Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/MTe5lYtWQTQRM-HlZEbbiZVX_Jg.roa
File: MTe5lYtWQTQRM-HlZEbbiZVX_Jg.roa (raw, json)
Hash identifier: C+LSN6Ki5+/9t9ICWiTEiRKbSgT5wcltCNr9lFjJGUo=
Subject key identifier: 31:37:B9:95:8B:56:41:34:11:33:E1:E5:64:46:DB:89:95:57:FC:98
Certificate issuer: /CN=2d18d87e8b9fe974bedf097f88948398861ac47e
Certificate serial: 0190832CA12EBA1B5F59C9F00C54370A85F3
Authority key identifier: 2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/MTe5lYtWQTQRM-HlZEbbiZVX_Jg.roa
Signing time: Fri 05 Jul 2024 13:54:18 +0000
ROA not before: Fri 05 Jul 2024 13:54:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211196
IP address blocks: 185.53.112.0/24 maxlen: 24
185.53.113.0/24 maxlen: 24
185.53.114.0/24 maxlen: 24
185.53.115.0/24 maxlen: 24
185.198.68.0/24 maxlen: 24
2a0b:6f80:100::/48 maxlen: 48
2a0b:6f80:101::/48 maxlen: 48
2a0b:6f80:102::/48 maxlen: 48
2a0b:6f80:103::/48 maxlen: 48
2a0b:6f80:200::/40 maxlen: 40
2a0b:6f80:300::/40 maxlen: 40
2a0b:6f80:400::/40 maxlen: 40
2a0b:6f80:500::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:83:2c:a1:2e:ba:1b:5f:59:c9:f0:0c:54:37:0a:85:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d18d87e8b9fe974bedf097f88948398861ac47e
Validity
Not Before: Jul 5 13:54:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3137b9958b5641341133e1e56446db899557fc98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9c:b0:bc:8c:d7:4c:de:a9:e0:67:54:2b:59:
a3:e5:9c:a3:ca:d7:80:90:f8:81:d3:84:94:b8:b3:
37:ed:66:41:10:25:e5:b7:70:76:15:a8:a9:7b:6f:
ad:3f:2d:58:dc:3d:26:91:37:84:16:ae:fd:ca:e7:
83:2d:b4:17:10:fe:45:30:98:bb:3d:31:ca:f9:b8:
11:8c:ea:38:61:ce:6d:12:35:c7:ed:6b:e5:7c:64:
cb:35:59:6d:b2:51:35:f0:68:f0:ce:30:0c:be:4c:
93:44:7b:45:69:dc:ce:27:bc:d1:e0:5c:7d:4f:d3:
b4:0f:28:04:0c:d5:b6:a6:79:bd:1f:39:93:c1:18:
23:da:ed:d9:3d:7c:a3:08:94:02:3a:69:64:cc:4d:
56:07:38:94:db:49:6d:a6:37:d7:45:c5:75:51:85:
59:84:3f:fa:85:36:fd:a3:fe:f3:6f:37:70:f4:a3:
f0:95:7d:c1:c5:35:fe:00:68:c6:cb:18:4a:c5:e8:
05:7c:a7:41:dd:0d:1a:5b:af:99:af:f5:ac:9c:c5:
a3:24:99:c8:65:ba:92:00:ba:65:c4:16:bf:33:52:
54:04:e8:18:31:37:3f:4b:9c:7a:0a:a4:95:4f:59:
0c:d9:ca:ab:f3:93:04:bf:00:a9:ba:a8:3c:9e:bd:
f3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:37:B9:95:8B:56:41:34:11:33:E1:E5:64:46:DB:89:95:57:FC:98
X509v3 Authority Key Identifier:
keyid:2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/MTe5lYtWQTQRM-HlZEbbiZVX_Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.112.0/22
185.198.68.0/24
IPv6:
2a0b:6f80:100::/46
