Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/573f0b-5325-41d3-b9ff-8f7d56b7b417/1/MBEtyYcIsOXtbG5RZ9dIu6_xBxA.roa
File: MBEtyYcIsOXtbG5RZ9dIu6_xBxA.roa (raw, json)
Hash identifier: rO1pcc7moM4NMy2osPHXvwUi0WSb9sLywqzGn2ngxbo=
Subject key identifier: 30:11:2D:C9:87:08:B0:E5:ED:6C:6E:51:67:D7:48:BB:AF:F1:07:10
Certificate issuer: /CN=1bb29b3f158fa80710c12a58b69fb926098d5129
Certificate serial: 018CC801A02A5C1D77BF5A9314EAAF4AD11C
Authority key identifier: 1B:B2:9B:3F:15:8F:A8:07:10:C1:2A:58:B6:9F:B9:26:09:8D:51:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7KbPxWPqAcQwSpYtp-5JgmNUSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/573f0b-5325-41d3-b9ff-8f7d56b7b417/1/MBEtyYcIsOXtbG5RZ9dIu6_xBxA.roa
Signing time: Tue 02 Jan 2024 02:29:58 +0000
ROA not before: Tue 02 Jan 2024 02:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47782
IP address blocks: 95.215.245.0/24 maxlen: 24
95.215.244.0/22 maxlen: 22
95.215.244.0/24 maxlen: 24
95.215.246.0/24 maxlen: 24
178.216.208.0/24 maxlen: 24
178.216.208.0/21 maxlen: 21
178.216.210.0/24 maxlen: 24
178.216.209.0/24 maxlen: 24
178.216.212.0/24 maxlen: 24
178.216.211.0/24 maxlen: 24
178.216.213.0/24 maxlen: 24
95.215.247.0/24 maxlen: 24
178.216.215.0/24 maxlen: 24
178.216.214.0/24 maxlen: 24
91.205.48.0/24 maxlen: 24
91.205.48.0/22 maxlen: 22
91.205.49.0/24 maxlen: 24
91.205.51.0/24 maxlen: 24
91.205.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/573f0b-5325-41d3-b9ff-8f7d56b7b417/1/G7KbPxWPqAcQwSpYtp-5JgmNUSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/573f0b-5325-41d3-b9ff-8f7d56b7b417/1/G7KbPxWPqAcQwSpYtp-5JgmNUSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/G7KbPxWPqAcQwSpYtp-5JgmNUSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:a0:2a:5c:1d:77:bf:5a:93:14:ea:af:4a:d1:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bb29b3f158fa80710c12a58b69fb926098d5129
Validity
Not Before: Jan 2 02:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30112dc98708b0e5ed6c6e5167d748bbaff10710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:30:e4:8c:7b:f0:59:9e:59:28:63:15:63:05:
69:08:ab:26:4b:e8:20:5f:33:e3:fe:3d:a1:4c:6c:
c6:71:aa:af:64:6c:8b:28:44:97:e9:c2:1b:14:83:
72:6c:4d:8c:6c:c0:03:f9:2c:25:59:b1:3b:58:ef:
a9:9b:44:87:6a:a2:0c:12:96:6b:92:7e:23:1a:84:
d9:32:0d:a3:52:50:77:19:8f:b3:17:4b:d4:52:17:
8f:48:e9:93:d1:32:86:c4:ef:96:cd:94:43:bf:3f:
5f:dd:95:9f:78:4d:f6:79:7c:1a:78:ee:99:47:0b:
2c:38:e9:33:7e:27:39:6a:0c:ed:62:57:61:9b:35:
e9:84:c2:b3:cb:4d:2d:3f:8b:d8:f5:34:26:0a:41:
c2:0b:c5:14:f5:27:43:f8:99:7d:48:0f:d6:68:40:
20:ba:67:7f:77:d7:d0:90:46:62:80:4f:39:88:72:
68:1d:e7:3b:d0:5c:c5:ee:20:89:9b:ce:56:58:cc:
f9:0e:ab:7f:35:72:8c:77:06:e7:af:67:75:32:d5:
59:4d:cc:35:b8:3e:db:29:bb:5a:9b:80:30:b7:f2:
3a:b9:6c:cf:a7:ab:6d:03:74:ac:8b:c7:0f:b9:9f:
ba:79:26:53:63:0d:71:56:ae:f4:5a:f5:c2:ae:f6:
60:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:11:2D:C9:87:08:B0:E5:ED:6C:6E:51:67:D7:48:BB:AF:F1:07:10
X509v3 Authority Key Identifier:
keyid:1B:B2:9B:3F:15:8F:A8:07:10:C1:2A:58:B6:9F:B9:26:09:8D:51:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7KbPxWPqAcQwSpYtp-5JgmNUSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/573f0b-5325-41d3-b9ff-8f7d56b7b417/1/MBEtyYcIsOXtbG5RZ9dIu6_xBxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/573f0b-5325-41d3-b9ff-8f7d56b7b417/1/G7KbPxWPqAcQwSpYtp-5JgmNUSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.48.0/22
95.215.244.0/22
178.216.208.0/21
Signature Algorithm: sha256WithRSAEncryption
84:a9:ce:a0:cd:6d:11:5c:39:e9:75:44:b0:2f:7d:9f:0a:fe:
f6:01:36:7f:a8:2c:0d:e9:e1:d3:55:88:9c:c5:07:44:78:8f:
10:93:13:1f:0f:ed:ef:15:05:99:ab:da:6c:3e:35:0d:df:c4:
23:22:3e:61:e6:91:fb:8e:3e:67:44:a0:e3:87:9b:29:8a:7d:
b2:10:69:61:60:01:07:9e:33:b5:85:05:ef:37:a2:f9:b0:ec:
82:f7:62:0c:ea:e2:c6:ed:14:67:40:13:9b:06:21:31:41:5e:
98:7c:9c:69:f0:89:f6:6d:50:47:b2:bc:04:cd:15:02:2e:d4:
d4:20:13:b0:fb:1f:ab:47:98:3d:ae:8b:d6:b4:a6:aa:7d:dd:
3b:5b:42:a9:58:6f:06:84:a9:e5:f6:2b:ec:79:4e:82:90:5e:
da:73:c8:1a:de:be:f2:4d:f8:c5:f5:38:30:15:88:c2:d1:ab:
02:db:e5:03:d5:a0:7e:c9:2a:2d:62:3d:c7:aa:3f:e2:9d:41:
06:7b:cf:42:ee:c9:26:82:82:eb:6d:cf:35:fa:6a:5c:bf:49:
09:11:b4:a4:51:22:8b:52:81:9e:5c:79:da:36:b6:13:6f:e1:
68:07:11:ea:42:ec:00:ea:09:fc:f7:9f:d8:eb:7b:d0:dc:c9:
35:3c:82:ce
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzIAaAqXB13v1qTFOqvStEcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiYjI5YjNmMTU4ZmE4MDcxMGMxMmE1OGI2OWZiOTI2MDk4
ZDUxMjkwHhcNMjQwMTAyMDIyOTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDExMmRjOTg3MDhiMGU1ZWQ2YzZlNTE2N2Q3NDhiYmFmZjEwNzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzDkjHvwWZ5ZKGMVYwVpCKsmS+gg
XzPj/j2hTGzGcaqvZGyLKESX6cIbFINybE2MbMAD+SwlWbE7WO+pm0SHaqIMEpZr
kn4jGoTZMg2jUlB3GY+zF0vUUhePSOmT0TKGxO+WzZRDvz9f3ZWfeE32eXwaeO6Z
RwssOOkzfic5agztYldhmzXphMKzy00tP4vY9TQmCkHCC8UU9SdD+Jl9SA/WaEAg
umd/d9fQkEZigE85iHJoHec70FzF7iCJm85WWMz5Dqt/NXKMdwbnr2d1MtVZTcw1
uD7bKbtam4Awt/I6uWzPp6ttA3Ssi8cPuZ+6eSZTYw1xVq70WvXCrvZg+QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFDARLcmHCLDl7WxuUWfXSLuv8QcQMB8GA1UdIwQY
MBaAFBuymz8Vj6gHEMEqWLafuSYJjVEpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzdLYlB4V1BxQWNRd1NwWXRwLTVKZ21OVVNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi81NzNmMGItNTMyNS00MWQzLWI5ZmYt
OGY3ZDU2YjdiNDE3LzEvTUJFdHlZY0lzT1h0Ykc1Ulo5ZEl1Nl94QnhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi81NzNmMGItNTMyNS00MWQzLWI5ZmYtOGY3ZDU2YjdiNDE3
LzEvRzdLYlB4V1BxQWNRd1NwWXRwLTVKZ21OVVNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCW80wAwQC
X9f0AwQDstjQMA0GCSqGSIb3DQEBCwUAA4IBAQCEqc6gzW0RXDnpdUSwL32fCv72
ATZ/qCwN6eHTVYicxQdEeI8QkxMfD+3vFQWZq9psPjUN38QjIj5h5pH7jj5nRKDj
h5spin2yEGlhYAEHnjO1hQXvN6L5sOyC92IM6uLG7RRnQBObBiExQV6YfJxp8In2
bVBHsrwEzRUCLtTUIBOw+x+rR5g9rovWtKaqfd07W0KpWG8GhKnl9ivseU6CkF7a
c8ga3r7yTfjF9TgwFYjC0asC2+UD1aB+ySotYj3Hqj/inUEGe89C7skmgoLrbc81
+mpcv0kJEbSkUSKLUoGeXHnaNrYTb+FoBxHqQuwA6gn895/Y63vQ3Mk1PILO
-----END CERTIFICATE-----
Generated at Fri May 17 18:19:58 2024 by rpki-client on console-ams.rpki-client.org