Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/4vVpFKmDf_Jnetnpb0N5Ayi6Azw.roa
File: 4vVpFKmDf_Jnetnpb0N5Ayi6Azw.roa (raw, json)
Hash identifier: 8gDWuHEXRWOvUsiDCr4y/ZZ5fZzqtbEpG5sS/FdfMzI=
Subject key identifier: E2:F5:69:14:A9:83:7F:F2:67:7A:D9:E9:6F:43:79:03:28:BA:03:3C
Certificate issuer: /CN=7961ad731c4c7525f885c5d3764d4ce0f0e8c98f
Certificate serial: 018CCA29E8326873408991C75349C0BEA14A
Authority key identifier: 79:61:AD:73:1C:4C:75:25:F8:85:C5:D3:76:4D:4C:E0:F0:E8:C9:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eWGtcxxMdSX4hcXTdk1M4PDoyY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/4vVpFKmDf_Jnetnpb0N5Ayi6Azw.roa
Signing time: Tue 02 Jan 2024 12:33:13 +0000
ROA not before: Tue 02 Jan 2024 12:33:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5089
IP address blocks: 178.22.213.0/24 maxlen: 24
178.22.214.0/24 maxlen: 24
178.22.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/eWGtcxxMdSX4hcXTdk1M4PDoyY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/eWGtcxxMdSX4hcXTdk1M4PDoyY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/eWGtcxxMdSX4hcXTdk1M4PDoyY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:e8:32:68:73:40:89:91:c7:53:49:c0:be:a1:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7961ad731c4c7525f885c5d3764d4ce0f0e8c98f
Validity
Not Before: Jan 2 12:33:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2f56914a9837ff2677ad9e96f43790328ba033c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:73:7e:f2:72:c9:ef:64:d0:84:8b:d4:c0:e3:
b4:28:6f:9f:1a:03:bc:29:39:7f:3e:a3:68:ad:f5:
7f:b4:7c:86:18:e8:eb:f0:e9:b0:7e:d7:65:10:0c:
b8:65:d9:00:29:d7:39:12:3a:aa:66:9c:e7:46:b1:
b3:65:4e:3e:6b:26:da:58:3f:c9:81:6f:dd:60:49:
eb:e0:98:a8:8e:e8:2f:05:47:c8:af:20:98:14:d0:
b1:b6:c3:e0:52:b7:e1:13:0a:fe:78:9f:0f:90:fe:
15:19:83:9a:0b:8d:9f:63:70:2c:5a:3a:8d:f8:fb:
51:6a:5c:6c:fc:80:ed:8d:ca:56:20:23:f1:c6:ea:
26:da:09:85:98:3e:c6:91:66:1a:fd:cb:d7:20:6f:
64:df:ad:04:2c:ad:1b:0e:3a:e8:68:35:b5:29:63:
b8:57:19:2a:68:7d:ad:6e:9f:d7:a5:6e:67:86:b8:
6e:d1:fd:09:65:b4:12:cf:ee:61:21:a5:06:ff:35:
cd:a0:55:b3:7d:e1:64:57:76:48:4d:6a:e4:54:b9:
b5:6d:3c:c3:d6:d4:1a:79:98:47:21:a7:38:56:7d:
c7:dd:54:5a:87:76:47:85:66:89:f2:33:e8:fc:83:
42:c0:ae:9d:31:af:68:49:13:96:04:29:19:1a:6b:
7c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F5:69:14:A9:83:7F:F2:67:7A:D9:E9:6F:43:79:03:28:BA:03:3C
X509v3 Authority Key Identifier:
keyid:79:61:AD:73:1C:4C:75:25:F8:85:C5:D3:76:4D:4C:E0:F0:E8:C9:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eWGtcxxMdSX4hcXTdk1M4PDoyY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/4vVpFKmDf_Jnetnpb0N5Ayi6Azw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/eWGtcxxMdSX4hcXTdk1M4PDoyY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.213.0-178.22.215.255
