Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/VSbJiMeiiakcbDnL0StklOCMjoI.roa
File: VSbJiMeiiakcbDnL0StklOCMjoI.roa (raw, json)
Hash identifier: kooXlKOn2qNn4+OwqmeAG5fg9tWoJ1wR0FlDJDfFd+w=
Subject key identifier: 55:26:C9:88:C7:A2:89:A9:1C:6C:39:CB:D1:2B:64:94:E0:8C:8E:82
Certificate issuer: /CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Certificate serial: 018CC3B6AA4DB974EE3FB27D74E5417129D7
Authority key identifier: 2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/VSbJiMeiiakcbDnL0StklOCMjoI.roa
Signing time: Mon 01 Jan 2024 06:29:37 +0000
ROA not before: Mon 01 Jan 2024 06:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209273
IP address blocks: 217.145.228.0/24 maxlen: 24
217.145.228.0/23 maxlen: 23
217.145.229.0/24 maxlen: 24
212.15.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/LSjPo_0tqcqqZZKEdY3uZwmZNPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/LSjPo_0tqcqqZZKEdY3uZwmZNPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:aa:4d:b9:74:ee:3f:b2:7d:74:e5:41:71:29:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Validity
Not Before: Jan 1 06:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5526c988c7a289a91c6c39cbd12b6494e08c8e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:48:66:63:40:72:d2:a5:4e:2a:5d:f1:3c:6f:
8a:5c:31:63:7d:69:51:1e:14:e5:6c:7b:05:4c:be:
1e:a5:25:f9:6a:c0:19:71:21:f6:cc:2a:1e:fe:8b:
d8:46:c7:0b:0b:db:87:5e:33:5b:4e:6a:63:16:64:
ea:0d:6e:2c:0c:49:32:4c:ec:35:3c:ab:3f:fc:fb:
81:0b:74:dc:e2:db:3b:6f:ec:3d:6f:bf:a4:b1:7c:
33:17:3e:0a:b1:2d:65:29:7a:60:0f:0c:cb:61:64:
e7:d7:31:5b:0a:cc:f8:17:aa:70:80:24:88:c4:5c:
5d:96:9f:29:d7:66:ba:00:89:ee:5b:36:9b:4e:f1:
0e:6d:04:66:58:ad:ea:83:d4:63:92:8f:91:e6:9e:
e6:7d:20:c0:03:2d:37:33:bd:68:85:10:e4:78:4a:
4b:a5:00:e2:53:a3:ff:32:ee:63:88:ac:17:7b:9f:
15:4b:99:6c:f3:17:16:53:2e:00:ac:c6:cb:cb:3d:
17:5e:20:89:92:53:db:4e:cd:64:6a:62:a6:31:c3:
38:35:cf:a6:8f:9b:de:c6:6b:1d:1b:90:38:35:00:
88:da:30:e3:8b:c2:cf:b9:a6:bf:d4:a3:e5:54:50:
8e:16:1c:10:1e:42:08:ee:41:a5:ee:f8:fc:61:c7:
3f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:26:C9:88:C7:A2:89:A9:1C:6C:39:CB:D1:2B:64:94:E0:8C:8E:82
X509v3 Authority Key Identifier:
keyid:2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/VSbJiMeiiakcbDnL0StklOCMjoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/LSjPo_0tqcqqZZKEdY3uZwmZNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.15.80.0/24
217.145.228.0/23
Signature Algorithm: sha256WithRSAEncryption
