Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/_8Yg-vYpHziKR6qEt3u57Y1Nl0k.roa
File: _8Yg-vYpHziKR6qEt3u57Y1Nl0k.roa (raw, json)
Hash identifier: ekM5dJ3zXPAHvhhGRD6B6L4MZbiVLv4jH1TmnMGjYjM=
Subject key identifier: FF:C6:20:FA:F6:29:1F:38:8A:47:AA:84:B7:7B:B9:ED:8D:4D:97:49
Certificate issuer: /CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c
Certificate serial: 018CC7276E0508D6236EEEF8089E531CB603
Authority key identifier: ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/_8Yg-vYpHziKR6qEt3u57Y1Nl0k.roa
Signing time: Mon 01 Jan 2024 22:31:39 +0000
ROA not before: Mon 01 Jan 2024 22:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197730
IP address blocks: 188.64.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:6e:05:08:d6:23:6e:ee:f8:08:9e:53:1c:b6:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c
Validity
Not Before: Jan 1 22:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffc620faf6291f388a47aa84b77bb9ed8d4d9749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:29:6e:4b:1e:49:a9:b0:a2:04:6d:dc:f2:c4:
0a:d0:94:51:27:59:83:5c:6d:b0:fb:73:67:9e:82:
bc:76:b4:bd:8d:57:6c:39:a3:95:8b:15:d1:66:39:
4e:05:b3:9f:5e:8a:61:10:f7:83:e0:32:ba:06:be:
96:d8:5a:f0:fb:d0:46:3b:8a:dc:59:d6:0b:4a:65:
50:75:dc:4c:62:16:d3:ea:e7:52:10:fc:81:26:ca:
b3:a0:b4:1e:3e:ec:75:66:79:b7:dc:f0:4f:2c:5a:
d0:99:db:d6:54:6f:57:35:d4:cf:05:72:56:03:11:
13:49:29:f3:d8:be:b0:fc:d5:37:91:25:43:e4:6d:
0d:16:64:aa:1b:e2:84:15:19:d9:14:1f:17:08:80:
b2:85:80:6e:42:bd:45:fc:2d:25:dc:b1:d9:72:a3:
6a:18:24:4b:99:b1:d3:bf:71:0c:8c:e9:65:b0:74:
c0:02:0d:ba:b9:4e:c8:ae:e7:45:1d:37:a0:73:21:
df:0f:1d:08:ec:f5:c9:ba:87:34:1f:c2:92:5c:e0:
8c:14:be:24:35:65:76:c2:ef:1c:1d:13:fd:f8:be:
50:93:59:8e:3d:d4:b8:88:3c:df:71:b1:71:be:59:
6c:84:23:17:6d:47:c0:3a:a4:80:ee:6e:64:fa:67:
8d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C6:20:FA:F6:29:1F:38:8A:47:AA:84:B7:7B:B9:ED:8D:4D:97:49
X509v3 Authority Key Identifier:
keyid:ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/_8Yg-vYpHziKR6qEt3u57Y1Nl0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.143.0/24
Signature Algorithm: sha256WithRSAEncryption
89:b6:01:32:77:16:e3:45:89:e7:40:79:ca:1b:39:38:d1:c6:
d9:3e:48:f1:56:42:26:75:8b:50:a8:4c:75:88:1c:f7:8f:d1:
c5:37:be:2d:b1:ef:62:e6:9e:14:c2:3d:e3:80:57:56:d6:19:
56:b1:41:bf:ef:e5:7f:95:88:45:67:3d:df:1c:8a:5c:e3:02:
78:31:b3:f6:07:42:6e:71:ff:f0:2a:dd:d0:52:b6:7f:1a:6d:
d9:ca:88:a2:e2:13:ce:d3:b7:08:a6:8b:2e:63:bf:c7:0c:e7:
93:64:3c:02:98:82:d9:f8:fc:e5:5e:9b:9b:58:6d:58:3b:ba:
05:fc:2c:9f:c6:28:0f:da:a0:69:4f:d1:08:79:90:c8:f6:ee:
62:72:67:72:5e:52:d1:1f:0b:b2:f9:ac:52:2b:dd:44:6d:9a:
f5:53:90:be:4a:6a:46:7c:61:0c:91:bd:7e:17:69:39:25:91:
18:46:8b:5e:b3:27:76:ff:1c:20:99:dc:46:3c:bd:f6:73:db:
56:0a:d8:7e:49:90:c9:f7:25:b1:c0:6a:9c:19:b0:4c:f6:a3:
6a:2c:81:fc:96:ba:a4:ff:35:66:60:c6:07:f8:52:0b:2c:fe:
49:f2:87:16:a4:7c:bf:3e:1f:0a:9c:6f:0c:55:a5:c1:5c:b7:
29:dc:cb:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJ24FCNYjbu74CJ5THLYDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkNWE2YmEyZDIyNDhiYzQ3ODJhYzBmZGIzYzY0Yjk0NjY0
MGIwOWMwHhcNMjQwMTAxMjIzMTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmM2MjBmYWY2MjkxZjM4OGE0N2FhODRiNzdiYjllZDhkNGQ5NzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiluSx5JqbCiBG3c8sQK0JRRJ1mD
XG2w+3NnnoK8drS9jVdsOaOVixXRZjlOBbOfXophEPeD4DK6Br6W2Frw+9BGO4rc
WdYLSmVQddxMYhbT6udSEPyBJsqzoLQePux1Znm33PBPLFrQmdvWVG9XNdTPBXJW
AxETSSnz2L6w/NU3kSVD5G0NFmSqG+KEFRnZFB8XCICyhYBuQr1F/C0l3LHZcqNq
GCRLmbHTv3EMjOllsHTAAg26uU7IrudFHTegcyHfDx0I7PXJuoc0H8KSXOCMFL4k
NWV2wu8cHRP9+L5Qk1mOPdS4iDzfcbFxvllshCMXbUfAOqSA7m5k+meNNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP/GIPr2KR84ikeqhLd7ue2NTZdJMB8GA1UdIwQY
MBaAFO1aa6LSJIvEeCrA/bPGS5RmQLCcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUt
MTA3YThkODViZDMwLzEvXzhZZy12WXBIemlLUjZxRXQzdTU3WTFObDBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUtMTA3YThkODViZDMw
LzEvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvECPMA0G
CSqGSIb3DQEBCwUAA4IBAQCJtgEydxbjRYnnQHnKGzk40cbZPkjxVkImdYtQqEx1
iBz3j9HFN74tse9i5p4Uwj3jgFdW1hlWsUG/7+V/lYhFZz3fHIpc4wJ4MbP2B0Ju
cf/wKt3QUrZ/Gm3Zyoii4hPO07cIposuY7/HDOeTZDwCmILZ+PzlXpubWG1YO7oF
/CyfxigP2qBpT9EIeZDI9u5icmdyXlLRHwuy+axSK91EbZr1U5C+SmpGfGEMkb1+
F2k5JZEYRotesyd2/xwgmdxGPL32c9tWCth+SZDJ9yWxwGqcGbBM9qNqLIH8lrqk
/zVmYMYH+FILLP5J8ocWpHy/Ph8KnG8MVaXBXLcp3MtV
-----END CERTIFICATE-----
Generated at Fri Jun 7 23:11:55 2024 by rpki-client on console-fra.rpki-client.org