Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_FB5X2M5XtdQhgt0nHUwaYdPxQw.roa
File: _FB5X2M5XtdQhgt0nHUwaYdPxQw.roa (raw, json)
Hash identifier: I/1cIBE8TlEWETaPj2rieKm01X5gICMd0Q/WiCsdQqQ=
Subject key identifier: FC:50:79:5F:63:39:5E:D7:50:86:0B:74:9C:75:30:69:87:4F:C5:0C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018ED919713AD87F264E91A41B6EEE4A4CCB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_FB5X2M5XtdQhgt0nHUwaYdPxQw.roa
Signing time: Sat 13 Apr 2024 20:15:07 +0000
ROA not before: Sat 13 Apr 2024 20:15:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200908
IP address blocks: 185.254.156.0/24 maxlen: 24
185.254.158.0/24 maxlen: 24
194.41.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d9:19:71:3a:d8:7f:26:4e:91:a4:1b:6e:ee:4a:4c:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 13 20:15:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc50795f63395ed750860b749c753069874fc50c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ec:1a:6b:ac:f2:ee:42:28:c9:eb:04:a3:31:
be:2d:be:c2:bf:e4:03:18:9e:19:b2:98:4b:64:2f:
31:40:b0:cf:eb:49:4e:11:9b:16:63:4b:d6:46:c8:
4b:c4:72:80:eb:25:c7:93:88:b0:0b:9b:3d:38:b7:
ab:46:bc:bc:29:4d:15:3c:fe:d6:4f:a4:ed:bf:7c:
b0:f3:90:41:08:c7:b9:c8:d9:60:bb:24:8d:c8:18:
7f:c9:83:7a:d2:5e:36:1b:b3:9a:ad:bd:64:33:1b:
08:a8:44:42:ca:09:f0:cc:7d:31:a7:84:51:27:cb:
ce:3c:e1:fe:c9:44:47:fe:65:4b:2d:dc:6a:f1:be:
33:62:2c:34:87:4b:55:a0:d6:7c:d2:ea:20:b5:8e:
c0:2c:51:d0:73:1e:86:d8:23:5a:a7:b0:12:74:f2:
f4:74:52:8d:65:cc:23:80:54:4f:17:92:d2:6d:79:
62:a3:b5:1e:ae:fe:72:07:32:87:b1:18:8f:f1:12:
e2:dc:31:64:e3:45:68:46:4a:eb:c7:d7:b8:05:e8:
db:e6:12:ba:fc:0e:08:cf:9b:28:6e:33:ac:a4:b3:
78:8c:8c:bd:2b:15:8c:5d:3d:cf:7e:90:5f:e7:22:
7d:d3:0a:4d:c4:f0:06:11:71:6e:11:c3:b3:b8:00:
af:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:50:79:5F:63:39:5E:D7:50:86:0B:74:9C:75:30:69:87:4F:C5:0C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_FB5X2M5XtdQhgt0nHUwaYdPxQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.156.0/24
185.254.158.0/24
194.41.118.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:dc:eb:2e:79:0f:56:e0:bf:ca:12:03:e1:27:7b:a1:39:ad:
a7:01:2e:4c:87:3e:71:48:cd:0b:8a:f7:84:cd:4a:b0:e7:c6:
cf:a5:45:11:47:b2:c8:ae:3b:be:7e:c8:de:d5:95:7a:62:b6:
18:3c:7b:dc:e4:2f:de:a7:0d:aa:44:63:d9:63:fb:66:0d:2d:
a9:3e:48:74:6e:9e:16:4a:5c:7e:0c:ef:1d:e0:e0:8d:6a:db:
2f:47:23:bc:ad:c1:77:cf:a7:b4:e0:66:1b:8e:e4:89:8e:56:
08:2a:0e:d7:c3:01:6c:5d:8a:58:9a:8b:f0:f9:09:b1:d0:12:
6f:ed:e5:47:34:e0:bb:e7:64:da:28:ad:02:8e:9c:04:03:fc:
b8:31:eb:35:c6:32:6d:63:32:fd:2f:94:55:a7:ed:28:e5:90:
b8:d1:ba:de:53:7c:c4:54:d7:89:31:bb:aa:a6:10:e5:2f:70:
92:3c:8a:d6:fa:3e:dd:de:ea:52:5f:a8:d0:ee:ca:f7:e6:56:
c3:09:c0:05:97:c5:b5:1b:e2:15:de:87:0a:7c:db:f0:73:04:
33:ec:18:1e:0e:2e:c3:22:b8:23:e5:bf:51:b4:3e:b6:ac:af:
56:0c:61:67:21:49:44:a2:a1:03:ec:26:a3:85:e5:64:f0:f5:
3f:b9:04:ce
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY7ZGXE62H8mTpGkG27uSkzLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwNDEzMjAxNTA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzUwNzk1ZjYzMzk1ZWQ3NTA4NjBiNzQ5Yzc1MzA2OTg3NGZjNTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+waa6zy7kIoyesEozG+Lb7Cv+QD
GJ4ZsphLZC8xQLDP60lOEZsWY0vWRshLxHKA6yXHk4iwC5s9OLerRry8KU0VPP7W
T6Ttv3yw85BBCMe5yNlguySNyBh/yYN60l42G7Oarb1kMxsIqERCygnwzH0xp4RR
J8vOPOH+yURH/mVLLdxq8b4zYiw0h0tVoNZ80uogtY7ALFHQcx6G2CNap7ASdPL0
dFKNZcwjgFRPF5LSbXlio7Uerv5yBzKHsRiP8RLi3DFk40VoRkrrx9e4Bejb5hK6
/A4Iz5sobjOspLN4jIy9KxWMXT3PfpBf5yJ90wpNxPAGEXFuEcOzuACvdwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPxQeV9jOV7XUIYLdJx1MGmHT8UMMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvX0ZCNVgyTTVYdGRRaGd0MG5IVXdhWWRQeFF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAuf6cAwQA
uf6eAwQAwil2MA0GCSqGSIb3DQEBCwUAA4IBAQCi3OsueQ9W4L/KEgPhJ3uhOa2n
AS5Mhz5xSM0LiveEzUqw58bPpUURR7LIrju+fsje1ZV6YrYYPHvc5C/epw2qRGPZ
Y/tmDS2pPkh0bp4WSlx+DO8d4OCNatsvRyO8rcF3z6e04GYbjuSJjlYIKg7XwwFs
XYpYmovw+Qmx0BJv7eVHNOC752TaKK0CjpwEA/y4Mes1xjJtYzL9L5RVp+0o5ZC4
0breU3zEVNeJMbuqphDlL3CSPIrW+j7d3upSX6jQ7sr35lbDCcAFl8W1G+IV3ocK
fNvwcwQz7BgeDi7DIrgj5b9RtD62rK9WDGFnIUlEoqED7CajheVk8PU/uQTO
-----END CERTIFICATE-----
Generated at Sat May 4 03:58:12 2024 by rpki-client on console-fra.rpki-client.org