Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/nIDNZ_l_YiJ9DFcDbnApB0SWqe0.roa
File: nIDNZ_l_YiJ9DFcDbnApB0SWqe0.roa (raw, json)
Hash identifier: RgfRxqe8cpAUb1zK5TlzJElleBnxgNER634M9Q+5AVw=
Subject key identifier: 9C:80:CD:67:F9:7F:62:22:7D:0C:57:03:6E:70:29:07:44:96:A9:ED
Certificate issuer: /CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621
Certificate serial: 018CC802FC481E202D273666DAE8B8CDFB5A
Authority key identifier: EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/nIDNZ_l_YiJ9DFcDbnApB0SWqe0.roa
Signing time: Tue 02 Jan 2024 02:31:27 +0000
ROA not before: Tue 02 Jan 2024 02:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9051
IP address blocks: 80.79.144.0/20 maxlen: 24
80.79.145.0/24 maxlen: 24
185.125.158.0/24 maxlen: 24
185.125.159.0/24 maxlen: 24
185.125.156.0/22 maxlen: 24
185.125.156.0/24 maxlen: 24
185.125.157.0/24 maxlen: 24
80.79.150.0/24 maxlen: 24
80.79.151.0/24 maxlen: 24
80.79.149.0/24 maxlen: 24
80.79.147.0/24 maxlen: 24
80.79.148.0/24 maxlen: 24
80.79.152.0/21 maxlen: 21
80.79.146.0/24 maxlen: 24
80.79.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:fc:48:1e:20:2d:27:36:66:da:e8:b8:cd:fb:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621
Validity
Not Before: Jan 2 02:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c80cd67f97f62227d0c57036e7029074496a9ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0a:62:15:5a:23:46:b1:98:62:ca:52:f0:55:
10:54:cd:f5:ba:02:64:20:87:d9:da:d2:f6:aa:ad:
e4:af:93:50:25:06:fd:1a:96:36:dd:d4:4a:32:bc:
d7:d3:32:29:ad:ee:63:ee:74:fe:29:1c:11:55:12:
bb:ba:04:bc:41:1a:d5:73:32:39:97:ca:44:9d:7b:
56:a3:f0:4f:6f:cb:d0:23:ed:ff:0e:7f:69:d4:61:
31:70:fe:49:0b:09:5c:70:92:c6:87:4b:6e:0e:7f:
1b:1b:33:ef:e1:bd:5a:1c:b0:01:8c:bb:43:e6:3a:
b2:77:65:4d:e0:15:de:af:9e:d2:41:8a:bc:50:9b:
0e:2e:76:24:3a:25:ac:f8:d3:66:39:88:1a:e0:d8:
95:7f:d9:db:70:a2:2b:ac:98:91:c5:8a:9c:bf:b6:
be:b3:ce:ae:cb:db:90:24:5b:91:4f:28:60:47:7c:
8c:54:e9:86:81:5a:d5:5b:aa:49:51:0a:cd:23:b0:
52:75:f6:cc:96:16:72:30:3f:03:9c:19:ba:1d:c9:
32:6f:6d:5f:09:fc:07:ad:30:9a:13:a6:77:cc:13:
81:2a:ef:bb:79:9b:96:74:c4:21:86:2b:2f:26:10:
2b:e9:a8:a2:1e:ba:69:99:f5:96:c8:92:1b:e7:05:
bb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:80:CD:67:F9:7F:62:22:7D:0C:57:03:6E:70:29:07:44:96:A9:ED
X509v3 Authority Key Identifier:
keyid:EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/nIDNZ_l_YiJ9DFcDbnApB0SWqe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.144.0/20
185.125.156.0/22
Signature Algorithm: sha256WithRSAEncryption
