Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/DSrlpTjz-49uIHUko66hj-egkTM.roa
File: DSrlpTjz-49uIHUko66hj-egkTM.roa (raw, json)
Hash identifier: JYf4t6K730580lcQA6YGqHLFBHlaZ0Ublr/295KJPHk=
Subject key identifier: 0D:2A:E5:A5:38:F3:FB:8F:6E:20:75:24:A3:AE:A1:8F:E7:A0:91:33
Certificate issuer: /CN=2d18d87e8b9fe974bedf097f88948398861ac47e
Certificate serial: 018CC7272F808012C109E9D6E8B5A568EC88
Authority key identifier: 2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/DSrlpTjz-49uIHUko66hj-egkTM.roa
Signing time: Mon 01 Jan 2024 22:31:23 +0000
ROA not before: Mon 01 Jan 2024 22:31:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211196
IP address blocks: 185.53.112.0/24 maxlen: 24
185.198.68.0/24 maxlen: 24
185.53.113.0/24 maxlen: 24
185.53.114.0/24 maxlen: 24
185.53.115.0/24 maxlen: 24
2a0b:6f80:101::/48 maxlen: 48
2a0b:6f80:500::/40 maxlen: 40
2a0b:6f80:400::/40 maxlen: 40
2a0b:6f80:300::/40 maxlen: 40
2a0b:6f80:200::/40 maxlen: 40
2a0b:6f80:100::/48 maxlen: 48
2a0b:6f80:103::/48 maxlen: 48
2a0b:6f80:102::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 21:03:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:2f:80:80:12:c1:09:e9:d6:e8:b5:a5:68:ec:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d18d87e8b9fe974bedf097f88948398861ac47e
Validity
Not Before: Jan 1 22:31:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d2ae5a538f3fb8f6e207524a3aea18fe7a09133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1a:49:6f:ac:30:18:a1:15:34:84:af:76:f4:
35:e8:83:44:16:ea:48:53:6e:23:63:b5:cc:7a:69:
ab:a9:5a:49:c7:3f:68:cd:a6:a7:94:8c:61:aa:5d:
5d:e1:c0:4f:65:6b:30:04:d3:ef:d0:29:35:59:5f:
b8:41:65:da:db:50:40:6c:14:02:ad:56:5f:48:ce:
ca:a3:17:c9:3e:bb:ec:27:10:7c:4a:16:de:0d:0b:
ad:ef:31:33:56:ea:7f:b9:8e:0c:b9:af:93:c3:24:
57:28:53:a0:dd:a1:6d:7a:8d:d7:b3:4d:40:72:bc:
12:46:bd:0c:17:cd:31:02:d6:ba:0d:19:6f:b1:bd:
ed:39:1f:fc:d9:b0:e0:31:8c:4f:f8:c4:82:c3:b0:
6d:5b:c0:40:6d:69:e0:9f:89:0a:72:7f:0b:b5:e9:
e6:da:e3:42:83:de:91:d2:b3:c0:2a:0d:65:59:92:
a0:d8:1d:dd:5c:1a:17:bc:52:9e:7f:75:a3:a1:c4:
b9:3e:43:b4:b7:e0:d8:ab:d3:72:a7:91:cf:20:23:
a4:40:92:e3:11:5a:a4:8a:e7:90:8a:6a:40:53:5f:
38:37:a1:bd:42:c7:aa:65:27:64:0d:26:c0:98:35:
a8:41:1b:b9:be:f6:8c:a9:b5:e5:47:e2:2a:66:12:
4e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:2A:E5:A5:38:F3:FB:8F:6E:20:75:24:A3:AE:A1:8F:E7:A0:91:33
X509v3 Authority Key Identifier:
keyid:2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/DSrlpTjz-49uIHUko66hj-egkTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.112.0/22
185.198.68.0/24
IPv6:
2a0b:6f80:100::/46