02:93:b4:9b:8d:1e:b9:66:a5:7a:2f:19:48:6d:cf:14:58:cd:
bd:9e:3a:ec:1b:57:0a:02:25:21:86:ac:dd:d2:70:fd:db:46:
5b:8f:46:be:f7:80:9e:eb:7a:1e:51:c0:8e:37:63:fc:ab:26:
c7:57:89:86:cb:07:7b:52:78:7d:69:4c:08:35:49:8b:20:54:
c0:35:ed:d8:70:14:eb:25:d5:8c:3a:41:9c:ce:91:48:f1:6c:
f7:93:b6:58:c8:3f:89:7c:87:ff:2b:ad:05:40:e9:37:74:4e:
b8:e1:51:03:86:51:d3:70:32:b1:db:36:24:ad:87:d2:8b:50:
45:7b:63:f1:b1:c3:5a:99:b1:7a:d2:6c:4d:88:37:f4:68:e1:
14:f5:53:50:b8:bc:4b:64:c0:d8:0b:1a:45:6b:56:4c:d8:2b:
78:b0:5a:2e:9d:65:f8:0d:b5:fb:ad:d0:e8:1f:42:c6:be:30:
de:11:02:12:0c:c2:80:d9:b2:9f:99:29:1b:8b:79:ce:b4:86:
4d:14:88:ae:ff:7e:18:3d:27:7a:13:da:2a:79:a5:c9:72:ea:
b3:68:3b:ae:cf:a7:4d:56:99:f7:04:5d:43:3e:48:20:15:51:
54:49:ef:f1:48:5b:0c:49:18:e4:c1:15:a6:07:0e:20:c7:b9:
aa:63:48:c1
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzDtqpNuXTuP7J9dOVBcSnXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMjhjZmEzZmQyZGE5Y2FhYTY1OTI4NDc1OGRlZTY3MDk5
OTM0ZjgwHhcNMjQwMTAxMDYyOTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTI2Yzk4OGM3YTI4OWE5MWM2YzM5Y2JkMTJiNjQ5NGUwOGM4ZTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhkhmY0By0qVOKl3xPG+KXDFjfWlR
HhTlbHsFTL4epSX5asAZcSH2zCoe/ovYRscLC9uHXjNbTmpjFmTqDW4sDEkyTOw1
PKs//PuBC3Tc4ts7b+w9b7+ksXwzFz4KsS1lKXpgDwzLYWTn1zFbCsz4F6pwgCSI
xFxdlp8p12a6AInuWzabTvEObQRmWK3qg9Rjko+R5p7mfSDAAy03M71ohRDkeEpL
pQDiU6P/Mu5jiKwXe58VS5ls8xcWUy4ArMbLyz0XXiCJklPbTs1kamKmMcM4Nc+m
j5vexmsdG5A4NQCI2jDji8LPuaa/1KPlVFCOFhwQHkII7kGl7vj8Ycc/iQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFUmyYjHoompHGw5y9ErZJTgjI6CMB8GA1UdIwQY
MBaAFC0oz6P9LanKqmWShHWN7mcJmTT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFNqUG9fMHRxY3FxWlpLRWRZM3Vad21aTlBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mZWJhYjAtZDkzYS00NzA0LTlhNzEt
M2FkNTJlOGI5NjI4LzEvVlNiSmlNZWlpYWtjYkRuTDBTdGtsT0NNam9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9mZWJhYjAtZDkzYS00NzA0LTlhNzEtM2FkNTJlOGI5NjI4
LzEvTFNqUG9fMHRxY3FxWlpLRWRZM3Vad21aTlBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1A9QAwQB
2ZHkMA0GCSqGSIb3DQEBCwUAA4IBAQACk7SbjR65ZqV6LxlIbc8UWM29njrsG1cK
AiUhhqzd0nD920Zbj0a+94Ce63oeUcCON2P8qybHV4mGywd7Unh9aUwINUmLIFTA
Ne3YcBTrJdWMOkGczpFI8Wz3k7ZYyD+JfIf/K60FQOk3dE644VEDhlHTcDKx2zYk
rYfSi1BFe2PxscNambF60mxNiDf0aOEU9VNQuLxLZMDYCxpFa1ZM2Ct4sFounWX4
DbX7rdDoH0LGvjDeEQISDMKA2bKfmSkbi3nOtIZNFIiu/34YPSd6E9oqeaXJcuqz
aDuuz6dNVpn3BF1DPkggFVFUSe/xSFsMSRjkwRWmBw4gx7mqY0jB
-----END CERTIFICATE-----
Generated at Sat Jun 1 16:53:42 2024 by rpki-client on console-ams.rpki-client.org