Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/K0pL2mtVDqSLmeErY_WaP6e06yc.roa
File: K0pL2mtVDqSLmeErY_WaP6e06yc.roa (raw, json)
Hash identifier: zlkrSOBo22kfd2lQkM2LaIFZjLzaKdz9EUIPH1I9sMs=
Subject key identifier: 2B:4A:4B:DA:6B:55:0E:A4:8B:99:E1:2B:63:F5:9A:3F:A7:B4:EB:27
Certificate issuer: /CN=ee3be768d28668f490afb74e9aefe41e03495d7a
Certificate serial: 018CC870B8E0229C7D1605C89D3989FECA8F
Authority key identifier: EE:3B:E7:68:D2:86:68:F4:90:AF:B7:4E:9A:EF:E4:1E:03:49:5D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jvnaNKGaPSQr7dOmu_kHgNJXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/K0pL2mtVDqSLmeErY_WaP6e06yc.roa
Signing time: Tue 02 Jan 2024 04:31:19 +0000
ROA not before: Tue 02 Jan 2024 04:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197033
IP address blocks: 185.19.224.0/22 maxlen: 24
185.243.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/7jvnaNKGaPSQr7dOmu_kHgNJXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/7jvnaNKGaPSQr7dOmu_kHgNJXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/7jvnaNKGaPSQr7dOmu_kHgNJXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:b8:e0:22:9c:7d:16:05:c8:9d:39:89:fe:ca:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee3be768d28668f490afb74e9aefe41e03495d7a
Validity
Not Before: Jan 2 04:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b4a4bda6b550ea48b99e12b63f59a3fa7b4eb27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9a:e6:70:44:33:a9:bd:83:1b:4f:7c:9f:fd:
de:b4:4b:5c:fa:a6:38:b0:8f:3f:3a:3e:eb:1a:65:
71:bf:27:58:93:ef:d9:f5:7b:9a:2e:5d:7b:71:cb:
7a:33:2f:39:51:0d:fa:3a:85:21:88:88:a8:a4:09:
29:e1:f7:38:ed:42:f9:37:a3:80:72:1b:30:1c:5d:
e8:38:45:9f:a0:ee:c6:c6:96:e5:39:f0:fd:e4:c1:
ad:ec:5d:b1:a1:b7:08:97:a5:30:ea:02:f5:8e:f6:
13:f3:79:13:eb:13:0c:40:06:2a:c9:23:37:96:ca:
ac:0d:29:6b:4e:15:46:4d:8f:3f:01:ac:07:60:79:
ec:ea:21:ad:25:d8:e9:d0:88:bc:60:e5:38:f3:71:
f5:fa:4d:ab:78:ed:93:29:a3:0d:75:b2:1b:36:71:
25:3b:57:1b:fb:32:02:74:d1:fb:61:39:60:6a:e6:
54:80:0d:5b:95:8f:27:94:a5:f6:d1:c7:6e:4d:0f:
11:79:5e:54:a8:af:cc:8b:7f:69:df:8f:8f:24:7c:
43:45:87:7c:9d:b2:b5:60:02:2d:16:b0:24:d0:69:
de:a5:26:54:dd:a1:29:1b:09:d6:9b:2c:05:98:98:
7a:52:72:56:a0:15:4d:73:21:c1:68:a2:55:74:41:
8a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4A:4B:DA:6B:55:0E:A4:8B:99:E1:2B:63:F5:9A:3F:A7:B4:EB:27
X509v3 Authority Key Identifier:
keyid:EE:3B:E7:68:D2:86:68:F4:90:AF:B7:4E:9A:EF:E4:1E:03:49:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jvnaNKGaPSQr7dOmu_kHgNJXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/K0pL2mtVDqSLmeErY_WaP6e06yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7474e1-4d65-43b4-8bb1-feef105f0a77/1/7jvnaNKGaPSQr7dOmu_kHgNJXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.224.0/22
