Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sLsv7PcXJFZp2s9rj7ItI0Db32Y.roa
File: sLsv7PcXJFZp2s9rj7ItI0Db32Y.roa (raw, json)
Hash identifier: 5zzGJDTlHbFicMcMnulH5kEDreMgoA19lWizhPVsN/8=
Subject key identifier: B0:BB:2F:EC:F7:17:24:56:69:DA:CF:6B:8F:B2:2D:23:40:DB:DF:66
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 018CC8015451F50033FFDC1B4F406B76F1B5
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sLsv7PcXJFZp2s9rj7ItI0Db32Y.roa
Signing time: Tue 02 Jan 2024 02:29:39 +0000
ROA not before: Tue 02 Jan 2024 02:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62214
IP address blocks: 195.90.98.0/24 maxlen: 24
195.90.115.0/24 maxlen: 24
2a01:7d80:c000::/40 maxlen: 40
2a01:7d80:2400::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:54:51:f5:00:33:ff:dc:1b:4f:40:6b:76:f1:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Jan 2 02:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0bb2fecf717245669dacf6b8fb22d2340dbdf66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c6:75:bd:33:97:f1:90:b4:cf:c7:d7:28:a4:
4f:c6:28:4b:24:fd:cb:b6:3b:e6:d7:a9:98:d4:7f:
ab:81:83:88:2d:1f:30:e4:3c:1b:d6:8f:d8:05:18:
0a:79:04:7c:ac:02:e6:f5:34:69:7c:3c:15:0f:ba:
cb:47:03:80:fb:9e:81:01:ad:d9:6a:bf:f7:e5:ea:
b7:33:52:3e:7d:e5:35:98:d6:51:86:d1:40:c0:86:
2d:e3:52:d2:63:11:ba:54:82:c3:cc:52:ec:48:6d:
13:b5:41:4c:3f:c5:f3:66:20:5e:fa:0c:dd:21:21:
c7:e5:3c:52:ef:f5:02:18:03:a6:77:00:36:87:94:
8f:cf:96:70:d4:18:89:96:08:3f:f2:e1:19:99:65:
1d:ca:89:96:66:05:11:80:f4:15:3a:c0:ab:9b:e5:
b4:85:de:ec:bb:93:99:58:48:46:e3:aa:b8:d9:7e:
bc:98:03:cb:5f:28:51:ca:9f:09:3c:e6:4f:5f:34:
67:7b:ec:eb:d5:39:5e:b5:0a:c8:c8:35:58:50:90:
bb:2e:5f:3a:d3:19:1c:44:86:85:18:c4:58:98:20:
21:30:94:90:f7:ee:97:7a:73:69:34:09:79:c3:13:
6b:49:28:5c:b7:2c:13:4f:16:d0:aa:e3:c4:0d:73:
03:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BB:2F:EC:F7:17:24:56:69:DA:CF:6B:8F:B2:2D:23:40:DB:DF:66
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sLsv7PcXJFZp2s9rj7ItI0Db32Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.90.98.0/24
195.90.115.0/24
IPv6:
2a01:7d80:2400::/40
2a01:7d80:c000::/40
Signature Algorithm: sha256WithRSAEncryption
38:e8:79:cb:18:81:1e:f3:a2:f0:1d:e2:3d:d0:a5:bc:16:d2:
1f:91:e2:3b:56:1c:23:c8:6e:3e:10:5b:57:f5:2e:55:2f:43:
6c:f0:49:d2:ac:fb:fc:5e:f4:7c:1d:f1:b2:c5:d9:f1:8a:fb:
49:12:bc:7e:3d:af:cb:df:1d:6e:62:ee:fe:a3:b9:90:a2:cd:
