Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LJ1yBla54RjCXAOlU_MjzL4sp7U.roa
File: LJ1yBla54RjCXAOlU_MjzL4sp7U.roa (raw, json)
Hash identifier: jlwe4Ta/1C+3ucrKK2SvqV6KIbih4S00LnXiqM6q9Vk=
Subject key identifier: 2C:9D:72:06:56:B9:E1:18:C2:5C:03:A5:53:F3:23:CC:BE:2C:A7:B5
Certificate issuer: /CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Certificate serial: 01903CD906D746C9A8D6798099E2B939DCE1
Authority key identifier: 2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LJ1yBla54RjCXAOlU_MjzL4sp7U.roa
Signing time: Fri 21 Jun 2024 22:09:34 +0000
ROA not before: Fri 21 Jun 2024 22:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216018
IP address blocks: 185.23.72.0/24 maxlen: 24
185.23.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LgqTM_k8ylRP2r4up6ZzilSvdZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LgqTM_k8ylRP2r4up6ZzilSvdZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 18:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3c:d9:06:d7:46:c9:a8:d6:79:80:99:e2:b9:39:dc:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Validity
Not Before: Jun 21 22:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c9d720656b9e118c25c03a553f323ccbe2ca7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:29:64:d4:a4:18:e3:54:81:6c:37:70:f6:fb:
74:21:2b:c2:89:1e:0a:74:eb:be:5d:39:bb:13:90:
98:2a:17:7a:ce:96:f5:08:06:2b:08:09:1b:73:89:
c6:22:38:24:d4:99:37:a4:fb:81:f6:86:86:9e:b9:
27:5f:c6:89:33:7e:2c:01:78:7c:9c:1b:03:94:30:
7f:f8:51:91:8a:60:cf:7a:2b:70:a6:45:40:eb:d9:
97:c8:8c:df:03:95:83:30:9e:b8:f2:7e:2c:de:40:
da:90:d6:12:f9:06:6f:db:e3:65:53:bf:5b:85:d0:
89:41:92:69:b7:73:df:56:00:55:8e:ce:5b:a5:84:
ce:e6:2d:bc:d4:c3:fb:78:df:84:8d:e2:21:ad:02:
12:73:18:d4:8e:c7:c9:d5:4d:c5:58:15:db:b4:74:
d5:7f:c7:d8:f4:ee:3e:f1:97:18:c5:90:2a:85:3e:
ce:10:69:b5:5a:80:56:9a:e4:2c:75:46:8a:d6:50:
cb:42:e9:a0:2a:3c:95:cb:a4:10:b8:49:35:82:4e:
fd:de:14:33:82:ab:fa:17:13:20:07:2f:5b:f6:4c:
36:d4:cd:e3:73:86:e6:ed:4b:2b:9a:23:7c:2e:e8:
00:53:4f:25:fd:76:48:a5:e8:fe:67:8f:17:82:0e:
fd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:9D:72:06:56:B9:E1:18:C2:5C:03:A5:53:F3:23:CC:BE:2C:A7:B5
X509v3 Authority Key Identifier:
keyid:2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LJ1yBla54RjCXAOlU_MjzL4sp7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LgqTM_k8ylRP2r4up6ZzilSvdZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.72.0/24
185.23.74.0/24
Signature Algorithm: sha256WithRSAEncryption
