Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/mV5tvFAqPKExnbNhZ-nhMKVniJk.roa
File: mV5tvFAqPKExnbNhZ-nhMKVniJk.roa (raw, json)
Hash identifier: zNyxtCzuCBfH35+bXvopWuHaXnghrlFZbTihf2zZjBs=
Subject key identifier: 99:5E:6D:BC:50:2A:3C:A1:31:9D:B3:61:67:E9:E1:30:A5:67:88:99
Certificate issuer: /CN=9b55a642379ce578f39ec0d10603dcfa83f6e34e
Certificate serial: 018CC5DC5F55228FCF864493ED40750C01B3
Authority key identifier: 9B:55:A6:42:37:9C:E5:78:F3:9E:C0:D1:06:03:DC:FA:83:F6:E3:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1WmQjec5XjznsDRBgPc-oP2404.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/mV5tvFAqPKExnbNhZ-nhMKVniJk.roa
Signing time: Mon 01 Jan 2024 16:30:03 +0000
ROA not before: Mon 01 Jan 2024 16:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59497
IP address blocks: 194.8.144.0/24 maxlen: 24
194.8.145.0/24 maxlen: 24
194.8.144.0/22 maxlen: 22
194.8.147.0/24 maxlen: 24
194.8.146.0/24 maxlen: 24
188.191.233.0/24 maxlen: 24
188.191.232.0/21 maxlen: 21
188.191.232.0/24 maxlen: 24
188.191.237.0/24 maxlen: 24
188.191.235.0/24 maxlen: 24
188.191.236.0/24 maxlen: 24
188.191.234.0/24 maxlen: 24
188.191.238.0/24 maxlen: 24
188.191.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/m1WmQjec5XjznsDRBgPc-oP2404.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/m1WmQjec5XjznsDRBgPc-oP2404.mft
rsync://rpki.ripe.net/repository/DEFAULT/m1WmQjec5XjznsDRBgPc-oP2404.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 17:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:5f:55:22:8f:cf:86:44:93:ed:40:75:0c:01:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b55a642379ce578f39ec0d10603dcfa83f6e34e
Validity
Not Before: Jan 1 16:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=995e6dbc502a3ca1319db36167e9e130a5678899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:87:fb:80:3a:a3:86:c8:fb:b8:b4:41:6b:6d:
4c:48:15:08:9b:77:ea:f9:59:06:ac:96:99:42:9c:
bd:bb:d2:5e:7f:77:51:87:91:ee:89:66:dd:39:6d:
dd:cf:00:2d:45:75:7e:bb:b4:40:ac:65:34:37:46:
72:06:99:0d:27:21:cd:c1:c8:53:cb:47:bb:65:e8:
24:30:66:1f:3e:32:31:87:e9:e0:43:79:af:d0:a0:
6d:5a:d2:a3:9c:b9:62:4b:d7:9a:1c:07:68:8c:de:
53:81:a4:e6:ce:b5:19:59:66:c6:db:9a:d2:66:ab:
58:e5:39:0e:66:4e:75:8a:72:30:ea:77:fd:ca:bc:
84:7a:59:b9:b6:36:3c:c7:7e:34:5b:f3:90:1b:be:
39:5f:33:96:d8:0a:97:aa:c4:15:10:97:ac:8e:60:
a9:98:32:1e:0c:d9:3c:7b:26:c8:65:5f:c0:f0:15:
e8:56:ef:dd:de:8a:16:e4:3e:d2:be:83:13:65:b6:
5e:f8:51:e1:b4:46:77:fa:ab:1b:08:fc:7e:cc:53:
76:14:f4:1d:9c:b0:a8:8c:6a:ad:6a:f1:2c:fb:ae:
ea:11:5c:00:0c:34:bc:da:68:f1:c3:b7:02:ba:dd:
54:4c:75:de:20:2a:08:32:dd:88:89:79:3a:63:d2:
09:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5E:6D:BC:50:2A:3C:A1:31:9D:B3:61:67:E9:E1:30:A5:67:88:99
X509v3 Authority Key Identifier:
keyid:9B:55:A6:42:37:9C:E5:78:F3:9E:C0:D1:06:03:DC:FA:83:F6:E3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1WmQjec5XjznsDRBgPc-oP2404.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/mV5tvFAqPKExnbNhZ-nhMKVniJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/m1WmQjec5XjznsDRBgPc-oP2404.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.232.0/21
194.8.144.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:ae:16:67:2a:08:5d:7f:f5:35:05:30:b0:62:61:53:bf:5b:
51:a9:46:3c:54:ed:3e:d8:ff:38:6c:3e:6e:14:5a:99:31:27:
98:72:9f:a7:d5:7d:6a:20:6b:74:b8:c6:31:e8:71:41:7c:c1:
d8:50:c4:ce:51:f1:e6:3f:e3:ee:1a:3b:ae:03:3b:f6:d1:c7:
2b:9e:86:a2:43:5e:7e:2c:f5:fd:26:7e:16:00:52:98:01:33:
6b:d5:cd:bd:64:eb:f5:38:5d:18:56:85:ef:bb:94:55:f5:38:
7a:e0:d2:d5:28:64:c1:b2:c5:e6:52:81:49:f6:38:96:98:01:
55:92:d7:c5:a2:37:0e:2c:28:c6:61:2f:f2:5b:b4:16:aa:63:
0d:e4:18:17:7f:5e:14:7f:e6:97:18:81:df:88:d2:c3:59:1c:
11:88:de:ef:ff:4b:13:17:e3:79:67:7e:1d:82:c5:0c:88:ab:
4e:94:f5:de:2a:59:e9:18:64:a1:f6:5f:a6:8c:83:50:bc:12:
4c:7a:ef:20:f7:1b:38:9b:b7:9d:59:0d:db:cd:73:d5:a2:84:
6d:56:5b:92:d6:e4:da:26:10:bf:c4:a4:64:8d:27:95:f7:3d:
6a:b2:28:b8:85:b9:47:1a:3d:9a:1c:87:84:69:9d:43:ed:5c:
77:9e:8a:45
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzF3F9VIo/PhkST7UB1DAGzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliNTVhNjQyMzc5Y2U1NzhmMzllYzBkMTA2MDNkY2ZhODNm
NmUzNGUwHhcNMjQwMTAxMTYzMDAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTVlNmRiYzUwMmEzY2ExMzE5ZGIzNjE2N2U5ZTEzMGE1Njc4ODk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg4f7gDqjhsj7uLRBa21MSBUIm3fq
+VkGrJaZQpy9u9Jef3dRh5HuiWbdOW3dzwAtRXV+u7RArGU0N0ZyBpkNJyHNwchT
y0e7ZegkMGYfPjIxh+ngQ3mv0KBtWtKjnLliS9eaHAdojN5TgaTmzrUZWWbG25rS
ZqtY5TkOZk51inIw6nf9yryEelm5tjY8x340W/OQG745XzOW2AqXqsQVEJesjmCp
mDIeDNk8eybIZV/A8BXoVu/d3ooW5D7SvoMTZbZe+FHhtEZ3+qsbCPx+zFN2FPQd
nLCojGqtavEs+67qEVwADDS82mjxw7cCut1UTHXeICoIMt2IiXk6Y9IJfwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJlebbxQKjyhMZ2zYWfp4TClZ4iZMB8GA1UdIwQY
MBaAFJtVpkI3nOV4857A0QYD3PqD9uNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTFXbVFqZWM1WGp6bnNEUkJnUGMtb1AyNDA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9iZTkyYjUtNTcxNy00MDQ2LWFjMWMt
ODIyMmUyNTFhOTFiLzEvbVY1dHZGQXFQS0V4bmJOaFotbmhNS1ZuaUprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9iZTkyYjUtNTcxNy00MDQ2LWFjMWMtODIyMmUyNTFhOTFi
LzEvbTFXbVFqZWM1WGp6bnNEUkJnUGMtb1AyNDA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDvL/oAwQC
wgiQMA0GCSqGSIb3DQEBCwUAA4IBAQBbrhZnKghdf/U1BTCwYmFTv1tRqUY8VO0+
2P84bD5uFFqZMSeYcp+n1X1qIGt0uMYx6HFBfMHYUMTOUfHmP+PuGjuuAzv20ccr
noaiQ15+LPX9Jn4WAFKYATNr1c29ZOv1OF0YVoXvu5RV9Th64NLVKGTBssXmUoFJ
9jiWmAFVktfFojcOLCjGYS/yW7QWqmMN5BgXf14Uf+aXGIHfiNLDWRwRiN7v/0sT
F+N5Z34dgsUMiKtOlPXeKlnpGGSh9l+mjINQvBJMeu8g9xs4m7edWQ3bzXPVooRt
VluS1uTaJhC/xKRkjSeV9z1qsii4hblHGj2aHIeEaZ1D7Vx3nopF
-----END CERTIFICATE-----
Generated at Sun Jun 16 23:55:07 2024 by rpki-client on console-ams.rpki-client.org