Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/cf6e2f-58ff-41e0-8d0c-9d5e34b02e5b/1/LjtKGRpgWxf4LwGXlDWb-aieaSo.roa
File: LjtKGRpgWxf4LwGXlDWb-aieaSo.roa (raw, json)
Hash identifier: 0Y1yKMhRahaqfoXRKAlASbJKF96LuV8vJkakOlRSW04=
Subject key identifier: 2E:3B:4A:19:1A:60:5B:17:F8:2F:01:97:94:35:9B:F9:A8:9E:69:2A
Certificate issuer: /CN=356e0101181aca4251e9f24a8f63735e2f5ebdcd
Certificate serial: 01926AE421ED9F17D6C67C7A963D2140B67E
Authority key identifier: 35:6E:01:01:18:1A:CA:42:51:E9:F2:4A:8F:63:73:5E:2F:5E:BD:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NW4BARgaykJR6fJKj2NzXi9evc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/cf6e2f-58ff-41e0-8d0c-9d5e34b02e5b/1/LjtKGRpgWxf4LwGXlDWb-aieaSo.roa
Signing time: Tue 08 Oct 2024 06:49:48 +0000
ROA not before: Tue 08 Oct 2024 06:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214093
IP address blocks: 185.160.77.0/24 maxlen: 24
2a01:fa84::/30 maxlen: 30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/cf6e2f-58ff-41e0-8d0c-9d5e34b02e5b/1/NW4BARgaykJR6fJKj2NzXi9evc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/cf6e2f-58ff-41e0-8d0c-9d5e34b02e5b/1/NW4BARgaykJR6fJKj2NzXi9evc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/NW4BARgaykJR6fJKj2NzXi9evc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6a:e4:21:ed:9f:17:d6:c6:7c:7a:96:3d:21:40:b6:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356e0101181aca4251e9f24a8f63735e2f5ebdcd
Validity
Not Before: Oct 8 06:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e3b4a191a605b17f82f019794359bf9a89e692a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:21:5d:76:75:36:2f:ec:9d:28:6c:58:a8:b6:
02:68:f1:61:c7:58:aa:5f:8a:fa:d8:5d:8a:f9:ce:
47:69:7f:fa:8f:e3:b8:42:1d:e3:d9:97:03:85:ed:
73:55:d0:da:73:37:ac:c6:04:21:fa:62:1a:b8:84:
f2:e0:52:79:69:50:2c:3c:ff:51:20:86:8e:76:78:
0f:e0:6b:1e:b4:29:06:be:90:e0:d4:32:87:42:36:
e1:cf:a6:34:5e:d3:30:e5:3a:61:05:0b:f7:f6:c9:
cf:bb:d8:fb:22:9b:a7:3a:4c:98:7d:16:65:bb:98:
18:44:2e:7c:7a:03:b9:92:d6:80:b8:60:5c:0e:a2:
44:46:08:10:ac:b3:77:ec:c9:80:4d:52:7c:02:f9:
66:39:f5:15:87:c6:c9:96:19:db:84:17:4d:c6:19:
78:d6:a8:52:ae:9a:aa:e1:f5:e8:59:05:63:f8:a5:
e7:e2:e7:f5:7a:c0:21:ab:fe:d5:0e:26:cb:8a:2b:
dd:f1:3e:af:40:fc:73:7d:85:76:1e:2a:56:53:b6:
5b:b7:c7:bd:d0:03:fe:53:ff:c5:7f:d0:6a:3b:f1:
e2:1f:c9:01:7d:d1:1b:f0:77:53:5f:75:1c:8c:51:
e8:6d:7d:51:7e:69:08:dd:fc:26:a7:78:19:6f:64:
de:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:3B:4A:19:1A:60:5B:17:F8:2F:01:97:94:35:9B:F9:A8:9E:69:2A
X509v3 Authority Key Identifier:
keyid:35:6E:01:01:18:1A:CA:42:51:E9:F2:4A:8F:63:73:5E:2F:5E:BD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NW4BARgaykJR6fJKj2NzXi9evc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cf6e2f-58ff-41e0-8d0c-9d5e34b02e5b/1/LjtKGRpgWxf4LwGXlDWb-aieaSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cf6e2f-58ff-41e0-8d0c-9d5e34b02e5b/1/NW4BARgaykJR6fJKj2NzXi9evc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.77.0/24