57:51:4d:69:21:d4:68:1f:9b:2a:2e:5f:65:98:19:88:50:6c:
7e:7b:fd:ad:42:e7:98:8c:ba:06:2e:03:ce:66:b5:0a:9d:e7:
98:1e:1a:43:b4:f3:ee:ae:9c:8a:e3:7c:2b:d5:df:04:0e:2b:
09:f2:c9:a7:c9:c2:56:f7:69:60:61:c7:ee:d2:70:be:c3:98:
3d:53:5e:65:51:1d:70:ba:9b:eb:20:07:77:c3:a1:c0:f2:73:
c7:a5:c4:53:cb:f2:02:53:bd:8b:af:97:8f:66:a4:91:47:e1:
c0:a5:22:43:b0:a0:b9:cf:01:f2:e5:b5:a9:be:64:2d:10:4b:
7b:d1:dd:a7:d7:21:a9:75:59:ad:62:e5:94:51:7e:d3:f7:25:
3d:3d:12:29:4f:7b:94:f5:7e:01:a4:77:8e:e2:2c:58:06:6a:
e5:21:08:9d:4a:fe:08:8d:af:fe:f6:31:aa:14:5d:5e:34:b6:
18:f3:a9:bb:76:3c:f9:ce:01:ba:35:7e:e2:5f:d4:92:5d:60:
3b:03:9f:dc:62:9c:47:c9:5d:8b:49:dc:79:79:0e:88:e1:1b:
c2:33:69:f0:1c:94:4c:01:66:bd:1f:ab:83:4e:aa:61:b2:8d:
70:9e:85:0f:96:b8:71:e1:9b:0d:4e:20:5b:74:96:3c:6c:7f:
0b:ff:1b:b8
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzIAvxIHiAtJzZm2ui4zftaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViZmFiZmE2MjgwNjNmNmI4ZTk4ODg1NjZmNWYzZmNmYTc5
OGM2MjEwHhcNMjQwMTAyMDIzMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzgwY2Q2N2Y5N2Y2MjIyN2QwYzU3MDM2ZTcwMjkwNzQ0OTZhOWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQpiFVojRrGYYspS8FUQVM31ugJk
IIfZ2tL2qq3kr5NQJQb9GpY23dRKMrzX0zIpre5j7nT+KRwRVRK7ugS8QRrVczI5
l8pEnXtWo/BPb8vQI+3/Dn9p1GExcP5JCwlccJLGh0tuDn8bGzPv4b1aHLABjLtD
5jqyd2VN4BXer57SQYq8UJsOLnYkOiWs+NNmOYga4NiVf9nbcKIrrJiRxYqcv7a+
s86uy9uQJFuRTyhgR3yMVOmGgVrVW6pJUQrNI7BSdfbMlhZyMD8DnBm6Hckyb21f
CfwHrTCaE6Z3zBOBKu+7eZuWdMQhhisvJhAr6aiiHrppmfWWyJIb5wW7OQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJyAzWf5f2IifQxXA25wKQdElqntMB8GA1UdIwQY
MBaAFOv6v6YoBj9rjpiIVm9fP8+nmMYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNl9xX3BpZ0dQMnVPbUloV2IxOF96NmVZeGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hM2EzMTEtMzc4NC00ODE4LWFiZjkt
ZTVmZDZlOTg0MmFiLzEvbklETlpfbF9ZaUo5REZjRGJuQXBCMFNXcWUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9hM2EzMTEtMzc4NC00ODE4LWFiZjktZTVmZDZlOTg0MmFi
LzEvNl9xX3BpZ0dQMnVPbUloV2IxOF96NmVZeGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEUE+QAwQC
uX2cMA0GCSqGSIb3DQEBCwUAA4IBAQBXUU1pIdRoH5sqLl9lmBmIUGx+e/2tQueY
jLoGLgPOZrUKneeYHhpDtPPurpyK43wr1d8EDisJ8smnycJW92lgYcfu0nC+w5g9
U15lUR1wupvrIAd3w6HA8nPHpcRTy/ICU72Lr5ePZqSRR+HApSJDsKC5zwHy5bWp
vmQtEEt70d2n1yGpdVmtYuWUUX7T9yU9PRIpT3uU9X4BpHeO4ixYBmrlIQidSv4I
ja/+9jGqFF1eNLYY86m7djz5zgG6NX7iX9SSXWA7A5/cYpxHyV2LSdx5eQ6I4RvC
M2nwHJRMAWa9H6uDTqphso1wnoUPlrhx4ZsNTiBbdJY8bH8L/xu4
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:37:13 2024 by rpki-client on console-fra.rpki-client.org