185.243.16.0/22
Signature Algorithm: sha256WithRSAEncryption
95:21:dc:59:23:27:be:6d:c2:d5:ba:ac:ce:e1:4b:11:30:78:
67:76:32:e4:7f:98:47:1a:91:56:2d:c3:8f:5b:83:61:67:4a:
24:65:cc:45:01:2a:ce:50:0a:07:80:5a:f7:45:4a:2a:b4:8b:
fd:65:94:27:d8:03:39:eb:8e:08:71:aa:17:cd:36:32:89:07:
80:e5:0b:61:60:7c:18:de:dc:94:33:ca:66:05:15:fb:d0:92:
1a:65:51:19:1b:91:33:c7:a9:85:fd:4a:de:09:28:02:91:0f:
ed:ea:13:29:09:f4:51:6e:58:5e:55:ee:96:ab:7c:ef:9f:9b:
7a:c7:34:f3:ed:ce:45:38:a8:17:e9:fa:5a:9c:ee:58:d1:3f:
79:b4:6b:b2:49:9d:d0:5b:a2:49:e1:61:f3:e0:17:97:6b:87:
8f:ff:77:e1:c1:b5:a6:2c:77:99:d6:c5:ee:46:db:65:c7:67:
8c:7c:d1:8c:6b:ba:b4:00:18:53:79:e2:46:61:92:65:b7:b4:
be:0e:a7:37:93:f2:9f:c2:94:72:d2:cf:6a:38:b9:74:7a:3c:
6e:54:bb:83:45:1b:f4:8c:15:3a:26:ff:2a:2d:a5:41:fa:4c:
2b:49:d7:60:4d:10:d4:d8:37:17:44:97:74:ec:22:cc:68:b2:
5b:98:5e:a2
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzIcLjgIpx9FgXInTmJ/sqPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlM2JlNzY4ZDI4NjY4ZjQ5MGFmYjc0ZTlhZWZlNDFlMDM0
OTVkN2EwHhcNMjQwMTAyMDQzMTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjRhNGJkYTZiNTUwZWE0OGI5OWUxMmI2M2Y1OWEzZmE3YjRlYjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJrmcEQzqb2DG098n/3etEtc+qY4
sI8/Oj7rGmVxvydYk+/Z9XuaLl17cct6My85UQ36OoUhiIiopAkp4fc47UL5N6OA
chswHF3oOEWfoO7GxpblOfD95MGt7F2xobcIl6Uw6gL1jvYT83kT6xMMQAYqySM3
lsqsDSlrThVGTY8/AawHYHns6iGtJdjp0Ii8YOU483H1+k2reO2TKaMNdbIbNnEl
O1cb+zICdNH7YTlgauZUgA1blY8nlKX20cduTQ8ReV5UqK/Mi39p34+PJHxDRYd8
nbK1YAItFrAk0GnepSZU3aEpGwnWmywFmJh6UnJWoBVNcyHBaKJVdEGKFwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCtKS9prVQ6ki5nhK2P1mj+ntOsnMB8GA1UdIwQY
MBaAFO4752jShmj0kK+3Tprv5B4DSV16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2p2bmFOS0dhUFNRcjdkT211X2tIZ05KWFhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS83NDc0ZTEtNGQ2NS00M2I0LThiYjEt
ZmVlZjEwNWYwYTc3LzEvSzBwTDJtdFZEcVNMbWVFcllfV2FQNmUwNnljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS83NDc0ZTEtNGQ2NS00M2I0LThiYjEtZmVlZjEwNWYwYTc3
LzEvN2p2bmFOS0dhUFNRcjdkT211X2tIZ05KWFhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuRPgAwQC
ufMQMA0GCSqGSIb3DQEBCwUAA4IBAQCVIdxZIye+bcLVuqzO4UsRMHhndjLkf5hH
GpFWLcOPW4NhZ0okZcxFASrOUAoHgFr3RUoqtIv9ZZQn2AM5644IcaoXzTYyiQeA
5QthYHwY3tyUM8pmBRX70JIaZVEZG5Ezx6mF/UreCSgCkQ/t6hMpCfRRblheVe6W
q3zvn5t6xzTz7c5FOKgX6fpanO5Y0T95tGuySZ3QW6JJ4WHz4BeXa4eP/3fhwbWm
LHeZ1sXuRttlx2eMfNGMa7q0ABhTeeJGYZJlt7S+Dqc3k/KfwpRy0s9qOLl0ejxu
VLuDRRv0jBU6Jv8qLaVB+kwrSddgTRDU2DcXRJd07CLMaLJbmF6i
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:45:52 2024 by rpki-client on console-fra.rpki-client.org