Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/HuE-Oz_uANh_oglnRxOwQWf4sgA.roa
File: HuE-Oz_uANh_oglnRxOwQWf4sgA.roa (raw, json)
Hash identifier: pUvlR+eIRscXvz2oxRIKfAnaEeXp991gD3ziNFNQl5U=
Subject key identifier: 1E:E1:3E:3B:3F:EE:00:D8:7F:A2:09:67:47:13:B0:41:67:F8:B2:00
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018E56C2B6EBA8E71B2E1766AF0482D3A201
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/HuE-Oz_uANh_oglnRxOwQWf4sgA.roa
Signing time: Tue 19 Mar 2024 12:49:45 +0000
ROA not before: Tue 19 Mar 2024 12:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 77.81.79.0/24 maxlen: 24
77.81.80.0/23 maxlen: 24
194.26.2.0/24 maxlen: 24
194.26.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Apr 2024 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:c2:b6:eb:a8:e7:1b:2e:17:66:af:04:82:d3:a2:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Mar 19 12:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ee13e3b3fee00d87fa209674713b04167f8b200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:85:59:89:74:fb:bf:69:4d:da:41:01:78:42:
1b:59:53:fb:82:56:c5:bc:c5:da:9c:b7:dc:84:55:
bb:54:ad:0a:f2:78:8e:cd:05:54:e0:31:5d:18:ee:
81:37:7b:c4:f7:b9:e4:6a:fd:be:ab:4e:a1:6c:9e:
e3:3f:d0:69:41:23:30:f3:16:16:f6:66:be:14:72:
e0:f3:6a:b2:33:36:d0:18:de:77:fb:35:1e:fa:be:
b6:b9:4e:f2:a8:0b:ce:ca:6a:39:ab:32:12:a1:31:
29:f4:2c:59:e3:a6:80:f6:1e:d1:50:6a:a9:3a:8a:
13:6e:b9:4b:07:ec:1c:6f:00:af:d1:cd:db:56:fe:
a2:4e:3c:49:66:16:83:9e:bb:39:fe:6c:61:11:29:
96:60:cc:40:7b:70:91:d3:24:ee:ed:ce:f9:d8:2f:
03:85:74:57:b4:95:b4:68:69:7b:07:44:af:0b:97:
7c:6f:9d:fa:12:85:b2:7c:08:34:20:34:58:2c:47:
36:f1:61:e8:aa:5d:7c:0a:de:f7:75:0a:8c:9d:77:
3d:f1:6c:e4:4f:64:58:49:c5:fe:ff:9d:c1:8e:90:
3a:a3:26:e3:a1:4e:7d:89:27:54:c6:0b:39:61:76:
13:3d:93:aa:0c:e1:13:87:2f:ad:88:8d:e4:5e:40:
cd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E1:3E:3B:3F:EE:00:D8:7F:A2:09:67:47:13:B0:41:67:F8:B2:00
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/HuE-Oz_uANh_oglnRxOwQWf4sgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0-77.81.81.255
194.26.2.0/24
194.26.21.0/24
Signature Algorithm: sha256WithRSAEncryption
71:97:0d:ad:6a:00:99:20:58:a3:38:ed:69:ad:d7:b0:6e:a3:
e7:57:e4:28:47:6a:45:60:14:8d:21:35:ff:0a:65:01:45:15:
15:19:e4:84:96:51:a0:8f:5c:54:fb:49:5d:a1:c5:a1:4c:35:
0f:72:18:a4:90:1e:58:d2:0c:ff:f3:3a:e0:45:15:d8:cb:65:
6d:2d:f3:f2:21:75:bd:1a:ec:68:5f:da:8a:6e:1c:88:f5:fd:
47:e6:c8:fa:b5:b3:33:52:c3:83:d7:d6:40:16:3a:d6:ef:d5:
b8:94:b5:d9:4d:f6:09:fe:16:12:90:a9:e7:0f:11:b9:85:21:
eb:c0:42:89:a9:43:03:84:46:87:26:76:a1:c1:51:3d:1d:ac:
66:17:76:28:da:cc:62:3a:8a:5f:49:38:32:aa:26:86:c0:b1:
ce:70:81:d7:08:45:57:28:d2:65:66:3c:e5:05:da:0d:45:5b:
f1:f9:2e:8c:f0:b2:5c:13:cc:67:4e:8e:32:e1:29:77:1c:a0:
e4:1f:9a:5e:79:00:db:77:b7:b3:29:7d:eb:c0:a4:71:a4:68:
9c:be:04:84:47:54:6a:34:d4:42:ef:8c:24:65:66:23:42:f6:
70:b8:ab:89:55:8f:2d:37:d0:f2:0d:e7:f7:36:a7:4e:92:f4:
87:03:8b:e8
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAY5WwrbrqOcbLhdmrwSC06IBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwMzE5MTI0OTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWUxM2UzYjNmZWUwMGQ4N2ZhMjA5Njc0NzEzYjA0MTY3ZjhiMjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYVZiXT7v2lN2kEBeEIbWVP7glbF
vMXanLfchFW7VK0K8niOzQVU4DFdGO6BN3vE97nkav2+q06hbJ7jP9BpQSMw8xYW
9ma+FHLg82qyMzbQGN53+zUe+r62uU7yqAvOymo5qzISoTEp9CxZ46aA9h7RUGqp
OooTbrlLB+wcbwCv0c3bVv6iTjxJZhaDnrs5/mxhESmWYMxAe3CR0yTu7c752C8D
hXRXtJW0aGl7B0SvC5d8b536EoWyfAg0IDRYLEc28WHoql18Ct73dQqMnXc98Wzk
T2RYScX+/53BjpA6oybjoU59iSdUxgs5YXYTPZOqDOEThy+tiI3kXkDNSwIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFB7hPjs/7gDYf6IJZ0cTsEFn+LIAMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvSHVFLU96X3VBTmhfb2dsblJ4T3dRV2Y0c2dBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBABNUU8D
BAFNUVADBADCGgIDBADCGhUwDQYJKoZIhvcNAQELBQADggEBAHGXDa1qAJkgWKM4
7Wmt17Buo+dX5ChHakVgFI0hNf8KZQFFFRUZ5ISWUaCPXFT7SV2hxaFMNQ9yGKSQ
HljSDP/zOuBFFdjLZW0t8/Ihdb0a7Ghf2opuHIj1/UfmyPq1szNSw4PX1kAWOtbv
1biUtdlN9gn+FhKQqecPEbmFIevAQompQwOERocmdqHBUT0drGYXdijazGI6il9J
ODKqJobAsc5wgdcIRVco0mVmPOUF2g1FW/H5LozwslwTzGdOjjLhKXccoOQfml55
ANt3t7MpfevApHGkaJy+BIRHVGo01ELvjCRlZiNC9nC4q4lVjy030PIN5/c2p06S
9IcDi+g=
-----END CERTIFICATE-----
Generated at Mon Apr 29 14:08:57 2024 by rpki-client on console-ams.rpki-client.org