Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/EMObNw5KYyJCS7w_cjJprb9dpg4.roa
File: EMObNw5KYyJCS7w_cjJprb9dpg4.roa (raw, json)
Hash identifier: 8j8XnA5IvxYKl/aqFfNIIIcRlUAVfOm57FP0WTmck3Q=
Subject key identifier: 10:C3:9B:37:0E:4A:63:22:42:4B:BC:3F:72:32:69:AD:BF:5D:A6:0E
Certificate issuer: /CN=1651d3ddc6add483b761ac0476269533fe7ea717
Certificate serial: 018CC4248EA1570EF6E6E6B113CAD01CE312
Authority key identifier: 16:51:D3:DD:C6:AD:D4:83:B7:61:AC:04:76:26:95:33:FE:7E:A7:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlHT3cat1IO3YawEdiaVM_5-pxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/EMObNw5KYyJCS7w_cjJprb9dpg4.roa
Signing time: Mon 01 Jan 2024 08:29:39 +0000
ROA not before: Mon 01 Jan 2024 08:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202894
IP address blocks: 185.149.251.0/24 maxlen: 24
185.149.250.0/24 maxlen: 24
185.149.249.0/24 maxlen: 24
185.149.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/FlHT3cat1IO3YawEdiaVM_5-pxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/FlHT3cat1IO3YawEdiaVM_5-pxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FlHT3cat1IO3YawEdiaVM_5-pxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 16:03:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:8e:a1:57:0e:f6:e6:e6:b1:13:ca:d0:1c:e3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1651d3ddc6add483b761ac0476269533fe7ea717
Validity
Not Before: Jan 1 08:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10c39b370e4a6322424bbc3f723269adbf5da60e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:14:32:38:64:3f:58:f7:ba:f2:49:aa:a5:62:
b9:c1:e0:59:d5:bb:1c:9c:24:be:c0:31:6c:51:21:
f8:f1:0e:25:9d:01:69:7c:43:1b:f4:08:f1:14:bf:
4b:13:bf:e2:f7:e4:83:53:c0:33:0f:cb:ab:2c:93:
d3:94:c1:e1:bb:b1:94:f6:3c:e6:b7:b5:b7:35:58:
ff:70:b8:f1:54:cd:34:f5:ea:7a:92:d1:ae:2e:2f:
ce:8c:e8:5e:10:c7:b2:e1:ae:93:05:4a:0b:2b:15:
35:09:df:54:06:21:b5:33:91:ee:0b:0b:09:58:97:
e1:a2:98:52:4f:17:ce:57:d1:10:c6:ce:41:c2:c8:
64:1a:c5:6d:c1:6c:22:2f:09:8d:23:06:4e:4e:da:
8b:45:49:9e:5e:22:78:a8:0d:89:fc:9a:29:79:87:
ec:06:25:e7:b6:63:01:18:00:dd:dd:6e:fc:d5:a0:
15:2e:a9:9f:18:07:83:b2:78:e5:76:96:cf:f8:ae:
56:f1:bf:27:a7:7d:11:77:0b:1e:bf:d0:b0:0e:39:
fd:2a:92:09:28:a9:84:e2:cd:9c:91:aa:a1:7e:3e:
72:d5:b4:4c:b0:44:ca:31:5c:36:e6:77:57:e7:b1:
b5:f7:97:db:06:5f:62:08:41:d6:36:fd:d5:7a:ba:
b1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C3:9B:37:0E:4A:63:22:42:4B:BC:3F:72:32:69:AD:BF:5D:A6:0E
X509v3 Authority Key Identifier:
keyid:16:51:D3:DD:C6:AD:D4:83:B7:61:AC:04:76:26:95:33:FE:7E:A7:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlHT3cat1IO3YawEdiaVM_5-pxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/EMObNw5KYyJCS7w_cjJprb9dpg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/321f74-092d-4dff-b335-2054f6e61922/1/FlHT3cat1IO3YawEdiaVM_5-pxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.248.0/22
