Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/St_voBpyQJP7v5lDBk-3RLxs57s.roa
File: St_voBpyQJP7v5lDBk-3RLxs57s.roa (raw, json)
Hash identifier: vZigJbi1Z5+OdHBlDLa9jeKJT8tmsJxNYXnoU/b7d/k=
Subject key identifier: 4A:DF:EF:A0:1A:72:40:93:FB:BF:99:43:06:4F:B7:44:BC:6C:E7:BB
Certificate issuer: /CN=6dbd51576b4a93460a465af35e6bf550f5548894
Certificate serial: 018CC8DEDB4B71D715016EF32E702F53F84C
Authority key identifier: 6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/St_voBpyQJP7v5lDBk-3RLxs57s.roa
Signing time: Tue 02 Jan 2024 06:31:37 +0000
ROA not before: Tue 02 Jan 2024 06:31:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209788
IP address blocks: 95.183.44.0/23 maxlen: 24
95.183.46.0/24 maxlen: 24
188.68.80.0/24 maxlen: 24
188.68.91.0/24 maxlen: 24
188.68.90.0/24 maxlen: 24
188.68.92.0/24 maxlen: 24
188.68.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 09:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:db:4b:71:d7:15:01:6e:f3:2e:70:2f:53:f8:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbd51576b4a93460a465af35e6bf550f5548894
Validity
Not Before: Jan 2 06:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4adfefa01a724093fbbf9943064fb744bc6ce7bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0b:62:74:8c:5e:07:67:ed:51:0b:34:29:28:
91:0b:84:5e:d2:d8:4c:19:00:51:04:2e:ff:9d:5b:
4f:f1:9f:74:2a:c8:8a:98:09:63:6c:c0:90:03:1b:
ac:09:4b:cd:a0:d8:d0:9c:dd:26:42:d4:14:60:a0:
1a:cc:88:27:a2:75:e6:9a:a5:51:06:12:f4:fe:11:
9e:04:15:b8:08:41:2f:20:59:73:a3:74:94:35:da:
6a:2d:51:cd:ca:bb:18:92:be:31:f5:61:bd:24:dd:
12:ac:b9:07:c0:7a:e4:fd:66:a7:de:1f:ee:50:b0:
63:60:b5:49:4c:8e:9c:2f:c3:ed:38:b0:2a:1e:db:
1c:5a:ec:3b:95:bd:73:c9:e0:67:32:6e:30:bb:9e:
df:a3:4c:b1:cc:63:da:6d:cc:ab:bb:52:57:73:f9:
33:61:0a:63:77:fb:6e:12:08:1e:1d:a1:20:6b:55:
b3:74:6d:3e:c6:b5:33:da:6d:cd:60:e2:46:b6:bd:
07:38:6a:5f:ff:3a:f4:0a:d4:29:d6:4f:52:64:ff:
75:a7:1b:f8:cf:74:62:8d:71:bc:09:cd:12:f0:ad:
f0:c3:b6:98:1f:93:fc:7e:10:55:8d:fb:81:c0:72:
8e:93:a1:b1:3f:fd:f9:91:c7:75:59:5f:f4:77:0d:
db:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DF:EF:A0:1A:72:40:93:FB:BF:99:43:06:4F:B7:44:BC:6C:E7:BB
X509v3 Authority Key Identifier:
keyid:6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/St_voBpyQJP7v5lDBk-3RLxs57s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.183.44.0-95.183.46.255
188.68.80.0/24
188.68.90.0-188.68.93.255
Signature Algorithm: sha256WithRSAEncryption
a6:2b:5c:0e:16:e7:80:5f:74:7f:3c:8d:c4:2f:48:88:a5:72:
