Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/1-LA9x8ISgHjb8LtczC0EaIfJpBk.roa
File: 1-LA9x8ISgHjb8LtczC0EaIfJpBk.roa (raw, json)
Hash identifier: NAqa8DTZjOca2wyinCZQ9gQkHl/Q44bu/8btNmoqQBU=
Subject key identifier: F8:B0:3D:C7:C2:12:80:78:DB:F0:BB:5C:CC:2D:04:68:87:C9:A4:19
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018F284CF35B9AEA911D276FFE462DD77D29
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/1-LA9x8ISgHjb8LtczC0EaIfJpBk.roa
Signing time: Mon 29 Apr 2024 05:21:22 +0000
ROA not before: Mon 29 Apr 2024 05:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210164
IP address blocks: 176.105.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 May 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:28:4c:f3:5b:9a:ea:91:1d:27:6f:fe:46:2d:d7:7d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Apr 29 05:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8b03dc7c2128078dbf0bb5ccc2d046887c9a419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ec:b8:c8:6e:b3:71:49:de:d9:d5:f4:88:dd:
f6:7d:cf:ed:9f:f5:e8:a9:f0:35:ae:17:30:cf:02:
04:3e:f8:a8:0d:7f:18:30:2b:b9:e6:68:8f:b4:ac:
11:33:e2:a3:71:90:a1:b9:b3:f0:53:6e:ea:b1:b8:
f7:29:eb:9c:58:1e:0c:6b:78:e8:01:be:bc:6d:7c:
70:93:79:a4:99:0e:c7:13:63:c7:7d:81:16:b8:0a:
76:f4:d1:54:77:ca:86:dd:6b:b6:53:71:ff:6d:9e:
bb:37:0b:7d:60:a2:85:40:a3:d6:1f:a6:55:24:8a:
45:45:02:b2:89:6b:9d:32:d1:7d:f5:0e:c9:23:6d:
a4:47:f7:e9:91:a5:95:70:08:4f:60:ed:06:0c:5d:
a4:7b:b5:fb:5d:09:63:83:aa:4c:2d:25:b4:cf:09:
73:a0:c4:b8:0d:68:33:02:c0:a5:92:d9:62:20:07:
0c:b5:01:31:4d:9c:c1:97:ef:ec:17:cd:88:79:1a:
77:d0:74:63:06:16:0f:7d:2d:ef:0e:74:bc:93:25:
12:a3:3d:63:42:11:6f:28:dc:88:2c:91:3e:de:0a:
5f:3c:03:ab:ec:3f:29:e7:8b:63:9c:3a:d1:e8:a4:
f6:ac:61:86:3e:47:ae:61:29:78:79:f0:8d:9f:81:
56:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B0:3D:C7:C2:12:80:78:DB:F0:BB:5C:CC:2D:04:68:87:C9:A4:19
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/1-LA9x8ISgHjb8LtczC0EaIfJpBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.229.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:07:94:c4:3f:89:d7:03:e8:f8:6f:fb:7f:67:9e:06:86:82:
58:3f:e1:db:a6:59:a9:96:8a:11:83:13:20:aa:44:06:ad:a8:
9e:68:2c:e2:3c:01:d6:07:28:c8:9c:8f:c5:5c:15:92:b8:5d:
7f:8b:2a:af:20:0f:a3:79:6e:24:bf:60:e4:e6:29:d5:05:a9:
85:77:24:89:7a:cf:88:e3:1d:33:2a:53:3e:29:84:c7:09:fb:
c3:cd:6a:6b:62:9e:4a:4c:89:20:18:51:ed:29:a5:b6:34:b7:
1b:08:42:48:00:f0:da:66:60:05:20:7c:ad:e1:22:bc:0d:04:
2b:e3:be:ff:27:5d:96:e2:32:56:09:4f:70:05:ba:03:a6:8d:
82:cb:43:ef:79:8f:9c:61:ee:5f:22:7e:24:4c:d4:5f:73:bc:
1c:1d:58:43:4d:d6:ad:0b:b2:ca:f2:d2:5a:ff:93:58:0c:89:
b3:d0:30:6a:bb:18:e5:d9:7d:f4:e6:15:05:f8:7c:09:ab:7a:
2e:bf:62:1e:1b:5b:21:f4:1b:bd:59:c7:44:b7:2b:af:81:b6:
54:20:be:6d:a1:3e:1c:e4:2a:02:14:f0:f1:06:7f:16:2e:8f:
77:ed:22:c2:8d:27:58:9b:b3:e8:ac:ba:97:24:6d:0c:f0:ca:
0c:41:45:06
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY8oTPNbmuqRHSdv/kYt130pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjQwNDI5MDUyMTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGIwM2RjN2MyMTI4MDc4ZGJmMGJiNWNjYzJkMDQ2ODg3YzlhNDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOy4yG6zcUne2dX0iN32fc/tn/Xo
qfA1rhcwzwIEPvioDX8YMCu55miPtKwRM+KjcZChubPwU27qsbj3KeucWB4Ma3jo
Ab68bXxwk3mkmQ7HE2PHfYEWuAp29NFUd8qG3Wu2U3H/bZ67Nwt9YKKFQKPWH6ZV
JIpFRQKyiWudMtF99Q7JI22kR/fpkaWVcAhPYO0GDF2ke7X7XQljg6pMLSW0zwlz
oMS4DWgzAsClktliIAcMtQExTZzBl+/sF82IeRp30HRjBhYPfS3vDnS8kyUSoz1j
QhFvKNyILJE+3gpfPAOr7D8p54tjnDrR6KT2rGGGPkeuYSl4efCNn4FWKwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPiwPcfCEoB42/C7XMwtBGiHyaQZMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvMS1MQTl4OElTZ0hqYjhMdGN6QzBFYUlmSnBCay5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYjAvMGVjNmQyLWYxZDctNGIwYS1hZDMzLWU4ZWYyZjA5NTk4
ZS8xL213d05CQ0pWWnR1VjZhMDdMdllGQVVsMXFxSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALBp5TAN
BgkqhkiG9w0BAQsFAAOCAQEAOweUxD+J1wPo+G/7f2eeBoaCWD/h26ZZqZaKEYMT
IKpEBq2onmgs4jwB1gcoyJyPxVwVkrhdf4sqryAPo3luJL9g5OYp1QWphXckiXrP
iOMdMypTPimExwn7w81qa2KeSkyJIBhR7SmltjS3GwhCSADw2mZgBSB8reEivA0E
K+O+/yddluIyVglPcAW6A6aNgstD73mPnGHuXyJ+JEzUX3O8HB1YQ03WrQuyyvLS
Wv+TWAyJs9AwarsY5dl99OYVBfh8Cat6Lr9iHhtbIfQbvVnHRLcrr4G2VCC+baE+
HOQqAhTw8QZ/Fi6Pd+0iwo0nWJuz6Ky6lyRtDPDKDEFFBg==
-----END CERTIFICATE-----
Generated at Mon May 20 15:54:21 2024 by rpki-client on console-ams.rpki-client.org