Signature Algorithm: sha256WithRSAEncryption
68:49:37:14:0a:ee:8e:d6:8a:ce:3d:de:70:7c:9b:2f:42:f4:
31:3d:63:ff:39:8f:22:36:c7:51:a3:de:45:2a:30:0b:2f:67:
3f:16:92:89:fa:4e:91:5a:c0:20:40:0d:16:9d:0f:55:3a:b2:
41:9c:e8:71:50:b7:3d:42:1b:37:26:11:34:92:0a:9b:b4:21:
35:8b:26:49:45:6e:7e:15:da:74:65:6f:25:c2:13:42:51:91:
fb:fd:a2:9e:20:d6:86:31:9f:ce:15:f4:8f:34:09:f4:7c:e1:
a3:cb:d4:71:44:a6:a2:c8:38:1e:37:4c:cd:d9:7a:c3:6f:2a:
7d:98:ed:dd:1c:f4:d4:81:89:82:5b:82:28:d0:d6:b9:8b:9d:
8d:7c:4b:63:2d:ab:88:3c:87:3c:28:4e:a0:83:35:93:d5:2a:
fc:9d:ec:6d:90:56:fb:33:31:57:18:20:43:44:56:a5:9f:d3:
76:b2:c8:7d:16:a3:3e:e7:23:f5:51:86:05:ca:8f:9a:3a:9f:
15:5b:e2:ea:b9:ef:f7:04:f3:b3:5f:49:4b:a9:04:36:9a:47:
2c:53:4b:ff:e3:8f:1b:42:fb:9e:f9:e3:77:7e:10:13:5f:92:
14:84:31:3c:90:5d:08:b9:9f:4d:d3:12:48:c3:fc:ea:be:b6:
2f:02:63:cf
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYzKKegyaHNAiZHHU0nAvqFKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5NjFhZDczMWM0Yzc1MjVmODg1YzVkMzc2NGQ0Y2UwZjBl
OGM5OGYwHhcNMjQwMTAyMTIzMzEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMmY1NjkxNGE5ODM3ZmYyNjc3YWQ5ZTk2ZjQzNzkwMzI4YmEwMzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHN+8nLJ72TQhIvUwOO0KG+fGgO8
KTl/PqNorfV/tHyGGOjr8OmwftdlEAy4ZdkAKdc5EjqqZpznRrGzZU4+aybaWD/J
gW/dYEnr4JiojugvBUfIryCYFNCxtsPgUrfhEwr+eJ8PkP4VGYOaC42fY3AsWjqN
+PtRalxs/IDtjcpWICPxxuom2gmFmD7GkWYa/cvXIG9k360ELK0bDjroaDW1KWO4
VxkqaH2tbp/XpW5nhrhu0f0JZbQSz+5hIaUG/zXNoFWzfeFkV3ZITWrkVLm1bTzD
1tQaeZhHIac4Vn3H3VRah3ZHhWaJ8jPo/INCwK6dMa9oSROWBCkZGmt8nwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFOL1aRSpg3/yZ3rZ6W9DeQMougM8MB8GA1UdIwQY
MBaAFHlhrXMcTHUl+IXF03ZNTODw6MmPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVdHdGN4eE1kU1g0aGNYVGRrMU00UERveVk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9jYjE3Y2EtZDAyZi00MDIyLWFkMDYt
OGFhY2MxZjQ4MTA4LzEvNHZWcEZLbURmX0puZXRucGIwTjVBeWk2QXp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9jYjE3Y2EtZDAyZi00MDIyLWFkMDYtOGFhY2MxZjQ4MTA4
LzEvZVdHdGN4eE1kU1g0aGNYVGRrMU00UERveVk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACyFtUD
BAOyFtAwDQYJKoZIhvcNAQELBQADggEBAGhJNxQK7o7Wis493nB8my9C9DE9Y/85
jyI2x1Gj3kUqMAsvZz8Wkon6TpFawCBADRadD1U6skGc6HFQtz1CGzcmETSSCpu0
ITWLJklFbn4V2nRlbyXCE0JRkfv9op4g1oYxn84V9I80CfR84aPL1HFEpqLIOB43
TM3ZesNvKn2Y7d0c9NSBiYJbgijQ1rmLnY18S2Mtq4g8hzwoTqCDNZPVKvyd7G2Q
VvszMVcYIENEVqWf03ayyH0Woz7nI/VRhgXKj5o6nxVb4uq57/cE87NfSUupBDaa
RyxTS//jjxtC+57543d+EBNfkhSEMTyQXQi5n03TEkjD/Oq+ti8CY88=
-----END CERTIFICATE-----
Generated at Mon Nov 25 19:50:38 2024 by rpki-client on console-ams.rpki-client.org