Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/k7Z3biCArqugKz4v6RQ9f0TH8w8.roa
File: k7Z3biCArqugKz4v6RQ9f0TH8w8.roa (raw, json)
Hash identifier: yKHyQShaKoqh71mMv3SriGcrTtLmGSnNlDWTUH2CTRg=
Subject key identifier: 93:B6:77:6E:20:80:AE:AB:A0:2B:3E:2F:E9:14:3D:7F:44:C7:F3:0F
Certificate issuer: /CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Certificate serial: 018CC7257C5EF321CA2C9BE2DA324038E693
Authority key identifier: F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/k7Z3biCArqugKz4v6RQ9f0TH8w8.roa
Signing time: Mon 01 Jan 2024 22:29:31 +0000
ROA not before: Mon 01 Jan 2024 22:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61053
IP address blocks: 185.169.140.0/22 maxlen: 22
94.176.188.0/24 maxlen: 24
94.176.189.0/24 maxlen: 24
185.172.159.0/24 maxlen: 24
185.172.158.0/24 maxlen: 24
185.172.157.0/24 maxlen: 24
185.172.156.0/24 maxlen: 24
93.115.11.0/24 maxlen: 24
185.80.128.0/22 maxlen: 22
185.34.52.0/22 maxlen: 22
185.111.180.0/24 maxlen: 24
91.225.104.0/22 maxlen: 22
185.111.183.0/24 maxlen: 24
185.111.182.0/24 maxlen: 24
185.111.181.0/24 maxlen: 24
91.211.244.0/22 maxlen: 22
2a05:7cc0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/8lap7bLZreIE2CMTzOmLZiOp2Kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/8lap7bLZreIE2CMTzOmLZiOp2Kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:46:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:7c:5e:f3:21:ca:2c:9b:e2:da:32:40:38:e6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Validity
Not Before: Jan 1 22:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93b6776e2080aeaba02b3e2fe9143d7f44c7f30f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5a:14:10:e2:1a:79:a0:ed:a7:c1:3b:0b:9c:
41:af:38:67:96:2a:45:a6:8f:c9:96:04:31:eb:11:
21:8c:21:20:96:f7:78:27:20:e3:28:45:84:5b:fd:
5b:ff:73:fb:7c:82:95:a3:10:b3:a6:d0:4a:1b:9c:
85:8c:97:4e:56:de:4a:ef:b8:98:2e:78:c7:bf:59:
38:a2:c3:87:80:02:d8:f9:9f:08:a3:c3:3c:63:46:
7e:18:a8:dd:4c:0f:be:bf:b9:aa:50:0f:c4:2c:f8:
cf:6d:8f:27:54:d3:e3:b2:24:f7:63:c5:d4:e1:2e:
31:ef:c4:26:6f:c4:7e:0c:31:43:64:8d:ad:4f:26:
8f:05:a0:08:19:37:35:c3:67:3e:a2:69:0b:9a:c8:
2f:c6:84:51:6e:c3:7b:a0:c1:d6:22:11:0b:65:8b:
3c:4b:5a:68:00:1f:9f:35:c0:e3:27:a7:7a:84:90:
af:e7:89:7f:e2:5b:ba:9b:e5:1a:b5:86:d5:9e:c3:
58:4d:e7:b0:68:d4:05:cb:8c:aa:f6:c2:30:9e:d2:
69:d9:03:46:d4:75:a7:6a:ec:75:7f:30:1a:f6:67:
7c:a6:02:9a:ae:59:4a:2a:ad:4f:9f:08:9f:6c:35:
d0:22:d6:ef:76:4d:b7:87:dc:e6:e2:51:3d:02:29:
ee:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B6:77:6E:20:80:AE:AB:A0:2B:3E:2F:E9:14:3D:7F:44:C7:F3:0F
X509v3 Authority Key Identifier:
keyid:F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/k7Z3biCArqugKz4v6RQ9f0TH8w8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/8lap7bLZreIE2CMTzOmLZiOp2Kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.244.0/22