de:f4:4c:b2:a3:d2:c6:d2:64:7c:f9:dc:7f:91:57:b4:13:1c:
7f:71:30:8f:de:03:c2:9e:27:29:9b:4e:9c:10:e9:b7:58:cb:
7a:c3:88:fa:a9:eb:dd:89:f3:e5:0a:1e:56:66:24:11:47:70:
4c:7a:7e:12:3f:70:b9:98:bd:8b:3f:b0:75:af:f9:ee:de:85:
31:76:9b:08:cf:8a:c4:8c:63:9f:3b:31:a3:fa:52:5e:4b:73:
84:54:6d:de:b5:37:ec:9a:96:c8:17:32:6c:24:45:5e:40:19:
25:8a:64:6f:3a:1e:2f:97:1d:2c:94:47:e9:e1:32:8c:a4:33:
21:a7:56:0a:ad:02:0a:3b:ce:9c:45:65:a9:2f:ef:7f:b6:27:
4a:96:b7:68:e5:67:73:f5:af:0e:26:f6:78:71:0b:2f:dc:58:
8f:19:0a:d6:21:52:c1:12:f3:41:76:67:51:86:b9:0f:0f:fb:
3c:37:6d:00:1f:80:93:97:92:c9:6a:2f:6f:d9:3e:f9:24:4f:
ef:44:7d:70:86:7c:c4:aa:91:9d:e4:ac:2e:12:0e:fc:b4:32:
bc:37:76:80:3c:01:03:24:75:bb:0a:b5:1e:d3:e6:ba:4f:62:
64:30:77:d9
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAYzI3ttLcdcVAW7zLnAvU/hMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkYmQ1MTU3NmI0YTkzNDYwYTQ2NWFmMzVlNmJmNTUwZjU1
NDg4OTQwHhcNMjQwMTAyMDYzMTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWRmZWZhMDFhNzI0MDkzZmJiZjk5NDMwNjRmYjc0NGJjNmNlN2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAggtidIxeB2ftUQs0KSiRC4Re0thM
GQBRBC7/nVtP8Z90KsiKmAljbMCQAxusCUvNoNjQnN0mQtQUYKAazIgnonXmmqVR
BhL0/hGeBBW4CEEvIFlzo3SUNdpqLVHNyrsYkr4x9WG9JN0SrLkHwHrk/Wan3h/u
ULBjYLVJTI6cL8PtOLAqHtscWuw7lb1zyeBnMm4wu57fo0yxzGPabcyru1JXc/kz
YQpjd/tuEggeHaEga1WzdG0+xrUz2m3NYOJGtr0HOGpf/zr0CtQp1k9SZP91pxv4
z3RijXG8Cc0S8K3ww7aYH5P8fhBVjfuBwHKOk6GxP/35kcd1WV/0dw3b2wIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFErf76AackCT+7+ZQwZPt0S8bOe7MB8GA1UdIwQY
MBaAFG29UVdrSpNGCkZa815r9VD1VIiUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmIxUlYydEtrMFlLUmxyelhtdjFVUFZVaUpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS84ZmY1MzctNzFlMC00MDNiLTk3OWUt
MWVmN2VmMTdmYTQzLzEvU3Rfdm9CcHlRSlA3djVsREJrLTNSTHhzNTdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS84ZmY1MzctNzFlMC00MDNiLTk3OWUtMWVmN2VmMTdmYTQz
LzEvYmIxUlYydEtrMFlLUmxyelhtdjFVUFZVaUpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiMAwDBAJftywD
BABfty4DBAC8RFAwDAMEAbxEWgMEAbxEXDANBgkqhkiG9w0BAQsFAAOCAQEApitc
DhbngF90fzyNxC9IiKVy3vRMsqPSxtJkfPncf5FXtBMcf3Ewj94Dwp4nKZtOnBDp
t1jLesOI+qnr3Ynz5QoeVmYkEUdwTHp+Ej9wuZi9iz+wda/57t6FMXabCM+KxIxj
nzsxo/pSXktzhFRt3rU37JqWyBcybCRFXkAZJYpkbzoeL5cdLJRH6eEyjKQzIadW
Cq0CCjvOnEVlqS/vf7YnSpa3aOVnc/WvDib2eHELL9xYjxkK1iFSwRLzQXZnUYa5
Dw/7PDdtAB+Ak5eSyWovb9k++SRP70R9cIZ8xKqRneSsLhIO/LQyvDd2gDwBAyR1
uwq1HtPmuk9iZDB32Q==
-----END CERTIFICATE-----
Generated at Sat Jun 1 12:03:22 2024 by rpki-client on console-fra.rpki-client.org