90:55:28:e3:7a:65:db:08:b6:de:56:9f:6a:2c:82:68:0f:b6:
d1:53:43:1c:6e:48:b1:b2:ef:48:a5:3a:f5:ab:86:dc:e5:bd:
16:23:a8:20:ba:2e:c1:2d:78:e1:d1:b9:3c:d1:5f:cf:3b:d8:
41:ed:c1:f1:82:a3:e8:38:b7:8b:22:24:1d:9b:08:59:f8:9c:
2d:4e:ae:45:c3:56:dd:b0:d2:f8:b5:32:27:8f:71:26:86:8d:
ba:da:db:8c:cb:81:b6:2c:06:b3:a7:e3:51:19:ee:ff:57:cc:
2a:d2:3b:94:2c:67:d5:64:e7:fc:51:48:2f:64:11:91:5d:2a:
d3:e1:58:b6:8d:1e:45:f8:f6:5e:8e:7c:eb:dd:90:78:5d:3c:
2c:c1:d6:c7:0c:fc:87:3c:35:48:d5:51:61:a4:41:57:71:ef:
85:aa:82:12:c4:7a:67:53:ea:6c:4e:1b:d0:bf:1f:3b:0a:97:
ad:f2:ef:27:e3:40:ab:64:72:15:cf:31:a0:82:1c:cc:6f:27:
4b:ff:bc:69:48:14:d7:3a:23:37:01:eb:3b:44:e7:30:25:1d:
14:99:7a:35:af:08:c5:21:b7:52:18:bb:3c:e7:59:c5:a9:16:
a6:3e:56:35:26:d1:17:73:e4:77:52:72:71:96:6c:d4:02:e8:
d1:15:66:3f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZA82QbXRsmo1nmAmeK5OdzhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlMGE5MzMzZjkzY2NhNTQ0ZmRhYmUyZWE3YTY3MzhhNTRh
Zjc1OWUwHhcNMjQwNjIxMjIwOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzlkNzIwNjU2YjllMTE4YzI1YzAzYTU1M2YzMjNjY2JlMmNhN2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwylk1KQY41SBbDdw9vt0ISvCiR4K
dOu+XTm7E5CYKhd6zpb1CAYrCAkbc4nGIjgk1Jk3pPuB9oaGnrknX8aJM34sAXh8
nBsDlDB/+FGRimDPeitwpkVA69mXyIzfA5WDMJ648n4s3kDakNYS+QZv2+NlU79b
hdCJQZJpt3PfVgBVjs5bpYTO5i281MP7eN+EjeIhrQIScxjUjsfJ1U3FWBXbtHTV
f8fY9O4+8ZcYxZAqhT7OEGm1WoBWmuQsdUaK1lDLQumgKjyVy6QQuEk1gk793hQz
gqv6FxMgBy9b9kw21M3jc4bm7UsrmiN8LugAU08l/XZIpej+Z48Xgg79fQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCydcgZWueEYwlwDpVPzI8y+LKe1MB8GA1UdIwQY
MBaAFC4KkzP5PMpUT9q+Lqemc4pUr3WeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGdxVE1fazh5bFJQMnI0dXA2WnppbFN2ZFo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9hNGQwOWYtMjlkZi00NGVhLWE3YjEt
MGEwYWFlYWVlNGYxLzEvTEoxeUJsYTU0UmpDWEFPbFVfTWp6TDRzcDdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9hNGQwOWYtMjlkZi00NGVhLWE3YjEtMGEwYWFlYWVlNGYx
LzEvTGdxVE1fazh5bFJQMnI0dXA2WnppbFN2ZFo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuRdIAwQA
uRdKMA0GCSqGSIb3DQEBCwUAA4IBAQCQVSjjemXbCLbeVp9qLIJoD7bRU0Mcbkix
su9IpTr1q4bc5b0WI6ggui7BLXjh0bk80V/PO9hB7cHxgqPoOLeLIiQdmwhZ+Jwt
Tq5Fw1bdsNL4tTInj3Emho262tuMy4G2LAazp+NRGe7/V8wq0juULGfVZOf8UUgv
ZBGRXSrT4Vi2jR5F+PZejnzr3ZB4XTwswdbHDPyHPDVI1VFhpEFXce+FqoISxHpn
U+psThvQvx87Cpet8u8n40CrZHIVzzGgghzMbydL/7xpSBTXOiM3Aes7ROcwJR0U
mXo1rwjFIbdSGLs851nFqRamPlY1JtEXc+R3UnJxlmzUAujRFWY/
-----END CERTIFICATE-----
Generated at Sat Jun 22 00:26:34 2024 by rpki-client on console.sobornost.net