91.225.104.0/22
93.115.11.0/24
94.176.188.0/23
185.34.52.0/22
185.80.128.0/22
185.111.180.0/22
185.169.140.0/22
185.172.156.0/22
IPv6:
2a05:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
1a:b3:34:ae:88:83:d8:79:90:b2:cd:32:15:d3:11:f7:37:8c:
df:b0:79:2b:b5:8a:2f:1e:92:99:06:97:82:c5:76:c9:7f:02:
31:1e:5c:65:80:ca:b6:23:4e:a3:ad:b4:74:cf:e2:63:2b:d6:
84:c2:7a:3e:4e:ca:66:4f:6d:29:7c:ba:1a:6b:7d:40:2a:ec:
e2:d8:1f:8c:e9:94:6f:21:81:8a:a8:f8:f7:8d:63:ff:f1:ee:
33:7e:c6:f5:7a:15:dc:4a:b5:15:f4:3d:85:a2:22:ae:a7:2f:
47:05:44:52:fc:52:9d:dc:8b:1e:10:0d:3e:32:a4:1f:61:28:
aa:76:be:bc:54:70:e7:99:ed:ae:06:bb:ad:a1:23:61:44:57:
1b:df:fd:a8:91:b3:fc:66:95:5c:7c:08:a1:4b:e8:2e:45:5f:
43:9d:f0:ae:78:f3:6b:36:15:82:a2:29:97:f7:ed:d2:ef:71:
f8:58:e9:e1:fd:74:07:ce:fd:84:d0:3f:79:28:44:57:23:cd:
da:89:58:79:db:1a:db:b5:00:7d:d7:61:74:7b:57:76:d2:c6:
fb:23:47:f1:b2:73:86:61:cc:5e:e4:a2:7c:a7:6a:b0:98:76:
2d:fa:84:41:28:90:55:4c:4c:35:60:d5:a9:1e:45:ab:e7:98:
9b:e0:33:e2
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAYzHJXxe8yHKLJvi2jJAOOaTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNTZhOWVkYjJkOWFkZTIwNGQ4MjMxM2NjZTk4YjY2MjNh
OWQ4YWMwHhcNMjQwMTAxMjIyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2I2Nzc2ZTIwODBhZWFiYTAyYjNlMmZlOTE0M2Q3ZjQ0YzdmMzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FoUEOIaeaDtp8E7C5xBrzhnlipF
po/JlgQx6xEhjCEglvd4JyDjKEWEW/1b/3P7fIKVoxCzptBKG5yFjJdOVt5K77iY
LnjHv1k4osOHgALY+Z8Io8M8Y0Z+GKjdTA++v7mqUA/ELPjPbY8nVNPjsiT3Y8XU
4S4x78Qmb8R+DDFDZI2tTyaPBaAIGTc1w2c+omkLmsgvxoRRbsN7oMHWIhELZYs8
S1poAB+fNcDjJ6d6hJCv54l/4lu6m+UatYbVnsNYTeewaNQFy4yq9sIwntJp2QNG
1HWnaux1fzAa9md8pgKarllKKq1PnwifbDXQItbvdk23h9zm4lE9AinuAQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFJO2d24ggK6roCs+L+kUPX9Ex/MPMB8GA1UdIwQY
MBaAFPJWqe2y2a3iBNgjE8zpi2YjqdisMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGxhcDdiTFpyZUlFMkNNVHpPbUxaaU9wMkt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8xMjZjOWUtNGZhNy00OWQ0LTkyOGMt
OTEwN2M5MTJkN2Q4LzEvazdaM2JpQ0FycXVnS3o0djZSUTlmMFRIOHc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC8xMjZjOWUtNGZhNy00OWQ0LTkyOGMtOTEwN2M5MTJkN2Q4
LzEvOGxhcDdiTFpyZUlFMkNNVHpPbUxaaU9wMkt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQCW9P0AwQC
W+FoAwQAXXMLAwQBXrC8AwQCuSI0AwQCuVCAAwQCuW+0AwQCuamMAwQCuaycMA0E
AgACMAcDBQMqBXzAMA0GCSqGSIb3DQEBCwUAA4IBAQAaszSuiIPYeZCyzTIV0xH3
N4zfsHkrtYovHpKZBpeCxXbJfwIxHlxlgMq2I06jrbR0z+JjK9aEwno+TspmT20p
fLoaa31AKuzi2B+M6ZRvIYGKqPj3jWP/8e4zfsb1ehXcSrUV9D2FoiKupy9HBURS
/FKd3IseEA0+MqQfYSiqdr68VHDnme2uBrutoSNhRFcb3/2okbP8ZpVcfAihS+gu
RV9DnfCuePNrNhWCoimX9+3S73H4WOnh/XQHzv2E0D95KERXI83aiVh52xrbtQB9
12F0e1d20sb7I0fxsnOGYcxe5KJ8p2qwmHYt+oRBKJBVTEw1YNWpHkWr55ib4DPi
-----END CERTIFICATE-----
Generated at Fri May 17 20:12:30 2024 by rpki-client on console-ams.rpki-client.org