Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/lSIEA_iUXjNR0OGAjrLaQS4TOYA.roa
File: lSIEA_iUXjNR0OGAjrLaQS4TOYA.roa (raw, json)
Hash identifier: /z4HU8LI8X2cO4Uy7Um8ZmGIiYbSawvJhnA0iQe2cjM=
Subject key identifier: 95:22:04:03:F8:94:5E:33:51:D0:E1:80:8E:B2:DA:41:2E:13:39:80
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 018CC5DC0687E7531D90DA01467C29C36614
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/lSIEA_iUXjNR0OGAjrLaQS4TOYA.roa
Signing time: Mon 01 Jan 2024 16:29:40 +0000
ROA not before: Mon 01 Jan 2024 16:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 77.105.166.0/24 maxlen: 24
77.105.167.0/24 maxlen: 24
185.225.201.0/24 maxlen: 24
185.225.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:06:87:e7:53:1d:90:da:01:46:7c:29:c3:66:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Jan 1 16:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95220403f8945e3351d0e1808eb2da412e133980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d2:72:14:41:58:41:13:00:36:fd:e0:e8:b3:
cf:96:47:f3:83:b9:54:bb:8d:2b:b5:52:84:c6:67:
b8:85:60:a4:9a:d6:df:e1:e9:22:3c:cb:be:d4:65:
c3:fc:72:ab:4b:72:87:c7:36:e8:61:2f:6a:3d:00:
03:99:b8:a2:3f:43:37:ab:de:a6:c5:12:17:57:df:
ff:b5:11:b7:95:3a:b7:7a:a9:66:9f:9c:25:4a:05:
9a:70:c1:f1:50:ec:68:04:69:7e:20:1d:d3:52:05:
e9:87:40:3b:69:63:b3:c2:a5:42:ac:5e:78:fb:b5:
00:06:bd:44:b3:31:3e:aa:98:cc:f9:71:9e:14:3e:
0f:51:2a:45:6c:48:60:d3:f9:57:a5:a9:13:8b:2c:
d4:c4:a9:13:b0:fd:65:91:3d:3c:ea:7a:3d:2f:33:
4b:90:16:66:89:7a:8a:93:e5:5a:54:b2:76:59:63:
c1:62:09:b7:58:cc:7a:02:28:41:89:72:5d:68:3e:
2d:aa:48:b9:18:b6:0a:4c:d7:4c:9d:2d:c6:34:72:
fe:3d:d2:56:6b:68:ac:f7:e0:16:70:b5:29:7e:69:
4b:8d:cc:20:55:98:0e:c6:0d:01:39:c6:ad:d1:32:
3e:d0:7a:d8:e7:ee:5f:b4:eb:81:9e:ec:57:83:2a:
e2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:22:04:03:F8:94:5E:33:51:D0:E1:80:8E:B2:DA:41:2E:13:39:80
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/lSIEA_iUXjNR0OGAjrLaQS4TOYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.166.0/23
185.225.200.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:34:d4:1c:18:32:71:d6:0a:b8:63:28:4e:41:20:34:21:dc:
9c:f7:80:43:5a:c3:c8:cd:84:81:a4:ab:0a:91:66:c7:19:51:
b5:b6:fa:34:13:46:6e:40:55:1b:f1:42:32:80:18:b1:81:79:
fc:ab:9c:0a:7c:69:66:da:bc:dd:8d:33:41:54:e5:38:5f:4c:
c1:fe:3c:33:a8:32:8d:b7:1f:3c:08:d8:b1:ff:09:69:5b:de:
d1:b3:3d:a2:1e:53:f8:55:d9:20:d9:63:2f:53:c0:29:c1:c6:
3b:47:03:2b:73:58:66:b7:32:ce:a2:7f:cc:c3:b0:08:a2:76:
14:6c:18:dd:e9:ac:29:51:48:e2:dc:35:a5:b8:66:97:c9:c0:
c4:85:73:11:94:41:22:91:9d:99:eb:59:97:e1:bb:5b:33:39:
7b:49:d1:60:ef:22:11:81:0a:96:9f:53:6b:75:37:e3:4e:c0:
73:ad:0a:59:8d:c7:0e:7e:54:d3:ad:e9:ac:5f:01:fa:2f:4b:
a9:c4:b9:59:ae:ae:0d:4d:81:32:bc:e4:87:20:51:1c:ee:76:
3b:22:6a:97:10:08:71:7a:fc:92:5f:01:4d:84:50:bf:bd:39:
c4:a2:80:35:33:16:da:8d:02:d6:97:42:fb:dd:3b:2a:23:c7:
e7:75:b3:ec
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzF3AaH51MdkNoBRnwpw2YUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNzBjNDQxZmI4OTJiOGM5ODE2NTM0ODg1MDY5ZmNkMzMw
MGM5YTQwHhcNMjQwMTAxMTYyOTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTIyMDQwM2Y4OTQ1ZTMzNTFkMGUxODA4ZWIyZGE0MTJlMTMzOTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9JyFEFYQRMANv3g6LPPlkfzg7lU
u40rtVKExme4hWCkmtbf4ekiPMu+1GXD/HKrS3KHxzboYS9qPQADmbiiP0M3q96m
xRIXV9//tRG3lTq3eqlmn5wlSgWacMHxUOxoBGl+IB3TUgXph0A7aWOzwqVCrF54
+7UABr1EszE+qpjM+XGeFD4PUSpFbEhg0/lXpakTiyzUxKkTsP1lkT086no9LzNL
kBZmiXqKk+VaVLJ2WWPBYgm3WMx6AihBiXJdaD4tqki5GLYKTNdMnS3GNHL+PdJW
a2is9+AWcLUpfmlLjcwgVZgOxg0BOcat0TI+0HrY5+5ftOuBnuxXgyrigQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJUiBAP4lF4zUdDhgI6y2kEuEzmAMB8GA1UdIwQY
MBaAFNpwxEH7iSuMmBZTSIUGn80zAMmkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMt
MTVmYzBiNjhmODQ0LzEvbFNJRUFfaVVYak5SME9HQWpyTGFRUzRUT1lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9lNTNkZTUtMWI1Zi00NDY3LWE2OGMtMTVmYzBiNjhmODQ0
LzEvMm5ERVFmdUpLNHlZRmxOSWhRYWZ6VE1BeWFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBTWmmAwQB
ueHIMA0GCSqGSIb3DQEBCwUAA4IBAQCqNNQcGDJx1gq4YyhOQSA0Idyc94BDWsPI
zYSBpKsKkWbHGVG1tvo0E0ZuQFUb8UIygBixgXn8q5wKfGlm2rzdjTNBVOU4X0zB
/jwzqDKNtx88CNix/wlpW97Rsz2iHlP4Vdkg2WMvU8ApwcY7RwMrc1hmtzLOon/M
w7AIonYUbBjd6awpUUji3DWluGaXycDEhXMRlEEikZ2Z61mX4btbMzl7SdFg7yIR
gQqWn1NrdTfjTsBzrQpZjccOflTTremsXwH6L0upxLlZrq4NTYEyvOSHIFEc7nY7
ImqXEAhxevySXwFNhFC/vTnEooA1MxbajQLWl0L73TsqI8fndbPs
-----END CERTIFICATE-----
Generated at Thu May 9 18:12:58 2024 by rpki-client on console-ams.rpki-client.org