Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/EZBWVER6RlsPS5zwpSfeXDYY4_4.roa
File: EZBWVER6RlsPS5zwpSfeXDYY4_4.roa (raw, json)
Hash identifier: TmP6HB2vfugTxNqU8/mbrbGgjAkZNuZVMOPZ6v4m2ZU=
Subject key identifier: 11:90:56:54:44:7A:46:5B:0F:4B:9C:F0:A5:27:DE:5C:36:18:E3:FE
Certificate issuer: /CN=8cad303bc70b12f83dbf89fc1489cb4612cf5526
Certificate serial: 01942444BCD679D1EE98FF272DAA251941EE
Authority key identifier: 8C:AD:30:3B:C7:0B:12:F8:3D:BF:89:FC:14:89:CB:46:12:CF:55:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jK0wO8cLEvg9v4n8FInLRhLPVSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/EZBWVER6RlsPS5zwpSfeXDYY4_4.roa
Signing time: Wed 01 Jan 2025 23:47:51 +0000
ROA not before: Wed 01 Jan 2025 23:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29584
IP address blocks: 82.194.0.0/24 maxlen: 24
82.194.1.0/24 maxlen: 24
82.194.2.0/24 maxlen: 24
82.194.3.0/24 maxlen: 24
82.194.4.0/23 maxlen: 23
82.194.6.0/24 maxlen: 24
82.194.7.0/24 maxlen: 24
82.194.8.0/24 maxlen: 24
82.194.9.0/24 maxlen: 24
82.194.10.0/24 maxlen: 24
82.194.11.0/24 maxlen: 24
82.194.12.0/24 maxlen: 24
82.194.13.0/24 maxlen: 24
82.194.14.0/24 maxlen: 24
82.194.15.0/24 maxlen: 24
82.194.16.0/24 maxlen: 24
82.194.17.0/24 maxlen: 24
82.194.18.0/24 maxlen: 24
82.194.19.0/24 maxlen: 24
82.194.20.0/24 maxlen: 24
82.194.21.0/24 maxlen: 24
82.194.22.0/24 maxlen: 24
82.194.23.0/24 maxlen: 24
82.194.24.0/24 maxlen: 24
82.194.25.0/24 maxlen: 24
82.194.26.0/24 maxlen: 24
82.194.27.0/24 maxlen: 24
82.194.28.0/24 maxlen: 24
82.194.29.0/24 maxlen: 24
82.194.30.0/24 maxlen: 24
82.194.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/jK0wO8cLEvg9v4n8FInLRhLPVSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/jK0wO8cLEvg9v4n8FInLRhLPVSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/jK0wO8cLEvg9v4n8FInLRhLPVSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:bc:d6:79:d1:ee:98:ff:27:2d:aa:25:19:41:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cad303bc70b12f83dbf89fc1489cb4612cf5526
Validity
Not Before: Jan 1 23:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=11905654447a465b0f4b9cf0a527de5c3618e3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:42:27:0c:bb:21:b0:54:6c:e9:f6:22:79:82:
c9:b2:df:68:57:e0:1d:88:79:cb:a5:2c:be:51:c0:
20:2e:fb:13:b9:31:e8:66:5e:e1:ec:58:1e:5b:36:
f7:86:76:55:47:0b:14:b5:3a:ba:23:a1:6d:90:b7:
69:e2:2b:77:26:75:3a:73:78:e1:00:4a:e5:41:5b:
98:ce:b2:79:0a:e4:b4:31:d3:21:6a:cb:00:2a:64:
9f:aa:f7:cd:ca:d2:57:83:b5:b7:96:8b:b8:bd:ac:
ad:b1:fa:a6:3d:ed:cd:22:b8:85:1e:51:0b:87:26:
c7:11:0c:7b:9e:f3:bd:23:e8:ad:91:40:1b:5f:0a:
7d:b0:1f:7b:6b:62:17:76:9d:f7:e5:47:74:8a:e9:
f8:ae:22:a7:b7:c3:df:97:8b:3b:ed:3a:27:ca:13:
da:87:0d:45:88:d2:66:3e:93:cd:70:a0:ee:44:b7:
14:73:e9:57:8a:23:61:47:24:8b:46:6c:39:c3:78:
a6:32:33:1d:06:b9:65:2e:58:c6:5a:ed:4d:41:ea:
98:2d:a0:c1:89:34:c8:ff:06:21:f2:d5:c8:25:01:
94:38:6e:24:fe:00:03:bd:80:51:39:35:54:8c:92:
90:13:d5:40:f1:78:bc:06:ff:d6:83:72:22:0f:4a:
