Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/4f1087-2f1b-4ab5-ae71-26cdc55644d4/1/nQ7izosC-ahf3V5P737U_0x_Vvw.roa
File: nQ7izosC-ahf3V5P737U_0x_Vvw.roa (raw, json)
Hash identifier: lAxSWFDRnwOPMu8MKyYWVLtetcztLfvJnmSycX/YawU=
Subject key identifier: 9D:0E:E2:CE:8B:02:F9:A8:5F:DD:5E:4F:EF:7E:D4:FF:4C:7F:56:FC
Certificate issuer: /CN=ef0ec81b9c653b8e340508ff848db066e36772b0
Certificate serial: 018DA3CAA039BBB3F93AA2D7413409FADF83
Authority key identifier: EF:0E:C8:1B:9C:65:3B:8E:34:05:08:FF:84:8D:B0:66:E3:67:72:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7w7IG5xlO440BQj_hI2wZuNncrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/4f1087-2f1b-4ab5-ae71-26cdc55644d4/1/nQ7izosC-ahf3V5P737U_0x_Vvw.roa
Signing time: Tue 13 Feb 2024 18:46:21 +0000
ROA not before: Tue 13 Feb 2024 18:46:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34471
IP address blocks: 5.182.160.0/22 maxlen: 24
185.107.160.0/22 maxlen: 24
185.218.252.0/22 maxlen: 24
193.111.171.0/24 maxlen: 24
193.111.196.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/4f1087-2f1b-4ab5-ae71-26cdc55644d4/1/7w7IG5xlO440BQj_hI2wZuNncrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/4f1087-2f1b-4ab5-ae71-26cdc55644d4/1/7w7IG5xlO440BQj_hI2wZuNncrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7w7IG5xlO440BQj_hI2wZuNncrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a3:ca:a0:39:bb:b3:f9:3a:a2:d7:41:34:09:fa:df:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef0ec81b9c653b8e340508ff848db066e36772b0
Validity
Not Before: Feb 13 18:46:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d0ee2ce8b02f9a85fdd5e4fef7ed4ff4c7f56fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:05:1f:5f:c2:1b:c4:3b:e1:a9:32:43:5a:
28:3a:b2:5e:32:70:d4:18:60:7c:1e:8d:1a:df:3e:
99:e7:20:e6:ac:aa:e5:e0:51:8e:03:7a:8e:53:78:
e9:66:6c:cb:2f:f9:1f:90:a5:84:3a:c5:87:cc:c0:
17:7d:82:d4:c2:78:81:15:27:30:fd:79:a0:7e:8d:
cd:26:fb:2c:16:15:a1:60:25:df:32:7e:14:30:00:
cb:a3:da:fc:f7:d3:02:6a:8e:ca:e2:e6:a5:6b:1d:
0c:f6:58:46:d0:7e:db:38:68:a2:e4:9b:c4:82:42:
f7:de:10:19:74:50:ac:f0:dc:a9:33:15:69:0a:9a:
3e:9a:13:06:db:c8:d7:5f:db:97:ed:fd:d0:f7:e3:
7a:0d:a0:c1:a5:99:67:e6:6f:9f:4a:7d:1e:02:ab:
f5:c2:36:d2:39:c9:bb:de:b8:04:7b:4d:fc:c2:64:
07:73:d6:94:ac:35:77:f9:09:b0:ed:d5:7e:bd:5c:
9d:75:ed:26:a6:84:69:f4:e5:bd:3e:6b:18:5f:4c:
a0:c0:16:a2:73:73:2c:75:66:3f:49:16:a1:8f:15:
f9:97:24:2f:dd:5d:4a:aa:94:fd:f6:52:47:c2:2d:
f1:7a:fd:e7:fa:0b:10:09:b8:ac:8f:42:4b:e3:8f:
41:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0E:E2:CE:8B:02:F9:A8:5F:DD:5E:4F:EF:7E:D4:FF:4C:7F:56:FC
X509v3 Authority Key Identifier:
keyid:EF:0E:C8:1B:9C:65:3B:8E:34:05:08:FF:84:8D:B0:66:E3:67:72:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7w7IG5xlO440BQj_hI2wZuNncrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4f1087-2f1b-4ab5-ae71-26cdc55644d4/1/nQ7izosC-ahf3V5P737U_0x_Vvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4f1087-2f1b-4ab5-ae71-26cdc55644d4/1/7w7IG5xlO440BQj_hI2wZuNncrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.160.0/22
