Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/5ni8_slQVpEXq2JeGFq9myiVrR4.roa
File: 5ni8_slQVpEXq2JeGFq9myiVrR4.roa (raw, json)
Hash identifier: PvgZoQ2tVe30ctFdyyyweuBMLCj9wNCUm6KUTKoCFPo=
Subject key identifier: E6:78:BC:FE:C9:50:56:91:17:AB:62:5E:18:5A:BD:9B:28:95:AD:1E
Certificate issuer: /CN=69042c1f27a7d7862475087023dc97c3330f73c6
Certificate serial: 018CC795535535BB605E555597B73E956F41
Authority key identifier: 69:04:2C:1F:27:A7:D7:86:24:75:08:70:23:DC:97:C3:33:0F:73:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQQsHyen14YkdQhwI9yXwzMPc8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/5ni8_slQVpEXq2JeGFq9myiVrR4.roa
Signing time: Tue 02 Jan 2024 00:31:41 +0000
ROA not before: Tue 02 Jan 2024 00:31:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3176
IP address blocks: 185.104.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/aQQsHyen14YkdQhwI9yXwzMPc8Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/aQQsHyen14YkdQhwI9yXwzMPc8Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQQsHyen14YkdQhwI9yXwzMPc8Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:53:55:35:bb:60:5e:55:55:97:b7:3e:95:6f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69042c1f27a7d7862475087023dc97c3330f73c6
Validity
Not Before: Jan 2 00:31:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e678bcfec950569117ab625e185abd9b2895ad1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:79:da:f4:1e:1b:03:5f:12:cd:57:53:75:b0:
57:18:c4:fd:e3:69:05:cc:80:93:c9:b5:21:fc:96:
3e:7a:62:f1:de:1f:45:6c:67:51:a4:12:23:55:4f:
be:dd:3e:d4:62:89:8e:c7:82:ce:d6:a3:34:75:3b:
ce:f5:d7:8a:5b:ed:cb:65:7c:a2:c2:c4:64:18:56:
e1:7a:8d:e7:81:a2:37:da:60:12:40:af:84:11:e1:
73:1e:08:9a:52:5e:90:1d:26:9e:70:7d:1f:72:4a:
58:7c:7b:99:bb:e6:13:37:0e:40:58:7c:6b:9a:8a:
59:57:cf:c8:a5:a1:d5:65:06:52:93:e3:d3:e9:f5:
d4:06:7e:4d:82:95:3b:6e:5b:77:7a:95:aa:23:1f:
f4:63:54:6c:23:a6:12:b5:d5:23:4f:45:27:8c:64:
c7:cc:5e:41:2b:d2:90:2e:47:80:98:f3:be:84:c6:
7a:24:40:1e:0d:7f:ab:76:45:90:c2:2d:d0:7e:c3:
ae:83:3e:03:1c:a0:d0:fb:b1:8d:61:b4:61:d3:12:
22:40:83:2d:d6:b0:11:3b:7d:b7:ff:12:b5:cc:69:
8e:0a:88:e0:30:7a:fb:f9:22:67:2a:30:18:d4:c0:
a7:d7:4c:93:7c:e2:2f:7e:48:0b:bf:e1:ad:87:0f:
d3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:78:BC:FE:C9:50:56:91:17:AB:62:5E:18:5A:BD:9B:28:95:AD:1E
X509v3 Authority Key Identifier:
keyid:69:04:2C:1F:27:A7:D7:86:24:75:08:70:23:DC:97:C3:33:0F:73:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQQsHyen14YkdQhwI9yXwzMPc8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/5ni8_slQVpEXq2JeGFq9myiVrR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/aQQsHyen14YkdQhwI9yXwzMPc8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.69.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:42:96:37:f1:2c:c3:72:ba:32:7c:fd:84:36:ce:c3:a1:38:
7a:de:2e:b2:4a:12:23:7d:a5:8a:12:3e:ba:c0:61:6d:b7:05:
09:6f:91:61:7e:32:3c:68:42:6b:df:21:d5:19:04:3c:93:ce:
87:8a:56:4a:da:e8:bd:11:c3:a7:a2:c3:27:9b:6e:d9:6d:84:
c2:45:39:72:e1:ef:11:23:ad:34:c8:98:49:f8:1e:b6:ee:92:
23:94:88:e3:d9:08:90:2b:e3:ff:0e:1c:48:8c:e3:92:55:f3:
b0:eb:2f:1a:0c:09:f2:61:d3:37:1c:5f:66:af:29:3d:8d:12:
c7:b3:66:d7:17:2c:cb:18:2e:90:93:68:b3:d8:12:d4:10:7a:
e8:95:45:6d:5e:d5:1b:fd:a3:78:66:7a:dc:36:16:cd:04:1d:
9b:aa:89:f1:70:ef:a3:51:1b:6f:de:cd:6e:b0:dd:61:37:80:
5b:0e:56:74:2b:8a:6d:57:4d:02:d7:28:9a:f4:75:e6:0b:ca:
59:49:a7:a9:e0:77:c4:c5:62:92:8f:68:5b:5b:98:d5:9d:17:
d3:0b:b2:63:bb:57:1c:78:bb:1f:30:4f:7b:73:f6:39:a0:74:
38:86:d6:76:3f:ff:29:9d:8d:3b:37:d8:a7:8d:a8:80:15:68:
73:80:f3:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlVNVNbtgXlVVl7c+lW9BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MDQyYzFmMjdhN2Q3ODYyNDc1MDg3MDIzZGM5N2MzMzMw
ZjczYzYwHhcNMjQwMTAyMDAzMTQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjc4YmNmZWM5NTA1NjkxMTdhYjYyNWUxODVhYmQ5YjI4OTVhZDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3na9B4bA18SzVdTdbBXGMT942kF
zICTybUh/JY+emLx3h9FbGdRpBIjVU++3T7UYomOx4LO1qM0dTvO9deKW+3LZXyi
wsRkGFbheo3ngaI32mASQK+EEeFzHgiaUl6QHSaecH0fckpYfHuZu+YTNw5AWHxr
mopZV8/IpaHVZQZSk+PT6fXUBn5NgpU7blt3epWqIx/0Y1RsI6YStdUjT0UnjGTH
zF5BK9KQLkeAmPO+hMZ6JEAeDX+rdkWQwi3QfsOugz4DHKDQ+7GNYbRh0xIiQIMt
1rARO323/xK1zGmOCojgMHr7+SJnKjAY1MCn10yTfOIvfkgLv+Gthw/TKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOZ4vP7JUFaRF6tiXhhavZsola0eMB8GA1UdIwQY
MBaAFGkELB8np9eGJHUIcCPcl8MzD3PGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFRc0h5ZW4xNFlrZFFod0k5eVh3ek1QYzhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy80YWU2NGItZjczZS00MDhjLWI0YTgt
Y2JiM2Q2MzVkODJmLzEvNW5pOF9zbFFWcEVYcTJKZUdGcTlteWlWclI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy80YWU2NGItZjczZS00MDhjLWI0YTgtY2JiM2Q2MzVkODJm
LzEvYVFRc0h5ZW4xNFlrZFFod0k5eVh3ek1QYzhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWhFMA0G
CSqGSIb3DQEBCwUAA4IBAQCeQpY38SzDcroyfP2ENs7DoTh63i6yShIjfaWKEj66
wGFttwUJb5FhfjI8aEJr3yHVGQQ8k86HilZK2ui9EcOnosMnm27ZbYTCRTly4e8R
I600yJhJ+B627pIjlIjj2QiQK+P/DhxIjOOSVfOw6y8aDAnyYdM3HF9mryk9jRLH
s2bXFyzLGC6Qk2iz2BLUEHrolUVtXtUb/aN4ZnrcNhbNBB2bqonxcO+jURtv3s1u
sN1hN4BbDlZ0K4ptV00C1yia9HXmC8pZSaep4HfExWKSj2hbW5jVnRfTC7Jju1cc
eLsfME97c/Y5oHQ4htZ2P/8pnY07N9injaiAFWhzgPPq
-----END CERTIFICATE-----
Generated at Sat Nov 23 18:46:11 2024 by rpki-client on console-ams.rpki-client.org