Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/avmIpm-dYYvDhA51JJi1PlxSnqg.roa
File: avmIpm-dYYvDhA51JJi1PlxSnqg.roa (raw, json)
Hash identifier: eyYkQKKooDbBkKGud2iNtZzNNuC4hLf1oQNOFaBGXfo=
Subject key identifier: 6A:F9:88:A6:6F:9D:61:8B:C3:84:0E:75:24:98:B5:3E:5C:52:9E:A8
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018CFF173788C891BF00E3F4F85232EFDD3E
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/avmIpm-dYYvDhA51JJi1PlxSnqg.roa
Signing time: Fri 12 Jan 2024 19:12:40 +0000
ROA not before: Fri 12 Jan 2024 19:12:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18796
IP address blocks: 185.177.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 22:04:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ff:17:37:88:c8:91:bf:00:e3:f4:f8:52:32:ef:dd:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 12 19:12:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6af988a66f9d618bc3840e752498b53e5c529ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6c:aa:22:73:1c:a3:55:b2:06:93:e0:12:97:
ea:cc:4b:d2:48:95:58:be:0e:a6:30:4d:d9:b2:8f:
95:85:e2:13:0a:e5:dd:8d:91:ec:27:32:ff:70:8b:
ab:e5:55:c1:f3:8a:32:73:f4:4c:1b:b4:cf:5a:03:
a1:7e:c2:4f:c2:42:cf:5a:cb:fd:e7:bf:df:7e:99:
10:a9:c7:ba:31:f2:56:a4:d9:0a:4e:37:e5:c2:4e:
c9:02:1b:c9:92:da:99:ea:30:25:d8:c0:02:5c:cb:
07:65:e3:fe:30:95:5f:cf:e3:c1:b1:f5:61:7b:cc:
c3:76:b5:36:22:43:d7:f4:65:39:46:0f:1d:90:d0:
07:c5:93:df:5d:5b:88:82:bf:c3:dc:ca:bf:c9:35:
9b:85:ef:e7:e1:a1:97:0e:56:be:31:a1:c8:92:c4:
8c:61:e6:b5:f6:27:fd:77:a2:09:9a:96:2d:db:9f:
8a:b4:1b:40:5e:b4:7a:31:ce:8a:7b:04:6a:97:cc:
54:ed:bc:8b:72:41:e9:5b:2b:b0:f9:fc:59:5a:f0:
4a:d2:83:ee:25:c1:ad:e9:43:b9:a5:13:9f:7e:f7:
ad:88:10:46:d3:88:c9:84:b1:b5:f1:d1:7b:9f:d4:
b7:c4:32:92:a6:20:ee:bf:ff:21:a7:56:e3:ce:b3:
f4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F9:88:A6:6F:9D:61:8B:C3:84:0E:75:24:98:B5:3E:5C:52:9E:A8
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/avmIpm-dYYvDhA51JJi1PlxSnqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.25.0/24
Signature Algorithm: sha256WithRSAEncryption
20:56:77:da:ec:e6:94:0d:07:2b:fe:fd:6a:de:f0:23:8f:bf:
74:a2:5a:ba:3b:15:77:34:ee:9d:c1:4a:33:28:ab:2d:21:cc:
16:5e:81:a2:62:33:4e:1f:96:48:87:cf:d7:2f:71:04:95:c0:
06:65:69:44:47:51:b8:f5:ea:94:0d:aa:8c:f4:74:94:02:c6:
59:df:e6:7b:da:04:92:a8:0d:d9:8a:3f:ac:f7:7a:04:67:52:
df:ee:08:c0:8d:91:a6:20:8e:62:fb:8f:be:48:03:f1:a1:6e:
87:0c:08:ac:df:0b:08:ad:67:d7:9c:98:76:df:9c:2e:ac:03:
eb:f8:91:b7:da:22:78:23:4b:04:d2:2f:fd:d5:8e:97:58:7c:
88:02:9c:c2:3c:32:46:6f:1d:c2:b6:c4:43:33:65:58:b9:74:
3f:cb:22:d1:56:6b:b6:4f:2f:38:d3:ff:e8:c5:a0:9a:db:4f:
89:9c:c0:89:d8:ee:cd:1b:a2:7a:94:07:9f:20:eb:fc:48:b0:
07:5a:cf:6b:24:c1:a5:1e:37:3e:67:9c:aa:f4:a3:a8:88:47:
c0:06:55:81:ad:03:04:29:97:f5:b5:72:33:11:e4:54:75:97:
b7:45:1d:3f:91:46:d4:b7:5a:a3:10:5c:a6:18:c4:ec:dc:bf:
6b:2f:14:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYz/FzeIyJG/AOP0+FIy790+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjQwMTEyMTkxMjQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWY5ODhhNjZmOWQ2MThiYzM4NDBlNzUyNDk4YjUzZTVjNTI5ZWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWyqInMco1WyBpPgEpfqzEvSSJVY
vg6mME3Zso+VheITCuXdjZHsJzL/cIur5VXB84oyc/RMG7TPWgOhfsJPwkLPWsv9
57/ffpkQqce6MfJWpNkKTjflwk7JAhvJktqZ6jAl2MACXMsHZeP+MJVfz+PBsfVh
e8zDdrU2IkPX9GU5Rg8dkNAHxZPfXVuIgr/D3Mq/yTWbhe/n4aGXDla+MaHIksSM
Yea19if9d6IJmpYt25+KtBtAXrR6Mc6KewRql8xU7byLckHpWyuw+fxZWvBK0oPu
JcGt6UO5pROffvetiBBG04jJhLG18dF7n9S3xDKSpiDuv/8hp1bjzrP06wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGr5iKZvnWGLw4QOdSSYtT5cUp6oMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvYXZtSXBtLWRZWXZEaEE1MUpKaTFQbHhTbnFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubEZMA0G
CSqGSIb3DQEBCwUAA4IBAQAgVnfa7OaUDQcr/v1q3vAjj790olq6OxV3NO6dwUoz
KKstIcwWXoGiYjNOH5ZIh8/XL3EElcAGZWlER1G49eqUDaqM9HSUAsZZ3+Z72gSS
qA3Zij+s93oEZ1Lf7gjAjZGmII5i+4++SAPxoW6HDAis3wsIrWfXnJh235wurAPr
+JG32iJ4I0sE0i/91Y6XWHyIApzCPDJGbx3CtsRDM2VYuXQ/yyLRVmu2Ty840//o
xaCa20+JnMCJ2O7NG6J6lAefIOv8SLAHWs9rJMGlHjc+Z5yq9KOoiEfABlWBrQME
KZf1tXIzEeRUdZe3RR0/kUbUt1qjEFymGMTs3L9rLxQw
-----END CERTIFICATE-----
Generated at Sun May 5 07:16:52 2024 by rpki-client on console-fra.rpki-client.org