Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/FvdGNfiOZCy1vlXP0DUJFZb9l38.roa
File: FvdGNfiOZCy1vlXP0DUJFZb9l38.roa (raw, json)
Hash identifier: AQ8Man/cEc3mKaXdepcVIXRC991Ilvgi+k3CVUIMAIw=
Subject key identifier: 16:F7:46:35:F8:8E:64:2C:B5:BE:55:CF:D0:35:09:15:96:FD:97:7F
Certificate issuer: /CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86
Certificate serial: 018F716834E085469F9EDEEBBAA38609E360
Authority key identifier: 9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/FvdGNfiOZCy1vlXP0DUJFZb9l38.roa
Signing time: Mon 13 May 2024 10:03:25 +0000
ROA not before: Mon 13 May 2024 10:03:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48815
IP address blocks: 185.54.32.0/24 maxlen: 24
185.54.34.0/24 maxlen: 24
185.54.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:71:68:34:e0:85:46:9f:9e:de:eb:ba:a3:86:09:e3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86
Validity
Not Before: May 13 10:03:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16f74635f88e642cb5be55cfd035091596fd977f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:05:07:f4:a9:05:6f:fc:1e:20:e6:77:e3:75:
51:4e:3b:0e:fb:15:ec:80:0a:03:01:30:fb:1e:c1:
78:14:94:1f:9f:77:82:ca:b9:60:98:5e:c2:e8:e6:
80:ef:b1:4e:c4:65:44:41:13:70:16:5f:1a:fd:0c:
9e:2a:0b:b9:15:1a:d2:4a:9f:1a:2a:a1:c0:e6:45:
ae:a5:f9:11:28:08:72:27:71:47:1a:ba:a9:ab:50:
e0:d7:82:5b:69:2b:30:78:b6:cc:be:1c:67:d4:bb:
e8:f2:43:c6:68:22:d6:48:44:67:24:b4:2b:2f:27:
8c:fa:38:ce:b3:5f:ae:d6:8b:84:d5:0b:9e:75:58:
e2:d5:2b:30:d5:ca:7e:09:6c:2d:e4:f3:eb:4b:12:
3d:3d:1e:20:18:58:ae:7f:92:3c:9a:da:c9:e2:4b:
9d:7f:67:9f:cb:7f:7d:3d:c7:42:cc:bb:a7:da:19:
01:00:2a:ac:35:4e:fe:81:01:c6:1b:0f:a0:2a:eb:
2b:00:e6:c1:83:6e:3c:af:80:22:07:8e:58:bb:18:
f9:83:b8:5e:b2:3d:7f:f4:30:0f:f2:1a:e3:1c:25:
1d:b6:96:ed:af:46:71:37:2f:a7:ad:52:8a:dc:cf:
db:c5:07:3c:12:9e:5b:28:54:8f:3e:e2:fc:a6:7d:
d2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F7:46:35:F8:8E:64:2C:B5:BE:55:CF:D0:35:09:15:96:FD:97:7F
X509v3 Authority Key Identifier:
keyid:9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/FvdGNfiOZCy1vlXP0DUJFZb9l38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.32.0/24
185.54.34.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:a8:50:dc:8e:cc:ed:2a:23:3a:cc:b2:bc:3a:38:e9:da:ce:
8b:16:a1:15:65:43:43:c0:cf:82:00:82:01:9d:36:55:e9:7b:
8c:2a:b7:ae:ce:9b:26:cf:63:48:d6:20:dd:64:67:18:cc:b4:
d6:08:d9:cb:e2:0d:3f:01:81:9c:05:ca:2f:04:01:84:a9:72:
a4:41:66:5a:9d:8d:ac:59:62:a5:73:65:d3:95:e3:3a:ea:d6:
3a:f8:fd:61:f1:cb:ca:f2:26:3d:35:58:0f:14:0c:36:21:82:
06:e0:10:4f:f6:8d:b0:02:f3:cc:cb:8d:1d:1b:2a:f9:f2:13:
25:0b:2f:fc:7c:c7:81:a8:b0:c4:54:af:8c:72:36:ba:f3:cd:
79:68:47:10:37:49:cf:7d:00:14:fe:c5:99:1c:1a:42:8d:04:
83:be:7f:c7:64:56:f2:cd:6d:92:4a:12:e5:99:d8:a6:39:e7:
f8:cd:d2:e1:68:9e:fe:07:a2:80:50:39:fe:ca:04:7a:2d:9d:
52:7a:32:d8:c1:69:7c:69:20:29:72:a1:74:58:68:b9:b0:36:
4e:30:fa:d9:cf:6d:f0:04:e0:de:82:1c:af:08:e2:13:8d:43:
f9:5b:33:cb:8d:5c:a6:47:b6:9a:e9:6f:87:78:d1:d2:33:5d:
e8:96:82:9c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY9xaDTghUafnt7ruqOGCeNgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliNDE1YTAzMDU5ZmIyOTVhNGI5NmM5Y2U1ZWFkYjU4ZmU5
OGZhODYwHhcNMjQwNTEzMTAwMzI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmY3NDYzNWY4OGU2NDJjYjViZTU1Y2ZkMDM1MDkxNTk2ZmQ5NzdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQUH9KkFb/weIOZ343VRTjsO+xXs
gAoDATD7HsF4FJQfn3eCyrlgmF7C6OaA77FOxGVEQRNwFl8a/QyeKgu5FRrSSp8a
KqHA5kWupfkRKAhyJ3FHGrqpq1Dg14JbaSsweLbMvhxn1Lvo8kPGaCLWSERnJLQr
LyeM+jjOs1+u1ouE1QuedVji1Ssw1cp+CWwt5PPrSxI9PR4gGFiuf5I8mtrJ4kud
f2efy399PcdCzLun2hkBACqsNU7+gQHGGw+gKusrAObBg248r4AiB45Yuxj5g7he
sj1/9DAP8hrjHCUdtpbtr0ZxNy+nrVKK3M/bxQc8Ep5bKFSPPuL8pn3SDQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBb3RjX4jmQstb5Vz9A1CRWW/Zd/MB8GA1UdIwQY
MBaAFJtBWgMFn7KVpLlsnOXq21j+mPqGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEt
MTgwMWI1NDRiOWZlLzEvRnZkR05maU9aQ3kxdmxYUDBEVUpGWmI5bDM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEtMTgwMWI1NDRiOWZl
LzEvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuTYgAwQB
uTYiMA0GCSqGSIb3DQEBCwUAA4IBAQCnqFDcjsztKiM6zLK8Ojjp2s6LFqEVZUND
wM+CAIIBnTZV6XuMKreuzpsmz2NI1iDdZGcYzLTWCNnL4g0/AYGcBcovBAGEqXKk
QWZanY2sWWKlc2XTleM66tY6+P1h8cvK8iY9NVgPFAw2IYIG4BBP9o2wAvPMy40d
Gyr58hMlCy/8fMeBqLDEVK+Mcja68815aEcQN0nPfQAU/sWZHBpCjQSDvn/HZFby
zW2SShLlmdimOef4zdLhaJ7+B6KAUDn+ygR6LZ1SejLYwWl8aSApcqF0WGi5sDZO
MPrZz23wBODeghyvCOITjUP5WzPLjVymR7aa6W+HeNHSM13oloKc
-----END CERTIFICATE-----
Generated at Sat Jun 1 17:00:34 2024 by rpki-client on console-ams.rpki-client.org