Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/QUfR4QzQVBMEFqQeGNEHQvtsaLc.roa
File: QUfR4QzQVBMEFqQeGNEHQvtsaLc.roa (raw, json)
Hash identifier: xT0IGFzcdHr5yptsj7RDwBqOKFivYXYv/EjiOvQA2lM=
Subject key identifier: 41:47:D1:E1:0C:D0:54:13:04:16:A4:1E:18:D1:07:42:FB:6C:68:B7
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018CC424A18722EC7FF42DAD950C54084DB3
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/QUfR4QzQVBMEFqQeGNEHQvtsaLc.roa
Signing time: Mon 01 Jan 2024 08:29:44 +0000
ROA not before: Mon 01 Jan 2024 08:29:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204471
IP address blocks: 77.37.3.0/24 maxlen: 24
77.37.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:a1:87:22:ec:7f:f4:2d:ad:95:0c:54:08:4d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 1 08:29:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4147d1e10cd054130416a41e18d10742fb6c68b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:de:dc:d2:b9:a5:ee:13:10:63:01:fb:78:95:
78:a6:65:8a:45:f5:eb:4a:b5:ab:ae:03:a9:b7:3b:
9d:3d:da:6e:b6:81:16:9f:71:7c:eb:f7:8c:fd:aa:
8c:90:db:6e:c2:8f:a7:1f:4c:69:55:ae:a7:e4:50:
03:5a:8b:53:7d:61:4b:56:3b:ae:cc:94:73:f2:e8:
5d:69:01:b7:bc:a1:12:ad:4f:2d:d2:11:ed:09:38:
07:5e:64:ae:5d:99:81:51:f4:1e:4b:ac:ec:98:c3:
08:61:aa:58:2b:3c:d6:1d:08:e0:b6:e8:71:9a:8c:
5e:87:7b:d3:3a:20:1d:db:e5:e2:7f:3d:08:1b:25:
b9:26:c2:ad:30:e2:8d:09:9f:53:c3:ec:cb:10:28:
7e:96:5e:e9:68:75:6c:80:5e:b9:4a:66:24:44:c4:
fe:57:a4:84:a3:6a:ca:d4:52:79:66:cc:4d:b8:56:
21:77:e6:a5:2e:c3:79:0d:fb:b9:95:b2:87:61:89:
73:55:94:e7:83:61:2c:49:73:2b:10:9a:ce:ff:f0:
af:76:df:67:c2:31:af:c0:f2:10:aa:50:ef:1c:fe:
39:d4:10:da:c8:a1:fa:f3:ce:9f:c0:f7:07:36:12:
d3:73:98:b5:7f:2c:d0:41:16:ec:06:43:89:20:f1:
b1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:47:D1:E1:0C:D0:54:13:04:16:A4:1E:18:D1:07:42:FB:6C:68:B7
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/QUfR4QzQVBMEFqQeGNEHQvtsaLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.3.0/24
77.37.29.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:72:20:72:4f:3a:97:87:74:cb:d8:95:61:d1:de:68:da:4f:
a6:a0:a0:84:09:99:79:ea:52:0e:55:bd:db:48:f2:71:38:0e:
09:61:3d:73:31:2b:4d:33:e7:41:d8:5b:4f:fb:99:f9:82:9c:
cd:7c:ad:22:e5:33:e9:eb:f1:54:f3:3d:fa:be:7e:b0:6b:b1:
49:32:4a:72:47:f5:08:8e:79:93:45:e3:e4:96:26:19:6f:26:
03:c1:f5:88:1a:d8:a1:9c:8d:79:2a:bf:a1:f9:d3:4c:ee:c1:
92:31:73:79:7a:c9:c8:04:b9:a9:77:15:fb:73:4d:23:ca:cd:
1e:90:04:8e:9a:d9:6d:8d:26:5f:41:74:fc:47:a1:42:df:5e:
fb:18:07:7d:3e:5f:be:20:04:19:8f:5c:d6:65:92:f7:8c:47:
35:86:ba:f1:3d:2f:35:ad:68:3a:ba:1b:25:c9:5d:9e:c6:4d:
19:cb:0d:b3:d3:e0:f5:68:e4:92:b1:ff:98:03:52:31:d5:78:
a3:24:80:36:a6:5e:60:0a:ff:38:c9:ed:27:bf:ba:24:07:ab:
f1:ce:fe:c6:eb:b3:32:71:04:1f:b4:5b:1e:7d:57:97:c2:22:
37:08:b8:3f:e0:7c:bc:04:dd:41:45:1d:8a:56:8c:32:44:37:
49:f0:9d:e1
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzEJKGHIux/9C2tlQxUCE2zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzhiYzNiZDM1MGVlZGM0ZjM3N2MyMjQ1NTZiMjUwZGE2
ZGRlNmYwHhcNMjQwMTAxMDgyOTQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTQ3ZDFlMTBjZDA1NDEzMDQxNmE0MWUxOGQxMDc0MmZiNmM2OGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3d7c0rml7hMQYwH7eJV4pmWKRfXr
SrWrrgOptzudPdputoEWn3F86/eM/aqMkNtuwo+nH0xpVa6n5FADWotTfWFLVjuu
zJRz8uhdaQG3vKESrU8t0hHtCTgHXmSuXZmBUfQeS6zsmMMIYapYKzzWHQjgtuhx
moxeh3vTOiAd2+Xifz0IGyW5JsKtMOKNCZ9Tw+zLECh+ll7paHVsgF65SmYkRMT+
V6SEo2rK1FJ5ZsxNuFYhd+alLsN5Dfu5lbKHYYlzVZTng2EsSXMrEJrO//Cvdt9n
wjGvwPIQqlDvHP451BDayKH6886fwPcHNhLTc5i1fyzQQRbsBkOJIPGxOwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEFH0eEM0FQTBBakHhjRB0L7bGi3MB8GA1UdIwQY
MBaAFMN4vDvTUO7cTzd8IkVWslDabd5vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYt
NDQxNDU1OGZkY2JiLzEvUVVmUjRRelFWQk1FRnFRZUdORUhRdnRzYUxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYtNDQxNDU1OGZkY2Ji
LzEvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATSUDAwQA
TSUdMA0GCSqGSIb3DQEBCwUAA4IBAQAOciByTzqXh3TL2JVh0d5o2k+moKCECZl5
6lIOVb3bSPJxOA4JYT1zMStNM+dB2FtP+5n5gpzNfK0i5TPp6/FU8z36vn6wa7FJ
MkpyR/UIjnmTRePkliYZbyYDwfWIGtihnI15Kr+h+dNM7sGSMXN5esnIBLmpdxX7
c00jys0ekASOmtltjSZfQXT8R6FC3177GAd9Pl++IAQZj1zWZZL3jEc1hrrxPS81
rWg6uhslyV2exk0Zyw2z0+D1aOSSsf+YA1Ix1XijJIA2pl5gCv84ye0nv7okB6vx
zv7G67MycQQftFsefVeXwiI3CLg/4Hy8BN1BRR2KVowyRDdJ8J3h
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:48:01 2024 by rpki-client on console-fra.rpki-client.org