IPv6:
2a01:fa84::/30
Signature Algorithm: sha256WithRSAEncryption
d7:45:b1:63:bc:c9:77:d5:2a:5a:a0:bc:13:0e:70:ba:15:da:
e9:8a:43:b9:c9:75:a1:16:b4:51:a9:f8:5c:c5:e2:b6:4a:d5:
11:e1:72:bf:a4:80:56:6a:66:a3:16:24:6a:d2:3e:ca:3c:18:
aa:8b:ab:8f:17:ff:c1:3c:f6:f7:7c:b5:4e:ca:69:13:e7:bd:
cc:2c:0f:9b:df:50:c1:d1:9f:f6:24:50:c4:e5:03:8c:2c:be:
87:5d:f1:d6:79:da:74:75:61:70:dd:b9:01:36:21:d5:65:dd:
c6:9d:45:7b:f6:eb:4d:e0:21:a8:79:19:6d:6f:66:0a:3e:2e:
05:29:2a:34:ae:0d:c1:fd:55:b4:5e:82:14:59:d4:a7:4d:eb:
15:bf:59:59:6e:8b:c2:9c:92:97:fd:05:64:0f:ed:74:4f:57:
b3:b6:a8:34:f3:b4:94:f9:ba:70:77:05:a8:66:9b:c9:91:68:
ce:0c:80:3d:57:7f:16:da:bd:e8:4c:97:0a:5b:a8:a8:70:89:
da:ff:5d:e6:49:80:84:ca:45:1b:12:38:7f:7b:8b:54:51:65:
4c:5f:5c:13:a7:74:26:78:6a:71:e9:d4:08:d9:a5:c6:8d:8a:
fb:2d:17:b7:f8:22:a3:c1:f3:a9:e7:97:d9:d5:33:b3:f4:96:
19:7f:a2:b4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZJq5CHtnxfWxnx6lj0hQLZ+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NmUwMTAxMTgxYWNhNDI1MWU5ZjI0YThmNjM3MzVlMmY1
ZWJkY2QwHhcNMjQxMDA4MDY0OTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTNiNGExOTFhNjA1YjE3ZjgyZjAxOTc5NDM1OWJmOWE4OWU2OTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyFddnU2L+ydKGxYqLYCaPFhx1iq
X4r62F2K+c5HaX/6j+O4Qh3j2ZcDhe1zVdDaczesxgQh+mIauITy4FJ5aVAsPP9R
IIaOdngP4GsetCkGvpDg1DKHQjbhz6Y0XtMw5TphBQv39snPu9j7IpunOkyYfRZl
u5gYRC58egO5ktaAuGBcDqJERggQrLN37MmATVJ8AvlmOfUVh8bJlhnbhBdNxhl4
1qhSrpqq4fXoWQVj+KXn4uf1esAhq/7VDibLiivd8T6vQPxzfYV2HipWU7Zbt8e9
0AP+U//Ff9BqO/HiH8kBfdEb8HdTX3UcjFHobX1RfmkI3fwmp3gZb2TenwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFC47ShkaYFsX+C8Bl5Q1m/monmkqMB8GA1UdIwQY
MBaAFDVuAQEYGspCUenySo9jc14vXr3NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlc0QkFSZ2F5a0pSNmZKS2oyTnpYaTlldmMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9jZjZlMmYtNThmZi00MWUwLThkMGMt
OWQ1ZTM0YjAyZTViLzEvTGp0S0dScGdXeGY0THdHWGxEV2ItYWllYVNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9jZjZlMmYtNThmZi00MWUwLThkMGMtOWQ1ZTM0YjAyZTVi
LzEvTlc0QkFSZ2F5a0pSNmZKS2oyTnpYaTlldmMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuaBNMA0E
AgACMAcDBQIqAfqEMA0GCSqGSIb3DQEBCwUAA4IBAQDXRbFjvMl31SpaoLwTDnC6
FdrpikO5yXWhFrRRqfhcxeK2StUR4XK/pIBWamajFiRq0j7KPBiqi6uPF//BPPb3
fLVOymkT573MLA+b31DB0Z/2JFDE5QOMLL6HXfHWedp0dWFw3bkBNiHVZd3GnUV7
9utN4CGoeRltb2YKPi4FKSo0rg3B/VW0XoIUWdSnTesVv1lZbovCnJKX/QVkD+10
T1eztqg087SU+bpwdwWoZpvJkWjODIA9V38W2r3oTJcKW6iocIna/13mSYCEykUb
Ejh/e4tUUWVMX1wTp3QmeGpx6dQI2aXGjYr7LRe3+CKjwfOp55fZ1TOz9JYZf6K0
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:54:51 2024 by rpki-client on console-ams.rpki-client.org