Signature Algorithm: sha256WithRSAEncryption
67:3d:43:b2:85:66:be:ca:8b:57:6c:3e:2d:4d:6f:d4:73:71:
76:c3:cd:1d:ea:be:ed:0b:d4:a2:82:9a:81:10:d1:a4:7c:32:
93:c0:de:5d:d7:fd:1e:60:f1:81:e8:86:ed:e8:4a:01:ab:43:
87:1f:fa:f0:72:f7:c8:ef:75:08:67:60:ec:d1:06:77:29:da:
5c:91:b3:dd:3d:75:1f:a0:ef:7c:97:ac:53:e9:92:94:a7:c4:
c0:71:34:66:03:a5:6e:c9:42:bb:77:79:e7:98:ad:75:f5:e6:
44:47:8d:19:a7:f0:8a:51:e0:68:d2:45:48:80:95:db:64:e5:
65:d8:e6:2c:0e:78:5a:d0:dd:65:60:4a:0f:90:47:79:7c:10:
ad:60:b9:6c:0d:25:7b:a5:56:6e:b2:4d:ed:41:2a:c9:42:bb:
67:d4:56:90:8d:98:a4:7a:0d:6c:19:b1:e6:6f:df:83:b2:01:
60:99:7a:81:08:4c:09:28:a4:e4:ab:9c:ed:5a:1a:37:33:e9:
3a:b4:32:65:97:58:65:6f:d7:4c:bc:bb:14:bb:b0:a8:f8:84:
d2:77:79:6a:d1:a4:9f:35:1b:4d:8a:d1:e1:b1:18:8c:ab:ae:
10:6c:76:7c:34:ab:5d:4c:74:52:b8:92:e2:b4:2b:2f:f3:e8:
44:5a:3f:c6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJI6hVw725uaxE8rQHOMSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2NTFkM2RkYzZhZGQ0ODNiNzYxYWMwNDc2MjY5NTMzZmU3
ZWE3MTcwHhcNMjQwMTAxMDgyOTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMGMzOWIzNzBlNGE2MzIyNDI0YmJjM2Y3MjMyNjlhZGJmNWRhNjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgRQyOGQ/WPe68kmqpWK5weBZ1bsc
nCS+wDFsUSH48Q4lnQFpfEMb9AjxFL9LE7/i9+SDU8AzD8urLJPTlMHhu7GU9jzm
t7W3NVj/cLjxVM009ep6ktGuLi/OjOheEMey4a6TBUoLKxU1Cd9UBiG1M5HuCwsJ
WJfhophSTxfOV9EQxs5BwshkGsVtwWwiLwmNIwZOTtqLRUmeXiJ4qA2J/JopeYfs
BiXntmMBGADd3W781aAVLqmfGAeDsnjldpbP+K5W8b8np30Rdwsev9CwDjn9KpIJ
KKmE4s2ckaqhfj5y1bRMsETKMVw25ndX57G195fbBl9iCEHWNv3Verqx6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBDDmzcOSmMiQku8P3Iyaa2/XaYOMB8GA1UdIwQY
MBaAFBZR093GrdSDt2GsBHYmlTP+fqcXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmxIVDNjYXQxSU8zWWF3RWRpYVZNXzUtcHhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8zMjFmNzQtMDkyZC00ZGZmLWIzMzUt
MjA1NGY2ZTYxOTIyLzEvRU1PYk53NUtZeUpDUzd3X2NqSnByYjlkcGc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi8zMjFmNzQtMDkyZC00ZGZmLWIzMzUtMjA1NGY2ZTYxOTIy
LzEvRmxIVDNjYXQxSU8zWWF3RWRpYVZNXzUtcHhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZX4MA0G
CSqGSIb3DQEBCwUAA4IBAQBnPUOyhWa+yotXbD4tTW/Uc3F2w80d6r7tC9SigpqB
ENGkfDKTwN5d1/0eYPGB6Ibt6EoBq0OHH/rwcvfI73UIZ2Ds0QZ3KdpckbPdPXUf
oO98l6xT6ZKUp8TAcTRmA6VuyUK7d3nnmK119eZER40Zp/CKUeBo0kVIgJXbZOVl
2OYsDnha0N1lYEoPkEd5fBCtYLlsDSV7pVZusk3tQSrJQrtn1FaQjZikeg1sGbHm
b9+DsgFgmXqBCEwJKKTkq5ztWho3M+k6tDJll1hlb9dMvLsUu7Co+ITSd3lq0aSf
NRtNitHhsRiMq64QbHZ8NKtdTHRSuJLitCsv8+hEWj/G
-----END CERTIFICATE-----
Generated at Fri May 17 19:13:54 2024 by rpki-client on console-fra.rpki-client.org