Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/6MpCaf0UOBYn8TQkxejiZakptqM.roa
File: 6MpCaf0UOBYn8TQkxejiZakptqM.roa (raw, json)
Hash identifier: ng/NGbK8yrrWtQu9zhuJZevZ0uFrzLg7FL/FvO6/2MU=
Subject key identifier: E8:CA:42:69:FD:14:38:16:27:F1:34:24:C5:E8:E2:65:A9:29:B6:A3
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 01942521F1DEC48044DBBE82EBB1E9D2DBAF
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/6MpCaf0UOBYn8TQkxejiZakptqM.roa
Signing time: Thu 02 Jan 2025 03:49:29 +0000
ROA not before: Thu 02 Jan 2025 03:49:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210644
IP address blocks: 77.105.166.0/24 maxlen: 24
77.105.167.0/24 maxlen: 24
185.225.200.0/24 maxlen: 24
185.225.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 10:07:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:f1:de:c4:80:44:db:be:82:eb:b1:e9:d2:db:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Jan 2 03:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e8ca4269fd14381627f13424c5e8e265a929b6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f5:2e:98:b2:fb:2a:dc:e2:3a:42:1a:ce:b5:
55:e4:52:0b:be:17:6b:4f:32:1d:a6:0a:aa:53:dc:
a7:9c:b6:3c:31:c9:4b:af:05:8e:3c:43:03:b3:25:
7e:ea:77:1d:42:bb:c9:29:68:f7:ce:cc:b8:30:9e:
05:9e:41:f9:d8:04:24:d0:57:73:02:a3:80:cd:93:
49:78:ed:55:df:e1:05:33:cb:d0:1e:e4:cc:33:d4:
91:57:a0:4b:1e:a5:d0:72:ed:3f:8a:e8:e7:04:1f:
cc:59:27:3f:48:93:06:ce:c0:7f:ca:11:e6:bd:96:
be:eb:0b:c1:9c:6c:91:f1:61:38:bb:ee:c9:a3:64:
8c:fc:a7:17:21:b7:d1:1e:46:47:79:3e:50:ce:fb:
09:c1:3a:5b:85:d3:0e:b3:13:7c:af:17:5f:71:0a:
43:12:94:7d:af:25:c8:f7:86:f0:24:77:88:e7:41:
48:23:b9:8d:4c:56:a8:db:06:80:8e:9b:ac:08:74:
10:1d:76:95:65:c2:28:56:2f:53:10:86:77:13:eb:
b0:f7:9c:47:9a:ca:18:06:36:32:ad:74:ef:1b:5f:
28:13:5c:8a:59:fe:6d:22:ae:a5:0b:31:35:04:4a:
7a:64:d6:52:19:d2:b4:28:7a:0f:c3:9f:de:5c:8d:
49:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:CA:42:69:FD:14:38:16:27:F1:34:24:C5:E8:E2:65:A9:29:B6:A3
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/6MpCaf0UOBYn8TQkxejiZakptqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.166.0/23
185.225.200.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:ce:c6:53:c9:e5:d7:8a:cc:71:66:8b:05:be:74:3e:31:2c:
a9:a0:c1:b7:4c:fd:8c:7a:65:a7:e1:14:3e:b4:33:33:e0:1c:
76:c0:9d:1a:13:81:a0:b1:99:9e:71:f4:61:36:ac:67:e9:98:
97:88:ac:24:6d:41:95:a1:ae:a6:16:4b:1d:f1:72:ae:ea:12:
a8:7a:a9:a6:2a:ea:1c:98:62:09:0d:e8:87:76:92:43:86:bc:
08:a2:93:ad:18:7b:b9:6b:5e:dd:29:0a:30:8a:00:a5:c4:e6:
cf:4d:76:79:54:4f:e3:53:cb:3f:a2:0b:ec:a1:34:d0:d4:02:
e1:28:f5:57:48:36:5c:f6:e6:11:54:6d:cd:03:74:0c:ab:07:
bb:f8:3f:e9:61:c4:59:a1:e4:13:05:b7:cc:3e:e7:f7:af:7f:
71:6f:60:03:5f:c6:8d:c3:2e:b4:2d:25:0c:29:ea:41:c3:e5:
32:47:3c:f7:0c:1a:21:c1:29:dd:e9:f7:24:0d:15:c7:0a:07:
a6:a2:1a:67:e7:88:85:7f:89:96:78:75:75:13:1a:11:1e:bb:
e1:41:01:06:bc:7b:7d:4c:88:ef:9b:0b:55:14:4c:b0:21:60:
57:51:a9:2b:8b:e5:eb:dc:2e:ae:f2:5c:c3:01:df:14:1e:9c:
aa:d5:23:e0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQlIfHexIBE276C67Hp0tuvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNzBjNDQxZmI4OTJiOGM5ODE2NTM0ODg1MDY5ZmNkMzMw
MGM5YTQwHhcNMjUwMTAyMDM0OTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGNhNDI2OWZkMTQzODE2MjdmMTM0MjRjNWU4ZTI2NWE5MjliNmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/UumLL7KtziOkIazrVV5FILvhdr
TzIdpgqqU9ynnLY8MclLrwWOPEMDsyV+6ncdQrvJKWj3zsy4MJ4FnkH52AQk0Fdz
AqOAzZNJeO1V3+EFM8vQHuTMM9SRV6BLHqXQcu0/iujnBB/MWSc/SJMGzsB/yhHm
vZa+6wvBnGyR8WE4u+7Jo2SM/KcXIbfRHkZHeT5QzvsJwTpbhdMOsxN8rxdfcQpD
EpR9ryXI94bwJHeI50FII7mNTFao2waAjpusCHQQHXaVZcIoVi9TEIZ3E+uw95xH
msoYBjYyrXTvG18oE1yKWf5tIq6lCzE1BEp6ZNZSGdK0KHoPw5/eXI1JdQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOjKQmn9FDgWJ/E0JMXo4mWpKbajMB8GA1UdIwQY
MBaAFNpwxEH7iSuMmBZTSIUGn80zAMmkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMt
MTVmYzBiNjhmODQ0LzEvNk1wQ2FmMFVPQlluOFRRa3hlamlaYWtwdHFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMtMTVmYzBiNjhmODQ0
LzEvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBTWmmAwQB
ueHIMA0GCSqGSIb3DQEBCwUAA4IBAQAczsZTyeXXisxxZosFvnQ+MSypoMG3TP2M
emWn4RQ+tDMz4Bx2wJ0aE4GgsZmecfRhNqxn6ZiXiKwkbUGVoa6mFksd8XKu6hKo
eqmmKuocmGIJDeiHdpJDhrwIopOtGHu5a17dKQowigClxObPTXZ5VE/jU8s/ogvs
oTTQ1ALhKPVXSDZc9uYRVG3NA3QMqwe7+D/pYcRZoeQTBbfMPuf3r39xb2ADX8aN
wy60LSUMKepBw+UyRzz3DBohwSnd6fckDRXHCgemohpn54iFf4mWeHV1ExoRHrvh
QQEGvHt9TIjvmwtVFEywIWBXUakri+Xr3C6u8lzDAd8UHpyq1SPg
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:42:09 2025 by rpki-client