2a0b:6f80:200::-2a0b:6f80:5ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6c:9e:42:c2:bc:bd:5d:1e:1d:0e:fd:31:a8:49:32:bc:74:3a:
0b:53:5b:51:04:3f:34:50:c6:1b:7b:22:d4:0c:e9:29:f1:50:
cb:1f:8f:40:77:57:89:5e:87:86:3e:11:67:8c:62:6b:f1:f2:
96:80:4e:eb:58:84:53:12:b9:76:0b:61:ce:94:45:94:d5:0f:
e8:e5:9e:99:07:41:3c:db:69:ae:ad:85:a2:c8:f2:18:34:15:
e7:36:12:3d:bc:07:a8:4d:ed:5a:be:45:81:a3:38:75:02:57:
94:52:39:c5:2c:f8:12:3a:7c:99:ed:95:c1:c0:6c:bd:a5:65:
6f:05:e1:e7:84:ef:72:fe:50:d0:19:e0:0d:18:cb:af:89:51:
9e:94:96:c2:b7:e3:56:c4:c0:8d:6b:8e:32:6c:03:be:f1:51:
89:2c:0b:6d:fb:6f:c2:e0:6f:f9:5b:a8:59:fe:02:ba:24:67:
79:3a:05:a6:82:48:1e:a0:e6:df:33:af:68:b1:40:05:d4:fe:
0b:09:4c:a6:20:0e:74:7a:f5:d0:f3:13:2d:22:c3:60:35:46:
7f:e3:37:14:91:72:69:08:ef:86:1b:b9:a6:42:7f:2d:76:83:
c2:61:7f:4c:47:28:1d:8e:f8:a0:4a:30:ab:1a:0d:59:8e:86:
2a:ca:3c:ca
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgISAZCDLKEuuhtfWcnwDFQ3CoXzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMThkODdlOGI5ZmU5NzRiZWRmMDk3Zjg4OTQ4Mzk4ODYx
YWM0N2UwHhcNMjQwNzA1MTM1NDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTM3Yjk5NThiNTY0MTM0MTEzM2UxZTU2NDQ2ZGI4OTk1NTdmYzk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZywvIzXTN6p4GdUK1mj5ZyjyteA
kPiB04SUuLM37WZBECXlt3B2Faipe2+tPy1Y3D0mkTeEFq79yueDLbQXEP5FMJi7
PTHK+bgRjOo4Yc5tEjXH7WvlfGTLNVltslE18GjwzjAMvkyTRHtFadzOJ7zR4Fx9
T9O0DygEDNW2pnm9HzmTwRgj2u3ZPXyjCJQCOmlkzE1WBziU20ltpjfXRcV1UYVZ
hD/6hTb9o/7zbzdw9KPwlX3BxTX+AGjGyxhKxegFfKdB3Q0aW6+Zr/WsnMWjJJnI
ZbqSALplxBa/M1JUBOgYMTc/S5x6CqSVT1kM2cqr85MEvwCpuqg8nr3z3QIDAQAB
o4ICMjCCAi4wHQYDVR0OBBYEFDE3uZWLVkE0ETPh5WRG24mVV/yYMB8GA1UdIwQY
MBaAFC0Y2H6Ln+l0vt8Jf4iUg5iGGsR+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJqWWZvdWY2WFMtM3dsX2lKU0RtSVlheEg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9lYzg1ZjUtN2Y2NS00OWYyLTk4Yjkt
Y2YwOTA3MTMzMjQxLzEvTVRlNWxZdFdRVFFSTS1IbFpFYmJpWlZYX0pnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9lYzg1ZjUtN2Y2NS00OWYyLTk4YjktY2YwOTA3MTMzMjQx
LzEvTFJqWWZvdWY2WFMtM3dsX2lKU0RtSVlheEg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzASBAIAATAMAwQCuTVwAwQA
ucZEMCEEAgACMBsDBwIqC2+AAQAwEAMGASoLb4ACAwYBKgtvgAQwDQYJKoZIhvcN
AQELBQADggEBAGyeQsK8vV0eHQ79MahJMrx0OgtTW1EEPzRQxht7ItQM6SnxUMsf
j0B3V4leh4Y+EWeMYmvx8paATutYhFMSuXYLYc6URZTVD+jlnpkHQTzbaa6thaLI
8hg0Fec2Ej28B6hN7Vq+RYGjOHUCV5RSOcUs+BI6fJntlcHAbL2lZW8F4eeE73L+
UNAZ4A0Yy6+JUZ6UlsK341bEwI1rjjJsA77xUYksC237b8Lgb/lbqFn+ArokZ3k6
BaaCSB6g5t8zr2ixQAXU/gsJTKYgDnR69dDzEy0iw2A1Rn/jNxSRcmkI74YbuaZC
fy12g8Jhf0xHKB2O+KBKMKsaDVmOhirKPMo=
-----END CERTIFICATE-----
Generated at Wed Nov 27 01:03:48 2024 by rpki-client on console-fra.rpki-client.org