Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6edcp9PI3T39u_AhjHoLiSFdzTI.roa
File: 6edcp9PI3T39u_AhjHoLiSFdzTI.roa (raw, json)
Hash identifier: JBLJysFzZ2hfl/qhLoijLt8aEOM4UWcRjxGfCxflwR4=
Subject key identifier: E9:E7:5C:A7:D3:C8:DD:3D:FD:BB:F0:21:8C:7A:0B:89:21:5D:CD:32
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018CC9BA9B8EC0FD27B91B44A23B392015E8
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6edcp9PI3T39u_AhjHoLiSFdzTI.roa
Signing time: Tue 02 Jan 2024 10:31:39 +0000
ROA not before: Tue 02 Jan 2024 10:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56815
IP address blocks: 185.140.240.0/24 maxlen: 24
185.140.243.0/24 maxlen: 24
185.140.242.0/24 maxlen: 24
185.140.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Apr 2024 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:ba:9b:8e:c0:fd:27:b9:1b:44:a2:3b:39:20:15:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 10:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9e75ca7d3c8dd3dfdbbf0218c7a0b89215dcd32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f8:4b:2a:46:ee:a0:fd:4a:a0:94:30:ef:2d:
e0:ba:ab:1f:e3:80:eb:9d:1e:1d:e9:03:e0:7f:bd:
47:ba:9c:59:09:1b:99:eb:be:9f:46:27:68:bf:1a:
90:cd:91:91:d8:24:f0:07:57:20:3b:48:14:e7:66:
29:ab:ac:c4:c9:ae:c8:3c:45:09:14:b2:d2:58:7c:
04:fe:d7:8f:36:de:55:93:a2:a6:3b:b6:3b:1e:da:
fe:e7:ef:36:3a:3d:a0:91:f4:28:2b:b1:33:7b:d4:
23:53:0f:85:27:c2:6c:a8:86:4a:8a:b2:53:01:1d:
72:2f:3a:d1:a3:93:f2:e8:4a:d7:64:32:89:f5:5f:
d4:2c:1b:2e:41:80:b6:e1:b0:07:5c:7b:bb:89:71:
9d:2c:35:04:d6:21:62:87:1d:e3:fb:d9:76:98:a4:
92:86:87:45:78:e2:95:e2:01:48:bd:e3:32:f0:72:
0b:8a:0d:ed:1a:8b:b0:26:b1:06:42:80:91:0d:8b:
3d:70:2d:34:a8:b4:93:b3:97:29:a0:2b:c4:f7:f2:
59:d8:ba:ff:c8:d3:72:22:30:c4:e0:de:fb:a6:a8:
8f:3a:25:9c:4e:97:01:7b:7e:68:d3:e0:ef:aa:bd:
6b:4e:cd:7a:32:ad:0b:e1:5f:6d:22:04:81:d3:2a:
82:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E7:5C:A7:D3:C8:DD:3D:FD:BB:F0:21:8C:7A:0B:89:21:5D:CD:32
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6edcp9PI3T39u_AhjHoLiSFdzTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.240.0/22
Signature Algorithm: sha256WithRSAEncryption
94:ae:13:f0:4b:ec:1a:08:dc:7b:50:72:c2:a1:d8:e0:7c:a2:
be:e7:fc:22:59:1f:2c:a4:45:35:a7:75:03:f8:ce:e6:c6:58:
d0:b0:f4:41:88:c7:b6:f7:80:30:b6:df:5c:6c:38:6c:2c:d8:
b3:03:ea:77:84:a0:0e:f7:59:4e:d4:dd:bb:7d:0e:d6:81:ff:
9d:fa:71:74:2c:1d:c7:c8:df:32:4b:8e:6e:50:82:c8:68:e2:
2e:a0:51:8f:e6:6e:0e:5d:21:0a:ca:21:c3:ec:d7:ed:c9:5c:
71:e1:8b:84:39:3d:8a:c3:d5:5e:07:82:fe:d1:7d:32:a9:04:
b7:3a:f6:90:2e:16:68:dc:71:bc:32:a3:e7:27:9d:30:34:c8:
09:f8:4d:6f:94:0d:d4:e5:11:56:26:8b:f4:b9:2f:8e:0a:f9:
f0:6d:5a:8f:d5:90:df:f7:09:98:7b:a2:f5:03:4c:df:ef:f8:
e6:f4:92:ad:e6:35:a3:ef:e3:e0:df:52:d7:d8:ab:2b:c0:4a:
6c:99:da:7c:d8:e5:80:1c:b1:be:46:46:1b:db:fc:91:f4:b6:
f3:70:71:06:8d:a6:2e:43:4b:9a:43:51:85:0b:3c:9e:72:8f:
f0:df:76:a7:ad:51:2e:89:2a:bd:94:de:b8:60:97:fd:59:a6:
64:e8:51:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJupuOwP0nuRtEojs5IBXoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwMTAyMTAzMTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWU3NWNhN2QzYzhkZDNkZmRiYmYwMjE4YzdhMGI4OTIxNWRjZDMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifhLKkbuoP1KoJQw7y3guqsf44Dr
nR4d6QPgf71HupxZCRuZ676fRidovxqQzZGR2CTwB1cgO0gU52Ypq6zEya7IPEUJ
FLLSWHwE/tePNt5Vk6KmO7Y7Htr+5+82Oj2gkfQoK7Eze9QjUw+FJ8JsqIZKirJT
AR1yLzrRo5Py6ErXZDKJ9V/ULBsuQYC24bAHXHu7iXGdLDUE1iFihx3j+9l2mKSS
hodFeOKV4gFIveMy8HILig3tGouwJrEGQoCRDYs9cC00qLSTs5cpoCvE9/JZ2Lr/
yNNyIjDE4N77pqiPOiWcTpcBe35o0+Dvqr1rTs16Mq0L4V9tIgSB0yqCrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOnnXKfTyN09/bvwIYx6C4khXc0yMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvNmVkY3A5UEkzVDM5dV9BaGpIb0xpU0ZkelRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYzwMA0G
CSqGSIb3DQEBCwUAA4IBAQCUrhPwS+waCNx7UHLCodjgfKK+5/wiWR8spEU1p3UD
+M7mxljQsPRBiMe294Awtt9cbDhsLNizA+p3hKAO91lO1N27fQ7Wgf+d+nF0LB3H
yN8yS45uUILIaOIuoFGP5m4OXSEKyiHD7NftyVxx4YuEOT2Kw9VeB4L+0X0yqQS3
OvaQLhZo3HG8MqPnJ50wNMgJ+E1vlA3U5RFWJov0uS+OCvnwbVqP1ZDf9wmYe6L1
A0zf7/jm9JKt5jWj7+Pg31LX2KsrwEpsmdp82OWAHLG+RkYb2/yR9LbzcHEGjaYu
Q0uaQ1GFCzyeco/w33anrVEuiSq9lN64YJf9WaZk6FHH
-----END CERTIFICATE-----
Generated at Sun Apr 28 17:35:28 2024 by rpki-client on console-fra.rpki-client.org