Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/jvHexXCcnkXCTVAuJ1WyJILD8ys.roa
File: jvHexXCcnkXCTVAuJ1WyJILD8ys.roa (raw, json)
Hash identifier: KeAK+jWX40JrwNGd9mPMnskucpKy02y3jSpB4YXM20o=
Subject key identifier: 8E:F1:DE:C5:70:9C:9E:45:C2:4D:50:2E:27:55:B2:24:82:C3:F3:2B
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 018CC6B8F9B1247DAE43390EE87F06563B32
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/jvHexXCcnkXCTVAuJ1WyJILD8ys.roa
Signing time: Mon 01 Jan 2024 20:31:00 +0000
ROA not before: Mon 01 Jan 2024 20:31:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1759
IP address blocks: 194.188.145.0/24 maxlen: 24
192.126.64.0/24 maxlen: 24
192.126.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:f9:b1:24:7d:ae:43:39:0e:e8:7f:06:56:3b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jan 1 20:31:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ef1dec5709c9e45c24d502e2755b22482c3f32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:02:61:1a:41:a4:8b:d9:cc:78:b1:88:1d:82:
a2:35:3e:25:f7:8b:a2:43:3e:3c:01:1a:e7:6e:b9:
fe:d5:87:e8:34:16:70:1d:0a:4d:13:b4:40:16:21:
22:3b:90:e7:25:be:2a:f3:84:6a:16:e7:aa:02:30:
a2:89:bc:e6:25:52:6a:d0:04:83:7a:95:55:4b:93:
15:63:5c:3a:e0:fd:66:7a:ff:f8:cc:f4:7c:94:ca:
2b:64:8b:5f:61:f1:df:4c:1c:fb:94:35:b3:64:1f:
6d:d2:4c:8f:90:70:19:b2:25:82:1a:0a:41:4d:40:
10:fc:01:fd:9f:16:12:25:4d:38:18:5e:db:21:89:
ee:07:4a:64:63:3a:a5:44:db:7c:2a:de:22:7f:b5:
89:a4:66:85:01:d6:ee:48:2e:90:6f:2f:a9:fb:95:
2d:2d:b4:bf:9b:e7:ae:fd:24:ea:7e:56:12:46:a2:
c1:ca:cb:de:0c:c5:bb:7d:b2:b6:f3:e2:92:a0:bf:
ce:42:f9:85:34:b0:cc:4e:5b:bf:a7:a0:f6:3b:c3:
60:5d:82:17:38:21:fe:74:9c:93:ed:a6:d8:e9:e7:
43:20:16:6a:de:bb:56:88:27:ce:b6:e7:b4:52:68:
67:e5:6b:6c:e9:25:ea:c8:bf:8a:35:b8:f1:b1:d4:
52:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F1:DE:C5:70:9C:9E:45:C2:4D:50:2E:27:55:B2:24:82:C3:F3:2B
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/jvHexXCcnkXCTVAuJ1WyJILD8ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.126.63.0-192.126.64.255
194.188.145.0/24
Signature Algorithm: sha256WithRSAEncryption
15:14:21:7d:0b:45:2e:3f:fb:c6:92:e7:b1:7a:c8:d9:e6:12:
bb:c6:3f:36:66:f6:72:67:ce:37:51:1b:76:49:90:f1:c6:45:
db:24:80:ae:41:0f:4a:b4:82:b5:b7:7d:29:94:41:1a:82:e8:
c6:8e:d3:08:68:9b:23:f0:cf:00:04:d1:15:22:84:76:97:ce:
8c:51:b3:eb:08:f1:0f:31:b4:dd:e0:0d:16:77:dd:e5:24:21:
70:43:5f:5a:6e:d5:77:67:a8:22:15:d3:bf:84:dc:d2:2d:f3:
4e:73:2c:b0:a0:c1:87:5f:06:8f:04:71:41:df:43:52:1d:7f:
6c:f9:e1:54:61:b3:3a:08:40:7d:61:dd:ce:69:fe:98:22:53:
43:9f:23:2f:84:62:34:21:79:b1:05:50:20:15:d6:26:8d:f8:
b3:0a:8e:64:06:39:30:7f:4f:b6:96:b6:f9:64:ab:92:b9:ec:
41:76:9f:e3:c8:df:8e:2c:57:64:6d:c5:13:bb:8b:b6:d1:ae:
d9:97:06:07:bf:07:a3:5a:2a:32:d3:a2:bf:69:69:46:10:8c:
28:8b:75:ac:43:5a:b5:22:8f:38:f2:9e:77:0f:89:0f:f2:c6:
9c:44:2b:73:01:f0:79:2b:40:43:38:41:c5:a5:30:6f:fa:15:
7f:16:de:e2
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYzGuPmxJH2uQzkO6H8GVjsyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZGVlMWIwNmJhMjRhNjc2MjEzZjk3NmE0YjUwYzEyOWRj
YjJiNzMwHhcNMjQwMTAxMjAzMTAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZWYxZGVjNTcwOWM5ZTQ1YzI0ZDUwMmUyNzU1YjIyNDgyYzNmMzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygJhGkGki9nMeLGIHYKiNT4l94ui
Qz48ARrnbrn+1YfoNBZwHQpNE7RAFiEiO5DnJb4q84RqFueqAjCiibzmJVJq0ASD
epVVS5MVY1w64P1mev/4zPR8lMorZItfYfHfTBz7lDWzZB9t0kyPkHAZsiWCGgpB
TUAQ/AH9nxYSJU04GF7bIYnuB0pkYzqlRNt8Kt4if7WJpGaFAdbuSC6Qby+p+5Ut
LbS/m+eu/STqflYSRqLBysveDMW7fbK28+KSoL/OQvmFNLDMTlu/p6D2O8NgXYIX
OCH+dJyT7abY6edDIBZq3rtWiCfOtue0Umhn5Wts6SXqyL+KNbjxsdRSpwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFI7x3sVwnJ5Fwk1QLidVsiSCw/MrMB8GA1UdIwQY
MBaAFODe4bBrokpnYhP5dqS1DBKdyytzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMt
MTVlOTBiZjg3ZmFiLzEvanZIZXhYQ2Nua1hDVFZBdUoxV3lKSUxEOHlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMtMTVlOTBiZjg3ZmFi
LzEvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBADAfj8D
BADAfkADBADCvJEwDQYJKoZIhvcNAQELBQADggEBABUUIX0LRS4/+8aS57F6yNnm
ErvGPzZm9nJnzjdRG3ZJkPHGRdskgK5BD0q0grW3fSmUQRqC6MaO0whomyPwzwAE
0RUihHaXzoxRs+sI8Q8xtN3gDRZ33eUkIXBDX1pu1XdnqCIV07+E3NIt805zLLCg
wYdfBo8EcUHfQ1Idf2z54VRhszoIQH1h3c5p/pgiU0OfIy+EYjQhebEFUCAV1iaN
+LMKjmQGOTB/T7aWtvlkq5K57EF2n+PI344sV2RtxRO7i7bRrtmXBge/B6NaKjLT
or9paUYQjCiLdaxDWrUijzjynncPiQ/yxpxEK3MB8HkrQEM4QcWlMG/6FX8W3uI=
-----END CERTIFICATE-----
Generated at Sun Jun 23 17:37:54 2024 by rpki-client on console-ams.rpki-client.org