Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/bArjeEMjdTaAhH_pgr5z-xJqP9Q.roa
File: bArjeEMjdTaAhH_pgr5z-xJqP9Q.roa (raw, json)
Hash identifier: 5N6lsOgYfXya5Ddw5iZ8aYNot/m752ti/Qah+8fnAjs=
Subject key identifier: 6C:0A:E3:78:43:23:75:36:80:84:7F:E9:82:BE:73:FB:12:6A:3F:D4
Certificate issuer: /CN=c9dcb695c70db4b96370600750918a4b3a8a21a9
Certificate serial: 018CC6B92DA02998377685E4A02BC2DEEECF
Authority key identifier: C9:DC:B6:95:C7:0D:B4:B9:63:70:60:07:50:91:8A:4B:3A:8A:21:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydy2lccNtLljcGAHUJGKSzqKIak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/bArjeEMjdTaAhH_pgr5z-xJqP9Q.roa
Signing time: Mon 01 Jan 2024 20:31:13 +0000
ROA not before: Mon 01 Jan 2024 20:31:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56865
IP address blocks: 77.240.85.0/24 maxlen: 24
77.240.84.0/24 maxlen: 24
77.240.84.0/23 maxlen: 23
85.184.238.0/23 maxlen: 23
85.184.238.0/24 maxlen: 24
85.184.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/ydy2lccNtLljcGAHUJGKSzqKIak.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/ydy2lccNtLljcGAHUJGKSzqKIak.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydy2lccNtLljcGAHUJGKSzqKIak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:2d:a0:29:98:37:76:85:e4:a0:2b:c2:de:ee:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dcb695c70db4b96370600750918a4b3a8a21a9
Validity
Not Before: Jan 1 20:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c0ae3784323753680847fe982be73fb126a3fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:43:c1:3b:60:20:21:cb:24:35:b0:8c:7a:24:
8a:93:a3:82:11:0e:4a:1a:7a:d6:90:f2:21:85:08:
8b:ec:55:6d:70:e8:47:ab:8b:c3:c0:e9:c6:7f:72:
db:5c:e5:5c:c4:40:b6:85:73:a3:e4:83:03:e9:9d:
c3:54:c8:0c:66:ce:76:cb:0b:eb:91:6e:85:18:b0:
9b:a0:ff:46:02:13:dc:9d:07:64:75:48:32:25:d5:
e8:ae:ba:fe:f2:ae:17:ca:95:3f:23:39:f8:a2:28:
fa:2e:d5:6b:4e:dd:96:46:1b:d8:45:2b:ab:92:a9:
a7:27:03:7b:fb:d3:93:a0:b4:12:d5:54:61:e1:d6:
b9:45:cb:2e:69:3f:ef:3a:37:bc:ba:af:5a:a4:99:
bc:59:10:b7:65:8c:49:b9:65:7c:ee:0e:f4:f0:3f:
58:a6:5a:7d:db:24:66:0c:93:4d:8d:2c:dc:1c:0f:
41:0d:e3:4f:bf:e5:25:7c:07:44:35:2c:e2:b8:2e:
d9:6e:20:ab:9a:b8:9d:7e:61:cd:79:fa:10:fb:33:
73:3d:3e:81:0d:5d:a3:4d:74:c5:a3:00:f2:46:5d:
28:6c:85:8a:2b:20:c3:96:22:5a:ca:9b:b5:4d:f9:
4d:ed:68:25:76:39:7c:e8:20:81:58:99:70:21:9a:
72:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0A:E3:78:43:23:75:36:80:84:7F:E9:82:BE:73:FB:12:6A:3F:D4
X509v3 Authority Key Identifier:
keyid:C9:DC:B6:95:C7:0D:B4:B9:63:70:60:07:50:91:8A:4B:3A:8A:21:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydy2lccNtLljcGAHUJGKSzqKIak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/bArjeEMjdTaAhH_pgr5z-xJqP9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0222fe-dcc8-4a7d-bfa2-eca978c3cb85/1/ydy2lccNtLljcGAHUJGKSzqKIak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.84.0/23
