Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/deV2v5oeTkuqC0NC5TW0jCB99S4.roa
File: deV2v5oeTkuqC0NC5TW0jCB99S4.roa (raw, json)
Hash identifier: +5cloL7yuRaitx0pAZiz5XM1tKZtve1R/LeKBNf5xcs=
Subject key identifier: 75:E5:76:BF:9A:1E:4E:4B:AA:0B:43:42:E5:35:B4:8C:20:7D:F5:2E
Certificate issuer: /CN=740f65f302335baa90ed81c05384d53f2332391a
Certificate serial: 018CC94AC2AB3F1ECA7F2B3DAEC88A7ED709
Authority key identifier: 74:0F:65:F3:02:33:5B:AA:90:ED:81:C0:53:84:D5:3F:23:32:39:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dA9l8wIzW6qQ7YHAU4TVPyMyORo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/deV2v5oeTkuqC0NC5TW0jCB99S4.roa
Signing time: Tue 02 Jan 2024 08:29:29 +0000
ROA not before: Tue 02 Jan 2024 08:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206844
IP address blocks: 185.174.160.0/22 maxlen: 24
45.156.32.0/22 maxlen: 24
2a07:1280::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/dA9l8wIzW6qQ7YHAU4TVPyMyORo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/dA9l8wIzW6qQ7YHAU4TVPyMyORo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dA9l8wIzW6qQ7YHAU4TVPyMyORo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:c2:ab:3f:1e:ca:7f:2b:3d:ae:c8:8a:7e:d7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=740f65f302335baa90ed81c05384d53f2332391a
Validity
Not Before: Jan 2 08:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75e576bf9a1e4e4baa0b4342e535b48c207df52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:5c:96:15:cc:5f:58:0c:8d:52:59:ac:d5:ce:
d4:11:5a:f5:e3:77:e9:98:48:cd:72:25:29:25:35:
f1:1b:55:a7:47:2d:13:24:bf:50:7d:e3:7c:b6:99:
0b:f4:a8:91:02:d7:2a:c4:dc:aa:96:43:8a:7c:05:
a0:9d:7f:e2:c6:19:44:d9:6d:ec:eb:7d:75:ea:76:
38:3f:10:8e:5a:d2:09:fc:8f:2f:64:fd:ca:29:aa:
4b:65:3f:22:a4:67:83:0e:8b:85:dd:a2:4a:85:bb:
76:66:32:0c:0a:32:c4:3f:30:76:b6:70:dd:3f:38:
5e:1f:38:c9:dc:64:ef:53:67:fc:04:52:ed:66:0f:
42:43:7e:38:e9:3f:f6:11:e3:91:45:79:83:e5:fe:
b2:d9:01:ce:2b:72:e3:17:a4:2e:69:01:19:d8:ae:
ea:d0:de:9d:5e:31:8b:a6:20:e1:76:97:75:06:3c:
fc:a4:c1:56:9f:79:05:48:c8:63:4a:4a:18:d8:78:
79:3e:07:eb:64:03:b3:eb:b8:6f:a1:e5:6f:0b:67:
ce:56:b8:5c:9c:14:6d:50:ef:45:51:f4:ec:d7:a2:
8f:b2:de:c6:fc:fc:e7:50:7b:fe:ab:cf:19:75:42:
2b:b0:28:95:58:40:b8:07:6b:85:eb:1f:51:23:0f:
31:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E5:76:BF:9A:1E:4E:4B:AA:0B:43:42:E5:35:B4:8C:20:7D:F5:2E
X509v3 Authority Key Identifier:
keyid:74:0F:65:F3:02:33:5B:AA:90:ED:81:C0:53:84:D5:3F:23:32:39:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dA9l8wIzW6qQ7YHAU4TVPyMyORo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/deV2v5oeTkuqC0NC5TW0jCB99S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/dA9l8wIzW6qQ7YHAU4TVPyMyORo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.32.0/22
