Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/b14193-f569-434a-aea4-f5deaa9bf0f7/1/eZ7ydXd1EctC-jHXp_eZ_BY0TCc.roa
File: eZ7ydXd1EctC-jHXp_eZ_BY0TCc.roa (raw, json)
Hash identifier: F16TBvm8XUf5gurF2b5cJcVigXMWmVM4Gs9uK5UF5RA=
Subject key identifier: 79:9E:F2:75:77:75:11:CB:42:FA:31:D7:A7:F7:99:FC:16:34:4C:27
Certificate issuer: /CN=7afa135b2072dfcc4ef3b541c136bc8001ef4307
Certificate serial: 018CC348A0E3C9CD5CED5BEA783F6CC099D3
Authority key identifier: 7A:FA:13:5B:20:72:DF:CC:4E:F3:B5:41:C1:36:BC:80:01:EF:43:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evoTWyBy38xO87VBwTa8gAHvQwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/b14193-f569-434a-aea4-f5deaa9bf0f7/1/eZ7ydXd1EctC-jHXp_eZ_BY0TCc.roa
Signing time: Mon 01 Jan 2024 04:29:25 +0000
ROA not before: Mon 01 Jan 2024 04:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58193
IP address blocks: 185.154.86.0/24 maxlen: 24
194.48.100.0/22 maxlen: 24
178.251.124.0/24 maxlen: 24
178.251.125.0/24 maxlen: 24
2a02:fae0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/b14193-f569-434a-aea4-f5deaa9bf0f7/1/evoTWyBy38xO87VBwTa8gAHvQwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/b14193-f569-434a-aea4-f5deaa9bf0f7/1/evoTWyBy38xO87VBwTa8gAHvQwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/evoTWyBy38xO87VBwTa8gAHvQwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:a0:e3:c9:cd:5c:ed:5b:ea:78:3f:6c:c0:99:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7afa135b2072dfcc4ef3b541c136bc8001ef4307
Validity
Not Before: Jan 1 04:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=799ef275777511cb42fa31d7a7f799fc16344c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3b:4a:cb:46:c7:c5:7c:a4:2a:1f:cf:dd:d3:
4f:5f:c8:e4:6e:e4:47:df:3a:7f:92:05:9d:44:fd:
dc:50:55:87:87:3c:87:dd:c5:6c:2b:7c:a2:3c:ad:
19:02:d6:f9:de:77:22:6c:5c:ac:0e:84:7f:c9:f3:
34:30:26:af:1b:b8:4e:d9:26:eb:32:7f:3e:d8:11:
f6:bd:96:be:84:97:fd:10:16:a6:63:2b:7a:d4:70:
2d:f2:59:e8:8f:73:d0:b6:df:e8:43:d0:ae:9d:4b:
63:6e:ac:0a:98:c1:c1:86:f9:6a:a3:be:21:0c:20:
06:17:7c:5a:b1:12:ad:45:22:03:84:f1:80:2e:97:
9f:ee:1c:2d:28:26:90:3d:4d:e9:42:03:d6:05:f0:
e1:34:6f:7f:71:aa:b2:b4:6e:87:bd:ff:06:db:41:
f0:b7:ca:22:3e:4d:a5:62:eb:4c:9c:0c:27:f0:a8:
b2:25:60:fe:1d:03:80:14:e1:5e:be:b6:27:40:1c:
63:cd:83:da:5b:46:f3:1b:99:9d:9a:28:e0:38:71:
4d:35:df:0b:75:e3:5c:96:7d:50:37:ff:5b:13:9c:
cb:1e:b6:f4:7f:88:99:12:7a:83:75:05:a2:dc:4d:
02:90:fe:bf:9e:80:43:6b:b8:1c:27:e0:3c:96:32:
a2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:9E:F2:75:77:75:11:CB:42:FA:31:D7:A7:F7:99:FC:16:34:4C:27
X509v3 Authority Key Identifier:
keyid:7A:FA:13:5B:20:72:DF:CC:4E:F3:B5:41:C1:36:BC:80:01:EF:43:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evoTWyBy38xO87VBwTa8gAHvQwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b14193-f569-434a-aea4-f5deaa9bf0f7/1/eZ7ydXd1EctC-jHXp_eZ_BY0TCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b14193-f569-434a-aea4-f5deaa9bf0f7/1/evoTWyBy38xO87VBwTa8gAHvQwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.124.0/23
