Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/jB_1rHu8hVX2q4J0eghYTOENVDQ.roa
File: jB_1rHu8hVX2q4J0eghYTOENVDQ.roa (raw, json)
Hash identifier: SXizia4+QEkT0Jowu8wEn1I23w5/mFz3/5iRHdy5y78=
Subject key identifier: 8C:1F:F5:AC:7B:BC:85:55:F6:AB:82:74:7A:08:58:4C:E1:0D:54:34
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 0192F1FE34D111A0CBEF08FA4DEC705417CE
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/jB_1rHu8hVX2q4J0eghYTOENVDQ.roa
Signing time: Sun 03 Nov 2024 12:27:01 +0000
ROA not before: Sun 03 Nov 2024 12:27:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213953
IP address blocks: 88.218.16.0/24 maxlen: 24
193.228.168.0/24 maxlen: 24
193.228.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f1:fe:34:d1:11:a0:cb:ef:08:fa:4d:ec:70:54:17:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Nov 3 12:27:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c1ff5ac7bbc8555f6ab82747a08584ce10d5434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ac:d8:5d:29:b6:2a:52:5c:1a:37:65:7f:a6:
88:49:9d:81:ee:d8:25:9b:90:46:07:e8:4b:31:26:
4a:ca:3b:06:52:e5:fd:12:91:4a:dc:13:9e:8f:9e:
19:49:d2:c2:08:40:cd:af:ba:71:f7:8b:87:e9:e6:
44:12:bb:dc:02:d1:da:20:43:60:c1:15:5f:84:49:
1e:ac:aa:3a:d3:bc:4e:63:5c:4a:e0:6f:e2:23:f8:
ab:0a:df:ee:1e:7d:2e:aa:e5:74:ca:9c:86:2c:51:
2e:b9:69:fe:1f:c0:a3:70:83:4a:bc:06:19:5d:7e:
04:83:9e:d7:cd:ed:0b:34:3f:3e:bc:ff:68:f0:12:
44:43:5c:01:21:e6:9e:dc:ab:97:7b:86:f2:82:50:
56:c5:79:0c:4a:e1:fa:e9:b7:d6:54:52:47:41:9e:
8a:a2:cb:d8:04:7a:69:43:c3:83:30:b8:85:c9:b3:
78:51:ad:4d:89:5b:32:81:ff:a5:e6:6c:39:cc:c1:
13:c3:d3:8c:2b:33:bf:f3:97:df:b9:72:0e:2e:d4:
80:d6:2f:97:f9:34:ba:e4:52:a6:1a:48:01:48:e6:
44:b8:be:29:64:98:42:d3:00:23:2e:ff:70:3d:a2:
25:18:2e:e4:bb:62:90:9f:88:f6:be:98:3e:55:42:
f0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:1F:F5:AC:7B:BC:85:55:F6:AB:82:74:7A:08:58:4C:E1:0D:54:34
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/jB_1rHu8hVX2q4J0eghYTOENVDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.16.0/24
193.228.168.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:86:6b:ad:43:76:c6:ee:4a:75:7d:47:28:19:0d:54:0c:10:
ed:23:17:eb:7b:64:32:79:5b:85:a1:c0:b4:19:bf:5e:09:b3:
78:02:a6:33:f0:02:48:12:7d:28:00:e3:c8:98:30:af:0f:9f:
b0:fb:03:d5:74:b8:40:cf:e2:af:06:7b:25:71:3d:10:9e:52:
d8:97:63:18:e0:26:51:11:4c:a9:1c:11:21:f2:91:94:79:c3:
ee:0b:61:5b:7c:5c:63:ab:d3:be:51:41:49:08:87:c4:d0:a5:
43:ea:c1:08:6f:d3:bd:46:b4:2c:dd:15:41:6a:e4:a0:35:82:
0f:e8:25:09:a8:ec:97:c8:ef:2b:be:af:31:32:d9:b6:cd:b8:
5d:94:69:0f:7e:02:4e:7a:ed:74:dc:a4:99:6b:f3:b4:cb:53:
7d:fb:ac:09:58:34:57:df:e6:04:62:8c:c7:63:27:32:6e:42:
65:37:4c:75:38:db:e2:0f:17:36:8d:ff:f3:ea:ba:7d:bc:1b:
07:1f:f8:02:a5:fc:75:6d:b0:d7:69:76:eb:be:06:97:74:19:
1b:29:bb:15:63:07:74:bc:6c:7f:4b:83:32:89:08:41:aa:d6:
4f:f4:2c:bb:e3:45:bc:f7:dc:d0:3e:07:d6:ec:9a:71:8b:e6:
ba:72:46:68
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZLx/jTREaDL7wj6TexwVBfOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlZTA1M2NiOWNiNGY0MWMxZTQ3NzNlN2YxNmU4NGJiNTc1
MjIwMzMwHhcNMjQxMTAzMTIyNzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzFmZjVhYzdiYmM4NTU1ZjZhYjgyNzQ3YTA4NTg0Y2UxMGQ1NDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26zYXSm2KlJcGjdlf6aISZ2B7tgl
m5BGB+hLMSZKyjsGUuX9EpFK3BOej54ZSdLCCEDNr7px94uH6eZEErvcAtHaIENg
wRVfhEkerKo607xOY1xK4G/iI/irCt/uHn0uquV0ypyGLFEuuWn+H8CjcINKvAYZ
XX4Eg57Xze0LND8+vP9o8BJEQ1wBIeae3KuXe4byglBWxXkMSuH66bfWVFJHQZ6K
osvYBHppQ8ODMLiFybN4Ua1NiVsygf+l5mw5zMETw9OMKzO/85ffuXIOLtSA1i+X
+TS65FKmGkgBSOZEuL4pZJhC0wAjLv9wPaIlGC7ku2KQn4j2vpg+VULwyQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIwf9ax7vIVV9quCdHoIWEzhDVQ0MB8GA1UdIwQY
MBaAFH7gU8uctPQcHkdz5/FuhLtXUiAzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYt
MThlODZmMGIxZDgxLzEvakJfMXJIdThoVlgycTRKMGVnaFlUT0VOVkRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYtMThlODZmMGIxZDgx
LzEvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWNoQAwQB
weSoMA0GCSqGSIb3DQEBCwUAA4IBAQCPhmutQ3bG7kp1fUcoGQ1UDBDtIxfre2Qy
eVuFocC0Gb9eCbN4AqYz8AJIEn0oAOPImDCvD5+w+wPVdLhAz+KvBnslcT0QnlLY
l2MY4CZREUypHBEh8pGUecPuC2FbfFxjq9O+UUFJCIfE0KVD6sEIb9O9RrQs3RVB
auSgNYIP6CUJqOyXyO8rvq8xMtm2zbhdlGkPfgJOeu103KSZa/O0y1N9+6wJWDRX
3+YEYozHYycybkJlN0x1ONviDxc2jf/z6rp9vBsHH/gCpfx1bbDXaXbrvgaXdBkb
KbsVYwd0vGx/S4MyiQhBqtZP9Cy740W899zQPgfW7Jpxi+a6ckZo
-----END CERTIFICATE-----
Generated at Fri Nov 22 19:53:34 2024 by rpki-client on console-fra.rpki-client.org