d9:22:cb:b0:d3:53:3d:a3:39:12:1a:49:2e:c8:c1:aa:ad:f1:
a0:c1:48:09:7c:13:66:64:63:cd:1a:84:72:5c:e3:14:82:39:
d3:28:ce:fe:28:b9:aa:ff:3d:d9:00:e2:27:a5:68:95:ee:7a:
3d:2d:9d:3b:99:57:70:ad:5b:b6:b8:f5:58:1c:c0:2a:8c:dd:
b4:a8:89:03:9e:66:f8:3d:73:55:e9:56:59:5d:9a:f8:bb:d5:
18:94:8b:13:b0:d0:af:3f:77:ed:5f:b0:7b:65:48:59:55:5b:
8a:b8:3f:4d:59:25:56:28:13:22:8b:10:79:c1:c0:96:12:9b:
5c:94:61:4f:94:80:84:8a:97:7e:96:5c:70:30:f6:08:42:d2:
9d:9f:ab:ae:ce:b9:5d:11:7e:d2:37:e6:2a:0f:7e:12:33:62:
9e:87:8b:af:ec:36:7e:d0:e5:51:d2:0c:1e:1b:41:6e:09:b9:
18:7c:14:cb
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYzIAVRR9QAz/9wbT0BrdvG1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxZThmNDFmNmIwMmI5M2Y4NWQxYTdiNDhiNDhjZmEzMjJm
MDg4ZjgwHhcNMjQwMTAyMDIyOTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGJiMmZlY2Y3MTcyNDU2NjlkYWNmNmI4ZmIyMmQyMzQwZGJkZjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAncZ1vTOX8ZC0z8fXKKRPxihLJP3L
tjvm16mY1H+rgYOILR8w5Dwb1o/YBRgKeQR8rALm9TRpfDwVD7rLRwOA+56BAa3Z
ar/35eq3M1I+feU1mNZRhtFAwIYt41LSYxG6VILDzFLsSG0TtUFMP8XzZiBe+gzd
ISHH5TxS7/UCGAOmdwA2h5SPz5Zw1BiJlgg/8uEZmWUdyomWZgURgPQVOsCrm+W0
hd7su5OZWEhG46q42X68mAPLXyhRyp8JPOZPXzRne+zr1TletQrIyDVYUJC7Ll86
0xkcRIaFGMRYmCAhMJSQ9+6XenNpNAl5wxNrSShctywTTxbQquPEDXMDEQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFLC7L+z3FyRWadrPa4+yLSNA299mMB8GA1UdIwQY
MBaAFOHo9B9rArk/hdGntItIz6Mi8Ij4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGVqMEgyc0N1VC1GMGFlMGkwalBveUx3aVBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS85YmE5NDAtMDA3OC00ZmQwLWFmZGUt
NTM3YTJiMGI0ZGRhLzEvc0xzdjdQY1hKRlpwMnM5cmo3SXRJMERiMzJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS85YmE5NDAtMDA3OC00ZmQwLWFmZGUtNTM3YTJiMGI0ZGRh
LzEvNGVqMEgyc0N1VC1GMGFlMGkwalBveUx3aVBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQAw1piAwQA
w1pzMBYEAgACMBADBgAqAX2AJAMGACoBfYDAMA0GCSqGSIb3DQEBCwUAA4IBAQA4
6HnLGIEe86LwHeI90KW8FtIfkeI7VhwjyG4+EFtX9S5VL0Ns8EnSrPv8XvR8HfGy
xdnxivtJErx+Pa/L3x1uYu7+o7mQos3ZIsuw01M9ozkSGkkuyMGqrfGgwUgJfBNm
ZGPNGoRyXOMUgjnTKM7+KLmq/z3ZAOInpWiV7no9LZ07mVdwrVu2uPVYHMAqjN20
qIkDnmb4PXNV6VZZXZr4u9UYlIsTsNCvP3ftX7B7ZUhZVVuKuD9NWSVWKBMiixB5
wcCWEptclGFPlICEipd+llxwMPYIQtKdn6uuzrldEX7SN+YqD34SM2Keh4uv7DZ+
0OVR0gweG0FuCbkYfBTL
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:24:24 2024 by rpki-client on console-fra.rpki-client.org