Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/cgPWmg3DCMksBA4NsSJ5V0DaLtc.roa
File: cgPWmg3DCMksBA4NsSJ5V0DaLtc.roa (raw, json)
Hash identifier: UOlKurKxdTX+NvQ6l/dOkOP4eO3JjEliFTUI2mkRfII=
Subject key identifier: 72:03:D6:9A:0D:C3:08:C9:2C:04:0E:0D:B1:22:79:57:40:DA:2E:D7
Certificate issuer: /CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Certificate serial: 018DCB6A18DE8A17D642B549285E8E12E05E
Authority key identifier: 7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/cgPWmg3DCMksBA4NsSJ5V0DaLtc.roa
Signing time: Wed 21 Feb 2024 11:25:44 +0000
ROA not before: Wed 21 Feb 2024 11:25:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15404
IP address blocks: 185.154.148.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 01:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:6a:18:de:8a:17:d6:42:b5:49:28:5e:8e:12:e0:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Validity
Not Before: Feb 21 11:25:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7203d69a0dc308c92c040e0db122795740da2ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b7:a7:6c:e3:7c:e4:dd:9b:02:8b:4d:70:d3:
94:40:2d:6c:c7:ee:16:7d:f8:ad:09:b2:04:cd:d2:
bf:69:8f:fc:45:8b:46:3e:36:03:c7:71:cf:07:c6:
80:1f:9e:0f:4d:88:bc:c5:49:78:41:57:bc:a4:86:
be:3e:53:7b:45:0e:ab:50:ea:33:3f:70:00:0c:94:
5d:52:1c:f9:19:4b:15:64:74:ee:b3:80:5d:4e:85:
6a:45:6e:e5:11:50:7c:d0:42:96:bf:e1:ea:fd:d2:
39:56:f2:84:5f:16:25:0a:02:08:d4:fa:be:80:90:
50:a8:59:4f:46:59:92:0b:45:7a:f5:72:42:23:f7:
a7:a6:b5:38:ef:3f:84:01:0a:eb:9f:bd:d4:b9:2b:
02:49:36:c6:e2:a8:bc:1b:8f:42:ca:e0:fd:a5:7c:
4c:25:56:03:3e:50:86:32:f5:83:5e:a1:e3:12:93:
a0:d3:a3:5d:d3:96:ee:b0:0b:44:92:52:87:d6:1e:
bc:e3:f6:9b:29:d7:95:ea:0a:d0:6a:36:56:2e:51:
dc:4a:b9:3d:f6:80:12:8e:74:42:6d:15:e9:34:19:
42:54:93:30:ec:8b:68:60:48:f4:c4:8a:1a:5e:17:
29:97:6e:6a:b5:37:c6:c4:f7:ce:31:a5:ac:2e:37:
1a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:03:D6:9A:0D:C3:08:C9:2C:04:0E:0D:B1:22:79:57:40:DA:2E:D7
X509v3 Authority Key Identifier:
keyid:7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/cgPWmg3DCMksBA4NsSJ5V0DaLtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.148.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:7b:3b:f9:31:06:7f:d7:4d:be:98:fc:1e:b4:41:94:16:76:
96:d1:87:0c:32:d6:a9:d6:e9:7d:f8:d5:29:b6:3d:b8:ba:96:
03:a5:b7:23:a5:fe:92:00:f4:21:14:06:e5:79:f4:07:83:4a:
2e:49:79:fa:04:71:17:d2:40:b6:c7:c2:93:ed:cc:11:3b:8f:
ed:0b:45:fd:67:34:de:46:73:62:15:18:61:6c:3a:7b:27:3d:
38:50:95:b0:68:2a:77:86:ad:ba:0a:40:4c:c6:2f:40:eb:cc:
0d:86:7c:66:e7:ec:a5:16:35:b0:0a:2e:57:76:ad:c7:57:a0:
0c:59:e2:70:da:16:fe:39:23:3f:fa:21:6a:00:25:e3:50:af:
71:61:d0:ea:6f:5d:08:d2:ac:48:e9:21:94:e7:da:ca:e7:e4:
07:1c:ce:85:f0:b5:24:0a:3a:50:cd:a3:06:41:3e:8b:76:9c:
d2:64:68:7d:21:dd:e0:a8:a2:10:f6:e4:e2:35:a6:84:34:b0:
b2:30:2b:b1:c0:57:26:c9:8a:76:c4:f5:1e:ba:b9:91:90:d0:
63:9c:7f:c1:03:4c:24:bd:5d:08:10:98:e3:e6:f3:51:00:84:
a5:fb:45:88:fd:f4:5c:a0:aa:0b:b5:8c:10:4f:33:f6:7b:82:
dc:58:b0:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3LahjeihfWQrVJKF6OEuBeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhOTFiMzQxNTNkYTBkNWQxMjFjZmY0MzI1OWZjZDllM2Ri
ZmM3ZDQwHhcNMjQwMjIxMTEyNTQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjAzZDY5YTBkYzMwOGM5MmMwNDBlMGRiMTIyNzk1NzQwZGEyZWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7enbON85N2bAotNcNOUQC1sx+4W
ffitCbIEzdK/aY/8RYtGPjYDx3HPB8aAH54PTYi8xUl4QVe8pIa+PlN7RQ6rUOoz
P3AADJRdUhz5GUsVZHTus4BdToVqRW7lEVB80EKWv+Hq/dI5VvKEXxYlCgII1Pq+
gJBQqFlPRlmSC0V69XJCI/enprU47z+EAQrrn73UuSsCSTbG4qi8G49CyuD9pXxM
JVYDPlCGMvWDXqHjEpOg06Nd05busAtEklKH1h684/abKdeV6grQajZWLlHcSrk9
9oASjnRCbRXpNBlCVJMw7ItoYEj0xIoaXhcpl25qtTfGxPfOMaWsLjcaAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHID1poNwwjJLAQODbEieVdA2i7XMB8GA1UdIwQY
MBaAFHqRs0FT2g1dEhz/QyWfzZ49v8fUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXBHelFWUGFEVjBTSFA5REpaX05uajJfeDlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC81M2Y2NTItMDFiMS00MmYyLTg1ZTkt
NGRjYjIzZmRiMDZhLzEvY2dQV21nM0RDTWtzQkE0TnNTSjVWMERhTHRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC81M2Y2NTItMDFiMS00MmYyLTg1ZTktNGRjYjIzZmRiMDZh
LzEvZXBHelFWUGFEVjBTSFA5REpaX05uajJfeDlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuZqUMA0G
CSqGSIb3DQEBCwUAA4IBAQBsezv5MQZ/102+mPwetEGUFnaW0YcMMtap1ul9+NUp
tj24upYDpbcjpf6SAPQhFAblefQHg0ouSXn6BHEX0kC2x8KT7cwRO4/tC0X9ZzTe
RnNiFRhhbDp7Jz04UJWwaCp3hq26CkBMxi9A68wNhnxm5+ylFjWwCi5Xdq3HV6AM
WeJw2hb+OSM/+iFqACXjUK9xYdDqb10I0qxI6SGU59rK5+QHHM6F8LUkCjpQzaMG
QT6LdpzSZGh9Id3gqKIQ9uTiNaaENLCyMCuxwFcmyYp2xPUeurmRkNBjnH/BA0wk
vV0IEJjj5vNRAISl+0WI/fRcoKoLtYwQTzP2e4LcWLD4
-----END CERTIFICATE-----
Generated at Sun Jun 16 08:56:03 2024 by rpki-client on console-fra.rpki-client.org