2a0b:6f80:200::-2a0b:6f80:5ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
94:ff:c6:93:47:a7:59:53:4e:fe:60:67:95:a6:d1:f4:6d:f7:
d5:02:c8:06:66:3c:f1:ca:3f:84:b3:89:76:65:66:0d:90:ff:
d3:2b:3c:b3:8c:f3:e9:3a:79:99:b5:d3:6b:56:dc:92:cb:de:
23:69:6a:88:87:e3:4e:28:43:9e:7d:db:6d:3d:c7:61:cd:62:
14:d5:45:33:3b:d0:d1:b1:97:5f:12:e0:13:41:6b:3c:24:5c:
2c:00:56:c0:94:d2:e0:49:a6:90:c2:a0:bf:56:fd:7f:ac:0e:
21:58:e2:0e:95:48:79:be:96:1f:11:79:c8:39:ea:d4:42:b8:
d3:ba:d5:40:d8:f8:16:65:d8:a7:88:68:2b:40:3e:f7:05:bf:
1c:91:c5:ba:c4:0d:78:24:24:0d:5d:0b:a4:b5:0a:72:a6:44:
79:59:e6:e4:26:74:ce:db:93:be:48:ac:f3:97:ca:bb:23:a1:
f5:f6:ef:21:8b:55:27:76:99:4d:cb:3a:75:52:83:33:14:a1:
60:48:2c:b2:f5:5b:5c:9e:0e:f0:0a:32:50:2d:e2:a6:0f:18:
ae:7f:c1:9c:ce:b8:d9:85:84:73:b3:ff:c7:8a:92:c9:ed:09:
86:33:98:9e:45:78:f8:14:08:f4:58:4d:e6:0e:e5:3d:0c:24:
95:db:8b:43
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgISAYzHJy+AgBLBCenW6LWlaOyIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMThkODdlOGI5ZmU5NzRiZWRmMDk3Zjg4OTQ4Mzk4ODYx
YWM0N2UwHhcNMjQwMTAxMjIzMTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDJhZTVhNTM4ZjNmYjhmNmUyMDc1MjRhM2FlYTE4ZmU3YTA5MTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxpJb6wwGKEVNISvdvQ16INEFupI
U24jY7XMemmrqVpJxz9ozaanlIxhql1d4cBPZWswBNPv0Ck1WV+4QWXa21BAbBQC
rVZfSM7KoxfJPrvsJxB8ShbeDQut7zEzVup/uY4Mua+TwyRXKFOg3aFteo3Xs01A
crwSRr0MF80xAta6DRlvsb3tOR/82bDgMYxP+MSCw7BtW8BAbWngn4kKcn8Ltenm
2uNCg96R0rPAKg1lWZKg2B3dXBoXvFKef3WjocS5PkO0t+DYq9Nyp5HPICOkQJLj
EVqkiueQimpAU184N6G9QseqZSdkDSbAmDWoQRu5vvaMqbXlR+IqZhJOxwIDAQAB
o4ICMjCCAi4wHQYDVR0OBBYEFA0q5aU48/uPbiB1JKOuoY/noJEzMB8GA1UdIwQY
MBaAFC0Y2H6Ln+l0vt8Jf4iUg5iGGsR+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJqWWZvdWY2WFMtM3dsX2lKU0RtSVlheEg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9lYzg1ZjUtN2Y2NS00OWYyLTk4Yjkt
Y2YwOTA3MTMzMjQxLzEvRFNybHBUanotNDl1SUhVa282NmhqLWVna1RNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9lYzg1ZjUtN2Y2NS00OWYyLTk4YjktY2YwOTA3MTMzMjQx
LzEvTFJqWWZvdWY2WFMtM3dsX2lKU0RtSVlheEg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzASBAIAATAMAwQCuTVwAwQA
ucZEMCEEAgACMBsDBwIqC2+AAQAwEAMGASoLb4ACAwYBKgtvgAQwDQYJKoZIhvcN
AQELBQADggEBAJT/xpNHp1lTTv5gZ5Wm0fRt99UCyAZmPPHKP4SziXZlZg2Q/9Mr
PLOM8+k6eZm102tW3JLL3iNpaoiH404oQ5592209x2HNYhTVRTM70NGxl18S4BNB
azwkXCwAVsCU0uBJppDCoL9W/X+sDiFY4g6VSHm+lh8Recg56tRCuNO61UDY+BZl
2KeIaCtAPvcFvxyRxbrEDXgkJA1dC6S1CnKmRHlZ5uQmdM7bk75IrPOXyrsjofX2
7yGLVSd2mU3LOnVSgzMUoWBILLL1W1yeDvAKMlAt4qYPGK5/wZzOuNmFhHOz/8eK
ksntCYYzmJ5FePgUCPRYTeYO5T0MJJXbi0M=
-----END CERTIFICATE-----
Generated at Sat Jun 8 01:21:28 2024 by rpki-client on console-ams.rpki-client.org