Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/3J4jcvSpdD0oPsF4qn0Wgua3FDg.roa
File: 3J4jcvSpdD0oPsF4qn0Wgua3FDg.roa (raw, json)
Hash identifier: 8s58AlZmGxy6KVIvXLDnR/+39u7uYLxZc+JOFQuvbvY=
Subject key identifier: DC:9E:23:72:F4:A9:74:3D:28:3E:C1:78:AA:7D:16:82:E6:B7:14:38
Certificate issuer: /CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Certificate serial: 018CC50111D8095D5A35D0767899969EC434
Authority key identifier: F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/3J4jcvSpdD0oPsF4qn0Wgua3FDg.roa
Signing time: Mon 01 Jan 2024 12:30:30 +0000
ROA not before: Mon 01 Jan 2024 12:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8468
IP address blocks: 212.124.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 27 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:11:d8:09:5d:5a:35:d0:76:78:99:96:9e:c4:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c9e0305cfed5794448732a8b0bd8427450d813
Validity
Not Before: Jan 1 12:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc9e2372f4a9743d283ec178aa7d1682e6b71438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:66:01:9a:ff:83:5f:af:03:0f:fb:a1:aa:a4:
77:23:30:6a:c4:5f:1c:b6:b6:21:2a:e9:33:7c:a6:
e6:aa:55:e7:69:6f:ff:8b:9f:f2:f5:1e:08:5d:a8:
9a:ea:18:b6:99:d4:af:95:6d:7b:8e:85:1e:a7:36:
a0:ab:99:4f:2f:07:52:d9:11:ac:4c:72:78:96:a5:
eb:c1:03:75:4b:72:c0:0a:b6:03:bc:06:87:77:f8:
01:da:5a:09:8b:53:81:a5:0c:69:7c:de:9d:c9:c9:
5c:a5:00:86:be:75:39:f4:60:00:03:8c:2a:7f:97:
19:3d:9b:b0:e6:19:8c:74:19:7f:64:25:c6:a4:bf:
8d:77:9d:4d:56:86:87:e2:74:f8:02:ac:20:60:6f:
4f:f9:91:81:23:9e:97:0d:47:17:24:c9:0f:23:4d:
f8:70:fb:78:17:19:ce:85:91:e4:23:db:af:25:50:
42:19:00:f9:2f:da:59:47:72:49:3b:e7:c3:db:a8:
16:10:ac:d8:e7:6a:15:06:0e:e5:91:f6:2a:de:59:
46:48:14:26:d4:f1:94:79:79:2e:b5:f7:5c:59:22:
56:4f:0a:9a:b2:a6:75:c7:30:62:30:a9:16:55:df:
92:d1:b8:a3:9d:80:e3:76:9f:e8:f6:dc:89:59:4c:
7b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:9E:23:72:F4:A9:74:3D:28:3E:C1:78:AA:7D:16:82:E6:B7:14:38
X509v3 Authority Key Identifier:
keyid:F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/3J4jcvSpdD0oPsF4qn0Wgua3FDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.124.199.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:83:ee:b2:01:50:9d:d7:70:34:6a:6a:18:71:a1:f5:21:47:
d2:b3:50:28:40:0b:01:2e:6c:5f:fa:86:03:99:34:95:08:d6:
9d:7c:21:b2:cd:b7:a1:b1:3e:c6:ec:ac:e1:a5:7c:0f:67:38:
87:f9:eb:9c:46:3f:3c:ad:bf:42:60:d8:cb:f7:73:32:5e:30:
c8:b9:4b:f2:f5:de:16:fc:ba:22:10:33:3f:d2:ad:d7:c5:15:
43:c7:99:a0:f5:c6:a0:70:e3:58:a3:59:56:66:57:d2:5a:93:
7f:fe:66:81:da:63:2e:e1:78:7f:61:13:ce:40:48:2e:31:d5:
69:67:44:5e:45:a5:59:29:ed:3e:67:fe:91:26:01:f4:91:82:
b5:42:64:bc:1c:43:80:51:56:a9:aa:77:6e:68:10:27:e2:77:
8e:09:6e:37:33:13:e2:ee:11:ac:b7:61:62:e9:c4:ca:3c:58:
c2:12:78:4f:9d:e4:8c:23:f6:b7:43:2d:4d:ac:df:f2:19:4c:
4c:ee:ca:a3:9c:b3:d4:70:70:a3:98:cc:fc:ac:5f:46:e9:e7:
a9:ea:af:cb:fa:2f:f4:d6:d5:fb:9d:b2:05:ac:20:a6:f6:78:
c1:43:b6:3e:30:4d:58:41:01:45:3c:c4:1c:da:b8:3f:1e:30:
20:30:61:47
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzFARHYCV1aNdB2eJmWnsQ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5YzllMDMwNWNmZWQ1Nzk0NDQ4NzMyYThiMGJkODQyNzQ1
MGQ4MTMwHhcNMjQwMTAxMTIzMDMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzllMjM3MmY0YTk3NDNkMjgzZWMxNzhhYTdkMTY4MmU2YjcxNDM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWYBmv+DX68DD/uhqqR3IzBqxF8c
trYhKukzfKbmqlXnaW//i5/y9R4IXaia6hi2mdSvlW17joUepzagq5lPLwdS2RGs
THJ4lqXrwQN1S3LACrYDvAaHd/gB2loJi1OBpQxpfN6dyclcpQCGvnU59GAAA4wq
f5cZPZuw5hmMdBl/ZCXGpL+Nd51NVoaH4nT4AqwgYG9P+ZGBI56XDUcXJMkPI034
cPt4FxnOhZHkI9uvJVBCGQD5L9pZR3JJO+fD26gWEKzY52oVBg7lkfYq3llGSBQm
1PGUeXkutfdcWSJWTwqasqZ1xzBiMKkWVd+S0bijnYDjdp/o9tyJWUx7nQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFNyeI3L0qXQ9KD7BeKp9FoLmtxQ4MB8GA1UdIwQY
MBaAFPnJ4DBc/tV5REhzKosL2EJ0UNgTMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1jbmdNRnotMVhsRVNITXFpd3ZZUW5SUTJCTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0
LTJmYmIyMDhhZDE4Mi8xLzNKNGpjdlNwZEQwb1BzRjRxbjBXZ3VhM0ZEZy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0LTJmYmIyMDhhZDE4
Mi8xLzEtY25nTUZ6LTFYbEVTSE1xaXd2WVFuUlEyQk0uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADUfMcw
DQYJKoZIhvcNAQELBQADggEBAKuD7rIBUJ3XcDRqahhxofUhR9KzUChACwEubF/6
hgOZNJUI1p18IbLNt6GxPsbsrOGlfA9nOIf565xGPzytv0Jg2Mv3czJeMMi5S/L1
3hb8uiIQMz/SrdfFFUPHmaD1xqBw41ijWVZmV9Jak3/+ZoHaYy7heH9hE85ASC4x
1WlnRF5FpVkp7T5n/pEmAfSRgrVCZLwcQ4BRVqmqd25oECfid44JbjczE+LuEay3
YWLpxMo8WMISeE+d5Iwj9rdDLU2s3/IZTEzuyqOcs9RwcKOYzPysX0bp56nqr8v6
L/TW1fudsgWsIKb2eMFDtj4wTVhBAUU8xBzauD8eMCAwYUc=
-----END CERTIFICATE-----
Generated at Wed Jun 26 16:35:50 2024 by rpki-client on console-ams.rpki-client.org