185.174.160.0/22
IPv6:
2a07:1280::/32
Signature Algorithm: sha256WithRSAEncryption
09:51:de:08:87:4e:34:9d:7c:2b:24:24:40:f5:80:33:be:d5:
94:2b:37:f5:81:b8:f0:78:0e:e7:55:a1:2c:0b:86:6b:9e:57:
73:ec:ec:de:85:6a:01:38:8c:85:99:28:22:be:18:2f:59:28:
5e:51:2d:65:d0:14:1a:63:b6:d7:17:c0:7e:3b:f9:2a:7f:d9:
9d:c9:52:d1:66:4e:e4:5c:8f:16:38:a4:6d:db:d6:5c:b9:55:
bd:57:06:78:c4:8f:73:4f:33:92:85:0c:60:06:ab:76:22:e0:
be:2f:ca:25:96:79:d7:e6:be:61:3e:1a:bf:03:04:c7:26:9d:
41:5c:34:85:f9:9f:39:f3:30:df:1a:53:71:c8:12:10:94:a0:
b6:ba:16:41:ff:e5:76:0d:ae:c5:76:fb:9f:e3:b1:6e:87:60:
4c:3a:c0:f0:82:b2:f0:4f:02:44:44:77:6c:19:c3:69:5e:85:
b4:c7:1d:2b:4d:90:08:dd:88:f8:7b:30:d2:f3:1f:33:2a:63:
ac:34:47:9e:b6:dd:f2:de:4d:7f:67:c9:3c:c7:86:31:94:e8:
0c:f0:4b:ce:b7:71:ed:fd:e2:93:a4:c9:37:0e:66:9c:40:55:
c8:32:5b:20:2e:47:70:e4:00:65:1e:2c:8f:3a:ee:41:e7:79:
a7:41:c6:7a
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYzJSsKrPx7Kfys9rsiKftcJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MGY2NWYzMDIzMzViYWE5MGVkODFjMDUzODRkNTNmMjMz
MjM5MWEwHhcNMjQwMTAyMDgyOTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWU1NzZiZjlhMWU0ZTRiYWEwYjQzNDJlNTM1YjQ4YzIwN2RmNTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVyWFcxfWAyNUlms1c7UEVr143fp
mEjNciUpJTXxG1WnRy0TJL9QfeN8tpkL9KiRAtcqxNyqlkOKfAWgnX/ixhlE2W3s
63116nY4PxCOWtIJ/I8vZP3KKapLZT8ipGeDDouF3aJKhbt2ZjIMCjLEPzB2tnDd
PzheHzjJ3GTvU2f8BFLtZg9CQ3446T/2EeORRXmD5f6y2QHOK3LjF6QuaQEZ2K7q
0N6dXjGLpiDhdpd1Bjz8pMFWn3kFSMhjSkoY2Hh5PgfrZAOz67hvoeVvC2fOVrhc
nBRtUO9FUfTs16KPst7G/PznUHv+q88ZdUIrsCiVWEC4B2uF6x9RIw8x9QIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFHXldr+aHk5LqgtDQuU1tIwgffUuMB8GA1UdIwQY
MBaAFHQPZfMCM1uqkO2BwFOE1T8jMjkaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEE5bDh3SXpXNnFRN1lIQVU0VFZQeU15T1JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8zYjFjMWYtMmQ4Yy00ODYxLWI3MWQt
ZDAzYTJjNDM1YWVjLzEvZGVWMnY1b2VUa3VxQzBOQzVUVzBqQ0I5OVM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8zYjFjMWYtMmQ4Yy00ODYxLWI3MWQtZDAzYTJjNDM1YWVj
LzEvZEE5bDh3SXpXNnFRN1lIQVU0VFZQeU15T1JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLZwgAwQC
ua6gMA0EAgACMAcDBQAqBxKAMA0GCSqGSIb3DQEBCwUAA4IBAQAJUd4Ih040nXwr
JCRA9YAzvtWUKzf1gbjweA7nVaEsC4Zrnldz7OzehWoBOIyFmSgivhgvWSheUS1l
0BQaY7bXF8B+O/kqf9mdyVLRZk7kXI8WOKRt29ZcuVW9VwZ4xI9zTzOShQxgBqt2
IuC+L8ollnnX5r5hPhq/AwTHJp1BXDSF+Z858zDfGlNxyBIQlKC2uhZB/+V2Da7F
dvuf47Fuh2BMOsDwgrLwTwJERHdsGcNpXoW0xx0rTZAI3Yj4ezDS8x8zKmOsNEee
tt3y3k1/Z8k8x4YxlOgM8EvOt3Ht/eKTpMk3DmacQFXIMlsgLkdw5ABlHiyPOu5B
53mnQcZ6
-----END CERTIFICATE-----
Generated at Sat Jun 8 06:41:19 2024 by rpki-client on console-ams.rpki-client.org