185.154.86.0/24
194.48.100.0/22
IPv6:
2a02:fae0::/29
Signature Algorithm: sha256WithRSAEncryption
56:f5:85:08:4c:8b:89:68:1e:fd:87:15:4f:67:da:3e:ef:49:
46:9a:cf:85:e9:fd:dc:f9:e3:c4:86:66:d6:c7:bc:1d:f6:b5:
fc:d8:75:76:51:66:85:60:a0:47:08:6a:8a:d4:aa:a8:35:d3:
f3:67:e9:2b:d9:8b:66:6c:10:35:5a:fb:cc:f8:f0:f6:64:9d:
f0:fd:69:56:de:d4:5b:ec:e9:bc:05:37:cf:05:34:ce:3d:d5:
e0:8b:d6:51:f9:0c:db:73:bb:87:39:09:a2:48:49:95:87:04:
cf:61:83:f1:cb:d2:c7:38:ef:30:10:4c:56:42:12:9b:63:ea:
31:5d:7b:f5:b8:49:67:2e:91:54:a3:72:7e:a5:60:f8:cf:c7:
d6:96:2d:94:9f:de:b7:16:75:3b:ae:48:44:f0:20:ba:71:75:
12:fc:d3:43:4b:98:8a:ee:76:15:e8:1d:bf:ad:1a:86:df:07:
b2:b6:f1:65:97:96:18:56:80:9b:48:5e:66:1b:1a:c4:6c:9c:
0c:9d:56:89:a3:b1:b5:e2:d4:a4:10:99:d7:32:16:e3:88:c2:
8c:e9:82:30:0b:d0:3a:7c:ed:cd:d1:0e:1c:e4:a9:af:12:1b:
4c:5c:7c:17:2d:cf:72:5e:f3:dd:71:76:4a:d3:5a:98:a0:b3:
fb:53:24:46
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYzDSKDjyc1c7VvqeD9swJnTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhZmExMzViMjA3MmRmY2M0ZWYzYjU0MWMxMzZiYzgwMDFl
ZjQzMDcwHhcNMjQwMTAxMDQyOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTllZjI3NTc3NzUxMWNiNDJmYTMxZDdhN2Y3OTlmYzE2MzQ0YzI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjztKy0bHxXykKh/P3dNPX8jkbuRH
3zp/kgWdRP3cUFWHhzyH3cVsK3yiPK0ZAtb53ncibFysDoR/yfM0MCavG7hO2Sbr
Mn8+2BH2vZa+hJf9EBamYyt61HAt8lnoj3PQtt/oQ9CunUtjbqwKmMHBhvlqo74h
DCAGF3xasRKtRSIDhPGALpef7hwtKCaQPU3pQgPWBfDhNG9/caqytG6Hvf8G20Hw
t8oiPk2lYutMnAwn8KiyJWD+HQOAFOFevrYnQBxjzYPaW0bzG5mdmijgOHFNNd8L
deNcln1QN/9bE5zLHrb0f4iZEnqDdQWi3E0CkP6/noBDa7gcJ+A8ljKigQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFHme8nV3dRHLQvox16f3mfwWNEwnMB8GA1UdIwQY
MBaAFHr6E1sgct/MTvO1QcE2vIAB70MHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXZvVFd5QnkzOHhPODdWQndUYThnQUh2UXdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9iMTQxOTMtZjU2OS00MzRhLWFlYTQt
ZjVkZWFhOWJmMGY3LzEvZVo3eWRYZDFFY3RDLWpIWHBfZVpfQlkwVENjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9iMTQxOTMtZjU2OS00MzRhLWFlYTQtZjVkZWFhOWJmMGY3
LzEvZXZvVFd5QnkzOHhPODdWQndUYThnQUh2UXdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQBsvt8AwQA
uZpWAwQCwjBkMA0EAgACMAcDBQMqAvrgMA0GCSqGSIb3DQEBCwUAA4IBAQBW9YUI
TIuJaB79hxVPZ9o+70lGms+F6f3c+ePEhmbWx7wd9rX82HV2UWaFYKBHCGqK1Kqo
NdPzZ+kr2YtmbBA1WvvM+PD2ZJ3w/WlW3tRb7Om8BTfPBTTOPdXgi9ZR+Qzbc7uH
OQmiSEmVhwTPYYPxy9LHOO8wEExWQhKbY+oxXXv1uElnLpFUo3J+pWD4z8fWli2U
n963FnU7rkhE8CC6cXUS/NNDS5iK7nYV6B2/rRqG3weytvFll5YYVoCbSF5mGxrE
bJwMnVaJo7G14tSkEJnXMhbjiMKM6YIwC9A6fO3N0Q4c5KmvEhtMXHwXLc9yXvPd
cXZK01qYoLP7UyRG
-----END CERTIFICATE-----
Generated at Sat Jun 1 12:03:13 2024 by rpki-client on console-fra.rpki-client.org