185.107.160.0/22
185.218.252.0/22
193.111.171.0/24
193.111.196.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:20:68:4d:53:47:1c:27:f4:27:bf:a4:29:f1:47:14:e8:92:
db:8b:69:cd:f5:70:e5:12:db:10:ee:db:f2:cb:64:ed:0a:c6:
04:21:da:e2:70:93:c1:a1:04:48:42:f6:ce:64:dd:de:60:12:
5a:4b:8b:c4:11:ef:70:6a:47:92:13:e2:e6:9d:dd:58:11:69:
d9:58:57:0a:6d:e4:c2:d6:38:be:cb:19:7b:41:44:3f:9f:28:
a2:e0:56:48:ae:89:45:ca:07:f4:20:c9:08:a3:17:2f:20:e3:
42:17:ae:8e:13:f7:38:c1:4f:3c:97:81:6e:39:57:29:b1:51:
4a:7a:70:e6:1d:de:bf:fe:96:ce:8b:84:7b:be:df:57:05:0f:
d7:68:9d:74:a5:d0:fb:5d:e2:7e:f8:ee:98:4a:50:4b:93:51:
f2:88:9a:e8:a4:0e:e7:6d:c3:e3:f3:59:58:f8:e6:db:b1:11:
aa:a2:fd:aa:d2:50:0a:6d:2b:77:8c:c8:51:8e:89:ef:3c:a1:
c0:50:af:ce:eb:92:d8:e5:6a:29:42:a6:1f:33:33:fe:8f:57:
4c:6c:96:72:de:f4:39:60:45:10:80:59:d0:3d:04:04:fa:f7:
9c:c4:63:ee:cd:ec:e7:c3:dc:a9:2a:00:a1:32:14:1e:28:c6:
1b:6b:c0:96
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAY2jyqA5u7P5OqLXQTQJ+t+DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMGVjODFiOWM2NTNiOGUzNDA1MDhmZjg0OGRiMDY2ZTM2
NzcyYjAwHhcNMjQwMjEzMTg0NjIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDBlZTJjZThiMDJmOWE4NWZkZDVlNGZlZjdlZDRmZjRjN2Y1NmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugIFH1/CG8Q74akyQ1ooOrJeMnDU
GGB8Ho0a3z6Z5yDmrKrl4FGOA3qOU3jpZmzLL/kfkKWEOsWHzMAXfYLUwniBFScw
/Xmgfo3NJvssFhWhYCXfMn4UMADLo9r899MCao7K4ualax0M9lhG0H7bOGii5JvE
gkL33hAZdFCs8NypMxVpCpo+mhMG28jXX9uX7f3Q9+N6DaDBpZln5m+fSn0eAqv1
wjbSOcm73rgEe038wmQHc9aUrDV3+Qmw7dV+vVydde0mpoRp9OW9PmsYX0ygwBai
c3MsdWY/SRahjxX5lyQv3V1KqpT99lJHwi3xev3n+gsQCbisj0JL449BzwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFJ0O4s6LAvmoX91eT+9+1P9Mf1b8MB8GA1UdIwQY
MBaAFO8OyBucZTuONAUI/4SNsGbjZ3KwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3c3SUc1eGxPNDQwQlFqX2hJMndadU5uY3JBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80ZjEwODctMmYxYi00YWI1LWFlNzEt
MjZjZGM1NTY0NGQ0LzEvblE3aXpvc0MtYWhmM1Y1UDczN1VfMHhfVnZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy80ZjEwODctMmYxYi00YWI1LWFlNzEtMjZjZGM1NTY0NGQ0
LzEvN3c3SUc1eGxPNDQwQlFqX2hJMndadU5uY3JBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCBbagAwQC
uWugAwQCudr8AwQAwW+rAwQBwW/EMA0GCSqGSIb3DQEBCwUAA4IBAQA/IGhNU0cc
J/Qnv6Qp8UcU6JLbi2nN9XDlEtsQ7tvyy2TtCsYEIdricJPBoQRIQvbOZN3eYBJa
S4vEEe9wakeSE+Lmnd1YEWnZWFcKbeTC1ji+yxl7QUQ/nyii4FZIrolFygf0IMkI
oxcvIONCF66OE/c4wU88l4FuOVcpsVFKenDmHd6//pbOi4R7vt9XBQ/XaJ10pdD7
XeJ++O6YSlBLk1HyiJropA7nbcPj81lY+ObbsRGqov2q0lAKbSt3jMhRjonvPKHA
UK/O65LY5WopQqYfMzP+j1dMbJZy3vQ5YEUQgFnQPQQE+vecxGPuzeznw9ypKgCh
MhQeKMYba8CW
-----END CERTIFICATE-----
Generated at Fri Jun 7 14:18:28 2024 by rpki-client on console-fra.rpki-client.org