Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/lHsHglVAC4a4StbY07WyRgmBOfE.roa
File: lHsHglVAC4a4StbY07WyRgmBOfE.roa (raw, json)
Hash identifier: TO/cScmNDkTL7924rWSjSOJv3HA+c6xxj5WNNM9uNUg=
Subject key identifier: 94:7B:07:82:55:40:0B:86:B8:4A:D6:D8:D3:B5:B2:46:09:81:39:F1
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018CC2DB60CA4C9703F0F0595AB4DB9CC7FC
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/lHsHglVAC4a4StbY07WyRgmBOfE.roa
Signing time: Mon 01 Jan 2024 02:30:06 +0000
ROA not before: Mon 01 Jan 2024 02:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34665
IP address blocks: 213.226.113.0/24 maxlen: 24
194.93.1.0/24 maxlen: 24
77.83.81.0/24 maxlen: 24
109.196.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:60:ca:4c:97:03:f0:f0:59:5a:b4:db:9c:c7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 02:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=947b078255400b86b84ad6d8d3b5b246098139f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b8:85:1e:79:66:e4:5e:b4:32:67:f2:84:86:
83:ef:51:2b:97:da:18:89:19:6e:d1:9b:ad:5c:6b:
51:99:80:3a:8e:6f:fe:89:e1:8b:9d:e4:fc:c6:5c:
e2:78:51:de:cf:ab:ac:e6:7f:6c:85:ed:25:51:57:
15:4b:47:48:af:ce:02:de:81:27:71:35:cd:cf:37:
80:ed:9a:1e:4f:e6:29:48:42:4f:03:dc:9b:a5:6e:
d7:da:31:b1:44:97:34:7e:83:b8:92:0b:c2:0b:f9:
00:87:17:c3:79:cd:c2:9b:9e:8c:11:dd:05:e6:7f:
9c:9f:a5:a3:9c:1a:04:15:8c:db:fa:74:d1:f6:4d:
42:a2:bf:01:1c:bd:71:9f:8d:28:12:92:a1:2d:d8:
40:e4:f7:77:57:e9:58:af:84:40:fd:80:43:a8:b5:
18:5d:ba:39:5b:a5:90:a5:68:10:c8:1e:2c:d4:ab:
d4:90:0f:5d:9f:6c:77:ca:8f:82:7d:75:0f:ab:73:
9d:e9:17:82:72:57:44:69:1e:49:34:ef:48:1e:fc:
97:81:98:58:09:d8:db:11:f6:c5:c9:eb:29:2f:c6:
17:fd:e4:df:a3:3c:80:2a:86:d0:32:18:79:2c:2d:
44:a4:5b:9e:30:69:0d:83:61:ce:17:4f:c0:fb:2e:
8c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:7B:07:82:55:40:0B:86:B8:4A:D6:D8:D3:B5:B2:46:09:81:39:F1
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/lHsHglVAC4a4StbY07WyRgmBOfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.81.0/24
109.196.165.0/24
194.93.1.0/24
213.226.113.0/24
Signature Algorithm: sha256WithRSAEncryption
08:c1:bb:00:e5:09:d3:3b:d8:61:1b:bb:9c:d8:0b:1a:7c:a6:
9b:2d:52:03:f1:0c:79:4b:c4:3e:fb:21:6b:b7:1e:7f:55:8a:
fa:fa:de:35:f0:9a:40:29:ab:27:2c:e8:54:38:76:e7:75:36:
68:ec:d1:26:1f:6b:a0:2a:00:89:85:6e:c0:c7:4f:be:cb:13:
38:e5:b0:66:e4:59:9b:00:b6:f7:63:18:ce:0a:cc:6a:01:d1:
83:a0:52:34:5d:09:ac:94:5e:49:6c:c3:1f:25:8e:91:97:0e:
9d:df:65:43:31:35:6c:ab:c1:da:4c:06:d2:5f:30:54:71:e2:
46:38:5a:5e:a9:ad:85:8b:88:ef:ef:83:b2:21:7b:79:13:b4:
eb:91:7e:ef:88:f9:57:07:fa:b3:2a:ce:06:e1:68:9f:ea:42:
45:83:39:b7:5a:58:89:7d:e9:d3:97:e3:34:c7:41:85:82:26:
24:2f:aa:95:09:bc:c8:3e:0d:0f:2f:66:97:27:9f:b6:e6:91:
8b:37:37:b4:82:5e:54:fc:5a:2c:d8:b4:cd:58:e6:a0:9c:15:
b0:03:0a:3c:f9:c8:76:6e:9e:2c:a1:da:f7:ab:cf:bf:9a:92:
6e:b1:7f:9d:1f:2e:59:bd:bd:65:1e:3a:5b:76:b9:6a:c9:9b:
7b:f6:d7:ba
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYzC22DKTJcD8PBZWrTbnMf8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjQwMTAxMDIzMDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDdiMDc4MjU1NDAwYjg2Yjg0YWQ2ZDhkM2I1YjI0NjA5ODEzOWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkriFHnlm5F60MmfyhIaD71Erl9oY
iRlu0ZutXGtRmYA6jm/+ieGLneT8xlzieFHez6us5n9she0lUVcVS0dIr84C3oEn
cTXNzzeA7ZoeT+YpSEJPA9ybpW7X2jGxRJc0foO4kgvCC/kAhxfDec3Cm56MEd0F
5n+cn6WjnBoEFYzb+nTR9k1Cor8BHL1xn40oEpKhLdhA5Pd3V+lYr4RA/YBDqLUY
Xbo5W6WQpWgQyB4s1KvUkA9dn2x3yo+CfXUPq3Od6ReCcldEaR5JNO9IHvyXgZhY
CdjbEfbFyespL8YX/eTfozyAKobQMhh5LC1EpFueMGkNg2HOF0/A+y6MEQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFJR7B4JVQAuGuErW2NO1skYJgTnxMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvbEhzSGdsVkFDNGE0U3RiWTA3V3lSZ21CT2ZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQATVNRAwQA
bcSlAwQAwl0BAwQA1eJxMA0GCSqGSIb3DQEBCwUAA4IBAQAIwbsA5QnTO9hhG7uc
2AsafKabLVID8Qx5S8Q++yFrtx5/VYr6+t418JpAKasnLOhUOHbndTZo7NEmH2ug
KgCJhW7Ax0++yxM45bBm5FmbALb3YxjOCsxqAdGDoFI0XQmslF5JbMMfJY6Rlw6d
32VDMTVsq8HaTAbSXzBUceJGOFpeqa2Fi4jv74OyIXt5E7TrkX7viPlXB/qzKs4G
4Wif6kJFgzm3WliJfenTl+M0x0GFgiYkL6qVCbzIPg0PL2aXJ5+25pGLNze0gl5U
/Fos2LTNWOagnBWwAwo8+ch2bp4sodr3q8+/mpJusX+dHy5Zvb1lHjpbdrlqyZt7
9te6
-----END CERTIFICATE-----
Generated at Sun May 19 15:38:19 2024 by rpki-client on console-ams.rpki-client.org