c5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:90:56:54:44:7A:46:5B:0F:4B:9C:F0:A5:27:DE:5C:36:18:E3:FE
X509v3 Authority Key Identifier:
keyid:8C:AD:30:3B:C7:0B:12:F8:3D:BF:89:FC:14:89:CB:46:12:CF:55:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jK0wO8cLEvg9v4n8FInLRhLPVSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/EZBWVER6RlsPS5zwpSfeXDYY4_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/jK0wO8cLEvg9v4n8FInLRhLPVSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.194.0.0/19
Signature Algorithm: sha256WithRSAEncryption
45:e0:77:03:0a:68:70:e9:68:98:79:2e:18:47:b1:38:2a:7c:
85:09:94:c4:bd:a8:2c:1c:bb:16:91:0b:23:8f:14:c6:c7:0b:
2f:f2:31:12:46:f5:64:d5:b0:ac:de:a7:3d:5d:22:0b:18:4d:
61:8d:ba:18:9f:a7:e6:f4:19:33:b8:61:07:3c:6a:6c:77:0b:
8a:cd:0c:d2:98:fc:09:a7:34:05:0e:2d:b0:72:04:25:13:94:
9c:e4:76:6c:2f:4a:0e:63:62:cd:a7:d6:1f:a0:a0:b7:ba:a9:
b5:4a:cf:b9:98:76:66:56:30:91:96:10:81:a4:73:d5:a2:39:
2c:b7:8d:82:83:c1:ad:ed:34:ef:22:65:45:97:4b:a4:58:80:
6c:d4:85:d9:e3:22:f3:b4:3d:c2:dc:c3:9d:43:c6:35:44:8c:
9a:7f:56:a8:e4:02:60:6a:ef:1c:e4:6c:19:05:3e:b7:22:01:
34:eb:43:a6:12:d1:71:dd:c0:73:0a:81:8c:ae:1e:f0:a2:45:
98:90:53:a1:1b:2b:ac:68:60:73:0e:78:d6:13:3b:c2:e8:13:
7b:07:c9:e0:b4:73:0b:fe:d9:49:31:86:9d:1e:0a:4c:e4:64:
9c:50:9f:ad:16:03:65:08:dd:72:3c:d3:19:38:5f:5b:5d:cb:
fe:23:ec:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRLzWedHumP8nLaolGUHuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjYWQzMDNiYzcwYjEyZjgzZGJmODlmYzE0ODljYjQ2MTJj
ZjU1MjYwHhcNMjUwMTAxMjM0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTkwNTY1NDQ0N2E0NjViMGY0YjljZjBhNTI3ZGU1YzM2MThlM2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUInDLshsFRs6fYieYLJst9oV+Ad
iHnLpSy+UcAgLvsTuTHoZl7h7FgeWzb3hnZVRwsUtTq6I6FtkLdp4it3JnU6c3jh
AErlQVuYzrJ5CuS0MdMhassAKmSfqvfNytJXg7W3lou4vaytsfqmPe3NIriFHlEL
hybHEQx7nvO9I+itkUAbXwp9sB97a2IXdp335Ud0iun4riKnt8Pfl4s77TonyhPa
hw1FiNJmPpPNcKDuRLcUc+lXiiNhRySLRmw5w3imMjMdBrllLljGWu1NQeqYLaDB
iTTI/wYh8tXIJQGUOG4k/gADvYBROTVUjJKQE9VA8Xi8Bv/Wg3IiD0rFLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBGQVlREekZbD0uc8KUn3lw2GOP+MB8GA1UdIwQY
MBaAFIytMDvHCxL4Pb+J/BSJy0YSz1UmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakswd084Y0xFdmc5djRuOEZJbkxSaExQVlNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8xZDNmOWUtOWE2Yy00Yzg2LWEwMzYt
NDgyNTU1NDUyODMxLzEvRVpCV1ZFUjZSbHNQUzV6d3BTZmVYRFlZNF80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8xZDNmOWUtOWE2Yy00Yzg2LWEwMzYtNDgyNTU1NDUyODMx
LzEvakswd084Y0xFdmc5djRuOEZJbkxSaExQVlNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFUsIAMA0G
CSqGSIb3DQEBCwUAA4IBAQBF4HcDCmhw6WiYeS4YR7E4KnyFCZTEvagsHLsWkQsj
jxTGxwsv8jESRvVk1bCs3qc9XSILGE1hjboYn6fm9BkzuGEHPGpsdwuKzQzSmPwJ
pzQFDi2wcgQlE5Sc5HZsL0oOY2LNp9YfoKC3uqm1Ss+5mHZmVjCRlhCBpHPVojks
t42Cg8Gt7TTvImVFl0ukWIBs1IXZ4yLztD3C3MOdQ8Y1RIyaf1ao5AJgau8c5GwZ
BT63IgE060OmEtFx3cBzCoGMrh7wokWYkFOhGyusaGBzDnjWEzvC6BN7B8ngtHML
/tlJMYadHgpM5GScUJ+tFgNlCN1yPNMZOF9bXcv+I+ya
-----END CERTIFICATE-----
Generated at Sun Feb 2 10:05:50 2025 by rpki-client