Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/m-euG2-VciwBBIts7tQFgvdUPO4.roa
File: m-euG2-VciwBBIts7tQFgvdUPO4.roa (raw, json)
Hash identifier: /+lgJnHgjOwqkxSzaDXT7kRwaHdKaBYoSuh29Nlcpkg=
Subject key identifier: 9B:E7:AE:1B:6F:95:72:2C:01:04:8B:6C:EE:D4:05:82:F7:54:3C:EE
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 018F94ACD0B0E894414374C5632A2E25EA94
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/m-euG2-VciwBBIts7tQFgvdUPO4.roa
Signing time: Mon 20 May 2024 06:25:04 +0000
ROA not before: Mon 20 May 2024 06:25:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10103
IP address blocks: 178.255.244.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:ac:d0:b0:e8:94:41:43:74:c5:63:2a:2e:25:ea:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: May 20 06:25:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9be7ae1b6f95722c01048b6ceed40582f7543cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:d5:6c:94:62:7c:98:ad:d2:a6:e0:ac:b0:
62:bb:f9:3f:52:71:80:ca:51:49:ca:b3:5f:ba:43:
2e:b2:7f:7b:60:d1:60:e0:9f:e5:14:5e:1b:6a:6c:
ca:53:58:a5:d7:44:3b:2a:c3:8b:da:bc:80:c5:7f:
3e:ba:9b:10:73:6b:e8:4d:5d:b6:6b:52:47:88:0c:
f7:2a:c3:99:00:12:8d:2d:f0:fb:9a:32:c3:19:35:
46:e2:d5:e9:62:a4:ba:52:83:cb:3a:75:ee:33:b7:
04:1e:3a:f9:db:c0:06:e4:9c:11:78:20:1c:6f:91:
96:c7:3d:b8:f4:c2:f6:b0:5b:b7:6f:57:ad:77:67:
10:76:1e:3c:e5:66:b4:ad:86:a3:19:85:48:62:d5:
8d:02:e7:0a:8d:c2:80:84:54:a1:8c:45:26:94:bd:
85:72:07:f0:02:5d:cc:79:42:d8:98:69:3b:91:e0:
03:ec:ae:55:3b:4d:b5:ff:e3:9e:67:62:d1:c6:a3:
d3:dc:a4:79:a2:17:2f:8d:a1:20:ee:75:24:1f:44:
d3:99:d6:75:b3:4d:11:ea:0e:e0:4e:fe:14:70:8a:
de:d8:fd:dc:51:60:23:f8:4b:61:ab:59:b2:bb:75:
c7:03:66:32:ca:3c:42:b9:18:c0:73:fb:5b:a0:7b:
87:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E7:AE:1B:6F:95:72:2C:01:04:8B:6C:EE:D4:05:82:F7:54:3C:EE
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/m-euG2-VciwBBIts7tQFgvdUPO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.244.0/23
Signature Algorithm: sha256WithRSAEncryption
45:04:f5:5a:d4:a6:6b:1a:87:ed:65:44:a6:43:33:37:a0:0f:
c2:06:87:1e:09:7a:16:36:f8:6b:fb:49:8f:ef:ac:f3:a3:e9:
30:da:fc:48:04:91:1e:d7:de:77:26:22:58:2c:dd:52:f5:76:
cc:da:79:f6:2b:ef:84:f0:2b:d4:cf:cf:c0:d0:ab:85:16:93:
ac:29:50:87:44:11:97:b9:ba:52:33:d4:23:27:bb:d6:47:64:
ae:2a:a2:e3:b6:b6:59:46:08:80:a0:42:a1:75:4e:38:63:9b:
78:75:43:8d:dc:04:73:9a:76:6d:4c:38:85:ff:b0:af:ba:a7:
88:3c:ae:0f:01:8c:be:c9:84:71:79:fc:26:63:4e:7a:53:52:
37:b8:93:bd:d0:62:d8:f7:e6:fb:8c:d9:f7:22:39:ed:28:86:
c5:50:d4:94:ca:a5:f6:dc:50:74:f1:92:c3:23:95:bb:af:7e:
da:8d:0a:be:35:40:20:e0:97:7e:75:c1:f5:4e:30:e3:26:e8:
08:64:f4:82:2c:28:47:5e:ab:2c:0b:0c:04:83:5c:a4:d2:4c:
e7:20:f3:57:80:ed:9e:2b:01:d2:88:d2:ef:5d:e8:53:8b:c1:
27:2c:18:f7:91:40:11:e3:c1:95:2d:05:7c:87:bd:f5:e9:a5:
5e:b1:4c:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+UrNCw6JRBQ3TFYyouJeqUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0OGEyN2Y0NGIxMDQwNGM1MmY2ZmZjNGUwOGRjODJiZjhi
NWRlZTQwHhcNMjQwNTIwMDYyNTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmU3YWUxYjZmOTU3MjJjMDEwNDhiNmNlZWQ0MDU4MmY3NTQzY2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwjVbJRifJit0qbgrLBiu/k/UnGA
ylFJyrNfukMusn97YNFg4J/lFF4bamzKU1il10Q7KsOL2ryAxX8+upsQc2voTV22
a1JHiAz3KsOZABKNLfD7mjLDGTVG4tXpYqS6UoPLOnXuM7cEHjr528AG5JwReCAc
b5GWxz249ML2sFu3b1etd2cQdh485Wa0rYajGYVIYtWNAucKjcKAhFShjEUmlL2F
cgfwAl3MeULYmGk7keAD7K5VO021/+OeZ2LRxqPT3KR5ohcvjaEg7nUkH0TTmdZ1
s00R6g7gTv4UcIre2P3cUWAj+Ethq1myu3XHA2YyyjxCuRjAc/tboHuH7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJvnrhtvlXIsAQSLbO7UBYL3VDzuMB8GA1UdIwQY
MBaAFNSKJ/RLEEBMUvb/xOCNyCv4td7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYt
NTlmNTk4NGI2NGVhLzEvbS1ldUcyLVZjaXdCQkl0czd0UUZndmRVUE80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYtNTlmNTk4NGI2NGVh
LzEvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBsv/0MA0G
CSqGSIb3DQEBCwUAA4IBAQBFBPVa1KZrGoftZUSmQzM3oA/CBoceCXoWNvhr+0mP
76zzo+kw2vxIBJEe1953JiJYLN1S9XbM2nn2K++E8CvUz8/A0KuFFpOsKVCHRBGX
ubpSM9QjJ7vWR2SuKqLjtrZZRgiAoEKhdU44Y5t4dUON3ARzmnZtTDiF/7CvuqeI
PK4PAYy+yYRxefwmY056U1I3uJO90GLY9+b7jNn3IjntKIbFUNSUyqX23FB08ZLD
I5W7r37ajQq+NUAg4Jd+dcH1TjDjJugIZPSCLChHXqssCwwEg1yk0kznIPNXgO2e
KwHSiNLvXehTi8EnLBj3kUAR48GVLQV8h7316aVesUxY
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:55:47 2024 by rpki-client on console-fra.rpki-client.org