ac409abf4f01194046ea3a
Validity
Not Before: Jan 2 06:32:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dce41bef18b734cfc4d4436171715b8133fc161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:74:16:86:6f:cf:f4:cc:c9:d4:4e:4c:16:e7:
6b:b3:51:0a:bd:a6:ef:46:27:57:de:b1:c1:5d:9e:
09:34:0f:3b:d4:1e:ec:d6:9f:30:90:b3:be:c9:82:
e1:b9:33:d6:bd:c4:ee:97:ed:0c:ff:06:ce:b6:ab:
0c:0e:b1:63:61:13:ec:f0:70:e6:a4:ed:55:50:86:
d1:21:63:d6:d3:16:d3:b4:5e:2d:18:f8:0d:a7:92:
87:66:55:96:4a:4d:75:f5:f8:e9:fb:44:78:1e:f6:
66:7f:80:54:96:13:eb:22:c0:2e:7d:cd:1d:34:4d:
11:ad:d7:e9:20:18:bb:2e:55:79:9e:c7:b6:da:42:
4a:fb:d5:60:a9:ae:d6:d6:40:02:f1:77:e9:45:15:
3d:09:8c:01:dd:55:25:58:0b:6f:8d:e2:02:d4:99:
9d:98:29:27:af:36:97:0b:7d:03:c9:62:36:6a:41:
6f:29:f8:7b:9f:75:78:a9:ba:26:91:8a:38:4c:41:
b4:9d:59:d4:6d:bd:5a:6a:a3:d4:0c:31:59:3b:3e:
ad:ca:7d:9c:74:09:fc:29:13:ad:cc:46:29:79:04:
aa:fc:45:36:c0:05:0a:14:c2:aa:de:84:56:94:d7:
9f:36:75:ec:89:8b:34:97:a3:4b:03:6b:aa:6a:7f:
b5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:CE:41:BE:F1:8B:73:4C:FC:4D:44:36:17:17:15:B8:13:3F:C1:61
X509v3 Authority Key Identifier:
keyid:B7:B6:7B:A5:79:F4:8A:42:07:AC:40:9A:BF:4F:01:19:40:46:EA:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t7Z7pXn0ikIHrECav08BGUBG6jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/jc5BvvGLc0z8TUQ2FxcVuBM_wWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/t7Z7pXn0ikIHrECav08BGUBG6jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.192.0/21
185.19.236.0/22
IPv6:
2a02:fe00::/29
Signature Algorithm: sha256WithRSAEncryption
58:7c:10:40:f5:9e:1b:f8:9b:be:63:77:79:34:c5:0d:9c:a5:
82:9f:2a:5e:90:b8:83:10:6d:ab:e7:e9:3f:38:a6:c7:54:39:
79:e8:a1:16:ca:5e:d6:1d:26:c1:f1:a9:2e:86:43:ac:68:49:
ec:13:e6:45:f5:06:27:03:7b:d3:0c:d0:b9:54:34:c5:a8:6d:
2c:c0:02:fb:43:ee:2f:5f:ab:97:2c:dd:b1:05:81:59:13:1d:
d1:a1:ae:d3:0e:47:cf:27:1b:52:3a:24:b4:c7:82:6f:dd:f8:
49:20:d3:db:5c:f8:3a:db:51:41:c4:5d:a3:84:2d:ff:72:e8:
47:a7:d9:0f:3f:32:13:b3:a7:68:a7:ae:76:5d:24:49:ed:8c:
f7:0c:8f:06:e7:c7:cd:f0:d2:86:27:eb:ab:f0:f7:72:73:77:
00:76:e2:d4:7a:8c:02:38:ab:32:e3:f7:2a:9f:84:63:35:7a:
03:ff:f0:ec:07:33:b0:33:18:2e:b8:84:39:0d:25:ed:7b:61:
6b:74:29:f0:af:d1:e6:2a:81:a2:a6:27:f6:b5:70:72:4f:08:
c1:7e:fc:79:fe:33:f3:f7:f5:56:ca:61:c6:22:68:07:b6:37:
58:0c:8c:99:a1:96:78:f6:5a:97:ac:b9:10:0c:c5:51:ee:0f:
1b:be:58:07
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYzI35e2Ao1U47osCjXtcZh1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3YjY3YmE1NzlmNDhhNDIwN2FjNDA5YWJmNGYwMTE5NDA0
NmVhM2EwHhcNMjQwMTAyMDYzMjI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGNlNDFiZWYxOGI3MzRjZmM0ZDQ0MzYxNzE3MTViODEzM2ZjMTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnQWhm/P9MzJ1E5MFudrs1EKvabv
RidX3rHBXZ4JNA871B7s1p8wkLO+yYLhuTPWvcTul+0M/wbOtqsMDrFjYRPs8HDm
pO1VUIbRIWPW0xbTtF4tGPgNp5KHZlWWSk119fjp+0R4HvZmf4BUlhPrIsAufc0d
NE0RrdfpIBi7LlV5nse22kJK+9Vgqa7W1kAC8XfpRRU9CYwB3VUlWAtvjeIC1Jmd
mCknrzaXC30DyWI2akFvKfh7n3V4qbomkYo4TEG0nVnUbb1aaqPUDDFZOz6tyn2c
dAn8KROtzEYpeQSq/EU2wAUKFMKq3oRWlNefNnXsiYs0l6NLA2uqan+1WQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFI3OQb7xi3NM/E1ENhcXFbgTP8FhMB8GA1UdIwQY
MBaAFLe2e6V59IpCB6xAmr9PARlARuo6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDdaN3BYbjBpa0lIckVDYXYwOEJHVUJHNmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni85NjNkNzUtNGNmZi00YjE0LTgzZGYt
Yjc3NDMyMGQ5OTdmLzEvamM1QnZ2R0xjMHo4VFVRMkZ4Y1Z1Qk1fd1dFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni85NjNkNzUtNGNmZi00YjE0LTgzZGYtYjc3NDMyMGQ5OTdm
LzEvdDdaN3BYbjBpa0lIckVDYXYwOEJHVUJHNmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDT6vAAwQC
uRPsMA0EAgACMAcDBQMqAv4AMA0GCSqGSIb3DQEBCwUAA4IBAQBYfBBA9Z4b+Ju+
Y3d5NMUNnKWCnypekLiDEG2r5+k/OKbHVDl56KEWyl7WHSbB8akuhkOsaEnsE+ZF
9QYnA3vTDNC5VDTFqG0swAL7Q+4vX6uXLN2xBYFZEx3Roa7TDkfPJxtSOiS0x4Jv
3fhJINPbXPg621FBxF2jhC3/cuhHp9kPPzITs6dop652XSRJ7Yz3DI8G58fN8NKG
J+ur8Pdyc3cAduLUeowCOKsy4/cqn4RjNXoD//DsBzOwMxguuIQ5DSXte2FrdCnw
r9HmKoGipif2tXByTwjBfvx5/jPz9/VWymHGImgHtjdYDIyZoZZ49lqXrLkQDMVR
7g8bvlgH
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:26 2024 by rpki-client on console-fra.rpki-client.org