Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/VJonC60bE8Y2GcVd112y5KfvlUM.roa
File: VJonC60bE8Y2GcVd112y5KfvlUM.roa (raw, json)
Hash identifier: YM5R1iSQwjHjd0IxU1ubWTnU/Vh976OBuRmAyCsw5LU=
Subject key identifier: 54:9A:27:0B:AD:1B:13:C6:36:19:C5:5D:D7:5D:B2:E4:A7:EF:95:43
Certificate issuer: /CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Certificate serial: 018CC3494A759CBBAA15F5DDF9044C9A9926
Authority key identifier: 87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/VJonC60bE8Y2GcVd112y5KfvlUM.roa
Signing time: Mon 01 Jan 2024 04:30:09 +0000
ROA not before: Mon 01 Jan 2024 04:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60555
IP address blocks: 93.113.254.0/24 maxlen: 24
185.13.212.0/23 maxlen: 23
91.217.114.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/h3wgc3EWvG1eWyJJMc8T3X95-Vs.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/h3wgc3EWvG1eWyJJMc8T3X95-Vs.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:4a:75:9c:bb:aa:15:f5:dd:f9:04:4c:9a:99:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Validity
Not Before: Jan 1 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=549a270bad1b13c63619c55dd75db2e4a7ef9543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bc:3a:f4:1e:a5:12:61:88:72:68:90:78:b9:
8b:1e:45:4a:df:56:61:e8:bf:4d:6b:8e:dc:b2:7a:
b0:5e:df:a3:f8:cd:3a:4d:4d:99:eb:b5:c4:c9:2d:
7e:3e:ea:65:db:12:fe:67:3e:37:60:8a:1f:ed:0a:
6b:71:e2:1a:c2:bc:aa:de:ae:4f:83:08:17:bc:46:
cf:a2:92:0c:d3:6f:21:04:52:0d:d0:08:a6:25:1b:
7b:e7:7f:89:2f:d3:d9:a7:73:4d:0f:3c:24:7d:8a:
35:9a:b2:47:5b:68:bf:b4:65:42:32:3f:54:25:31:
78:75:44:01:fe:f7:c3:b5:8e:c6:13:27:72:59:c1:
de:72:a9:e6:29:0f:5b:15:eb:89:fa:f4:32:51:cc:
a2:76:9d:aa:1b:c4:9a:34:dc:49:bd:f9:d1:04:d6:
64:0b:51:f1:4b:25:3e:2e:dc:49:b4:86:e4:b9:02:
1d:7f:b2:f4:29:00:a8:c5:5b:da:95:4d:c2:16:fe:
82:f5:6a:54:10:9f:bc:3f:66:78:0c:e0:cc:64:02:
e8:a5:05:f0:7e:94:e7:19:8f:5e:d1:72:ef:3d:6e:
9e:cf:26:dc:3f:db:08:40:bf:c6:ef:03:c3:58:b0:
de:1a:42:74:69:be:a2:f4:ea:6c:8c:b5:02:b9:db:
7b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9A:27:0B:AD:1B:13:C6:36:19:C5:5D:D7:5D:B2:E4:A7:EF:95:43
X509v3 Authority Key Identifier:
keyid:87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/VJonC60bE8Y2GcVd112y5KfvlUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/h3wgc3EWvG1eWyJJMc8T3X95-Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.114.0/23
93.113.254.0/24
185.13.212.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:5c:7e:6c:c9:bf:16:7f:39:b8:44:3b:f2:4d:96:7a:e8:bf:
95:66:11:c5:f9:c3:bb:6d:1c:16:91:54:78:33:75:1d:db:0c:
cc:bd:fa:28:23:c7:5b:6b:6e:f5:73:c8:dd:0e:89:92:c6:3c:
21:40:61:b8:4d:31:4d:64:1d:ba:ea:7d:1a:d1:4c:8a:1c:6b:
8b:16:b0:44:31:f2:61:4d:77:67:cd:05:e6:92:27:64:08:48:
7d:7c:c8:0a:8b:45:fd:40:19:a0:38:4f:c0:7a:fe:c0:19:77:
83:c5:4b:5c:ce:dc:ce:f1:d8:06:c6:f1:25:49:13:11:1c:b0:
06:93:82:a2:c9:25:bc:55:da:16:07:d5:6c:b0:a7:cc:31:25:
7e:04:fb:1f:49:ff:fa:f6:ee:73:b9:7a:cb:5e:f0:03:00:01:
85:b9:11:02:7d:fa:92:f0:53:f5:cb:01:60:61:62:1c:d3:33:
03:36:79:51:ed:31:59:aa:c9:db:32:c6:30:a4:66:41:14:62:
9e:7e:a3:b0:2d:88:14:42:1c:74:37:ba:e7:db:ef:20:e0:3b:
2b:d5:6c:3b:3a:89:ec:64:1e:7b:a2:77:5f:5c:6c:60:68:a8:
17:e9:52:2e:d0:5b:a7:e5:da:f2:70:fe:73:79:35:4b:21:75:
03:11:bc:13
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzDSUp1nLuqFfXd+QRMmpkmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3N2MyMDczNzExNmJjNmQ1ZTViMjI0OTMxY2YxM2RkN2Y3
OWY5NWIwHhcNMjQwMTAxMDQzMDA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDlhMjcwYmFkMWIxM2M2MzYxOWM1NWRkNzVkYjJlNGE3ZWY5NTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrw69B6lEmGIcmiQeLmLHkVK31Zh
6L9Na47csnqwXt+j+M06TU2Z67XEyS1+Pupl2xL+Zz43YIof7QprceIawryq3q5P
gwgXvEbPopIM028hBFIN0AimJRt753+JL9PZp3NNDzwkfYo1mrJHW2i/tGVCMj9U
JTF4dUQB/vfDtY7GEydyWcHecqnmKQ9bFeuJ+vQyUcyidp2qG8SaNNxJvfnRBNZk
C1HxSyU+LtxJtIbkuQIdf7L0KQCoxVvalU3CFv6C9WpUEJ+8P2Z4DODMZALopQXw
fpTnGY9e0XLvPW6ezybcP9sIQL/G7wPDWLDeGkJ0ab6i9OpsjLUCudt7/QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFFSaJwutGxPGNhnFXdddsuSn75VDMB8GA1UdIwQY
MBaAFId8IHNxFrxtXlsiSTHPE91/eflbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDN3Z2MzRVd2RzFlV3lKSk1jOFQzWDk1LVZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hY2I5NTYtZTFiNS00NjgyLTgwYjgt
ZTcyMzJmODQ0OGIwLzEvVkpvbkM2MGJFOFkyR2NWZDExMnk1S2Z2bFVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hY2I5NTYtZTFiNS00NjgyLTgwYjgtZTcyMzJmODQ0OGIw
LzEvaDN3Z2MzRVd2RzFlV3lKSk1jOFQzWDk1LVZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBW9lyAwQA
XXH+AwQBuQ3UMA0GCSqGSIb3DQEBCwUAA4IBAQArXH5syb8Wfzm4RDvyTZZ66L+V
ZhHF+cO7bRwWkVR4M3Ud2wzMvfooI8dba271c8jdDomSxjwhQGG4TTFNZB266n0a
0UyKHGuLFrBEMfJhTXdnzQXmkidkCEh9fMgKi0X9QBmgOE/Aev7AGXeDxUtcztzO
8dgGxvElSRMRHLAGk4KiySW8VdoWB9VssKfMMSV+BPsfSf/69u5zuXrLXvADAAGF
uRECffqS8FP1ywFgYWIc0zMDNnlR7TFZqsnbMsYwpGZBFGKefqOwLYgUQhx0N7rn
2+8g4Dsr1Ww7OonsZB57ondfXGxgaKgX6VIu0Fun5drycP5zeTVLIXUDEbwT
-----END CERTIFICATE-----
Generated at Fri Jun 7 23:47:14 2024 by rpki-client on console-fra.rpki-client.org