85.184.238.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:b3:c2:2f:fd:55:11:2d:da:8f:37:92:ed:95:40:e7:4f:d0:
86:b4:49:82:09:1c:c9:76:36:38:1a:a5:bb:b6:7b:b8:34:e8:
ad:ac:2e:97:3c:c7:ea:6c:0a:10:f9:09:05:86:5a:2a:51:ce:
c5:78:21:1f:3a:6c:86:26:be:81:2f:20:c7:4d:34:a9:70:a5:
3b:72:36:f0:87:ec:bf:87:8b:10:87:2f:13:bf:51:f2:59:35:
a3:f3:c8:91:ec:d0:70:e8:7e:df:52:05:f6:f0:00:02:e0:41:
21:d4:e1:e4:61:e1:3a:d1:76:08:b9:e8:c9:0b:69:92:ec:3c:
be:16:ca:0b:f7:04:b2:c3:c2:82:8e:f9:55:c5:d0:14:24:70:
91:40:30:11:64:6d:e4:8f:c4:12:63:6a:ab:65:7a:3c:28:cc:
64:d9:e3:cb:76:13:e2:ea:29:9b:e3:95:00:59:d3:d7:66:77:
0a:a2:38:4a:e4:f4:c5:8a:4b:43:2a:b0:65:a0:49:9e:90:3a:
0f:88:5b:a1:11:19:28:f1:db:3e:65:ad:c1:8a:84:8c:67:b2:
db:b1:f6:29:37:ba:5a:09:c8:3b:0c:65:75:07:85:9d:26:c6:
a6:63:e9:cc:cd:24:c2:2a:05:8d:fc:67:6e:e8:20:4a:e1:21:
aa:48:47:35
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzGuS2gKZg3doXkoCvC3u7PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZGNiNjk1YzcwZGI0Yjk2MzcwNjAwNzUwOTE4YTRiM2E4
YTIxYTkwHhcNMjQwMTAxMjAzMTEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzBhZTM3ODQzMjM3NTM2ODA4NDdmZTk4MmJlNzNmYjEyNmEzZmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0PBO2AgIcskNbCMeiSKk6OCEQ5K
GnrWkPIhhQiL7FVtcOhHq4vDwOnGf3LbXOVcxEC2hXOj5IMD6Z3DVMgMZs52ywvr
kW6FGLCboP9GAhPcnQdkdUgyJdXorrr+8q4XypU/Izn4oij6LtVrTt2WRhvYRSur
kqmnJwN7+9OToLQS1VRh4da5RcsuaT/vOje8uq9apJm8WRC3ZYxJuWV87g708D9Y
plp92yRmDJNNjSzcHA9BDeNPv+UlfAdENSziuC7ZbiCrmridfmHNefoQ+zNzPT6B
DV2jTXTFowDyRl0obIWKKyDDliJaypu1TflN7Wgldjl86CCBWJlwIZpytQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGwK43hDI3U2gIR/6YK+c/sSaj/UMB8GA1UdIwQY
MBaAFMnctpXHDbS5Y3BgB1CRiks6iiGpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWR5MmxjY050TGxqY0dBSFVKR0tTenFLSWFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8wMjIyZmUtZGNjOC00YTdkLWJmYTIt
ZWNhOTc4YzNjYjg1LzEvYkFyamVFTWpkVGFBaEhfcGdyNXoteEpxUDlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8wMjIyZmUtZGNjOC00YTdkLWJmYTItZWNhOTc4YzNjYjg1
LzEveWR5MmxjY050TGxqY0dBSFVKR0tTenFLSWFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBTfBUAwQB
VbjuMA0GCSqGSIb3DQEBCwUAA4IBAQALs8Iv/VURLdqPN5LtlUDnT9CGtEmCCRzJ
djY4GqW7tnu4NOitrC6XPMfqbAoQ+QkFhloqUc7FeCEfOmyGJr6BLyDHTTSpcKU7
cjbwh+y/h4sQhy8Tv1HyWTWj88iR7NBw6H7fUgX28AAC4EEh1OHkYeE60XYIuejJ
C2mS7Dy+FsoL9wSyw8KCjvlVxdAUJHCRQDARZG3kj8QSY2qrZXo8KMxk2ePLdhPi
6imb45UAWdPXZncKojhK5PTFiktDKrBloEmekDoPiFuhERko8ds+Za3BioSMZ7Lb
sfYpN7paCcg7DGV1B4WdJsamY+nMzSTCKgWN/Gdu6CBK4SGqSEc1
-----END CERTIFICATE-----
Generated at Fri Jun 7 20:38:21 2024 by rpki-client on console-ams.rpki-client.org