Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/gpzm31Ghlv-UcPpRv2dLLFhaahw.roa
File: gpzm31Ghlv-UcPpRv2dLLFhaahw.roa (raw, json)
Hash identifier: On4mYEJat8SIq+uziowSaGUoE5k1vrHhdzYcJjNDa/8=
Subject key identifier: 82:9C:E6:DF:51:A1:96:FF:94:70:FA:51:BF:67:4B:2C:58:5A:6A:1C
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 018CC64B885F028BEF3E77EE4D2C2EE3873A
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/gpzm31Ghlv-UcPpRv2dLLFhaahw.roa
Signing time: Mon 01 Jan 2024 18:31:27 +0000
ROA not before: Mon 01 Jan 2024 18:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61078
IP address blocks: 178.16.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.mft
rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:88:5f:02:8b:ef:3e:77:ee:4d:2c:2e:e3:87:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 18:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=829ce6df51a196ff9470fa51bf674b2c585a6a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:cc:11:e2:89:e8:52:8e:70:42:83:9c:2b:
3a:56:eb:24:56:60:06:e8:dd:48:ef:84:f7:38:cf:
2f:c3:4e:5f:24:69:3b:de:c1:30:48:db:09:eb:b6:
43:0a:88:d3:04:72:d9:2a:5f:4e:0d:42:7c:bb:50:
6d:93:63:a3:09:17:bb:07:62:c4:92:b2:09:0c:78:
6e:5b:4d:8d:ef:c3:16:4d:04:57:60:78:e3:16:5b:
07:31:5a:af:a6:88:fb:a4:39:2e:60:8b:44:8b:6b:
5b:04:19:39:35:ec:bb:57:6c:f8:0f:f7:48:fa:a2:
5c:a9:74:0c:66:db:01:84:77:e7:48:91:0a:99:8f:
c2:1a:f5:7d:a0:7a:d6:1b:2d:81:a0:44:55:86:97:
28:6c:90:20:d0:32:c3:2b:52:34:40:10:f3:8a:b2:
f4:19:5b:cc:d2:b5:aa:80:e4:d8:39:71:0d:7e:02:
b7:b7:ce:30:fa:3d:ac:63:85:f3:b9:44:65:bd:02:
23:b6:4b:6e:3c:2c:34:f7:d5:67:af:95:cf:bb:7c:
70:1f:4b:8d:e3:de:c3:4f:f4:7f:67:fd:94:81:a3:
a2:aa:4d:b4:fe:d3:62:7d:95:63:14:2c:ca:97:96:
11:d4:0e:50:cc:1d:d9:4e:0e:f3:0b:0e:c6:ec:ba:
00:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9C:E6:DF:51:A1:96:FF:94:70:FA:51:BF:67:4B:2C:58:5A:6A:1C
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/gpzm31Ghlv-UcPpRv2dLLFhaahw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.113.0/24
Signature Algorithm: sha256WithRSAEncryption
34:83:43:f5:af:40:91:46:57:8f:41:c3:0c:78:4d:85:85:15:
f4:5a:a1:67:50:35:6e:15:d4:b7:5f:d1:ea:bc:0a:53:55:96:
ba:50:f8:b1:8f:9d:c0:be:8e:6c:e0:fc:ed:56:e4:8f:ef:67:
62:84:26:7c:03:4c:50:eb:84:14:36:ed:3b:b0:54:21:c4:1e:
a1:2e:08:ea:e4:5c:b5:02:e3:c2:a6:ff:85:d6:9c:af:51:89:
be:33:64:85:54:52:f2:06:07:33:27:14:db:45:e4:59:84:12:
b6:f4:38:a4:95:87:57:d1:bb:11:16:e3:f2:e1:ab:5d:6e:bc:
cb:96:f4:01:65:c9:e3:33:81:c4:d3:64:66:a8:1c:b3:d3:29:
e2:a8:9d:0c:9b:24:bb:6b:20:da:fd:d7:95:30:92:f6:1a:53:
0d:c2:c1:98:9f:25:c3:61:5f:93:61:fb:d8:97:7f:43:3e:9e:
62:52:33:b7:26:7a:7b:71:8f:ef:e7:4e:4e:31:35:ba:c2:bf:
e1:81:98:b3:6e:2d:d0:47:2f:fa:d7:64:aa:7b:f8:7d:41:8b:
c7:88:52:b2:19:0e:f2:1e:ff:42:99:2c:83:42:06:a2:41:39:
1e:a2:74:d1:7f:a7:f2:30:2e:95:b9:e2:ba:59:45:41:ba:dc:
83:bf:bd:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS4hfAovvPnfuTSwu44c6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjQwMTAxMTgzMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjljZTZkZjUxYTE5NmZmOTQ3MGZhNTFiZjY3NGIyYzU4NWE2YTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBbMEeKJ6FKOcEKDnCs6VuskVmAG
6N1I74T3OM8vw05fJGk73sEwSNsJ67ZDCojTBHLZKl9ODUJ8u1Btk2OjCRe7B2LE
krIJDHhuW02N78MWTQRXYHjjFlsHMVqvpoj7pDkuYItEi2tbBBk5Ney7V2z4D/dI
+qJcqXQMZtsBhHfnSJEKmY/CGvV9oHrWGy2BoERVhpcobJAg0DLDK1I0QBDzirL0
GVvM0rWqgOTYOXENfgK3t84w+j2sY4XzuURlvQIjtktuPCw099Vnr5XPu3xwH0uN
497DT/R/Z/2UgaOiqk20/tNifZVjFCzKl5YR1A5QzB3ZTg7zCw7G7LoA3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIKc5t9RoZb/lHD6Ub9nSyxYWmocMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvZ3B6bTMxR2hsdi1VY1BwUnYyZExMRmhhYWh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshBxMA0G
CSqGSIb3DQEBCwUAA4IBAQA0g0P1r0CRRlePQcMMeE2FhRX0WqFnUDVuFdS3X9Hq
vApTVZa6UPixj53Avo5s4PztVuSP72dihCZ8A0xQ64QUNu07sFQhxB6hLgjq5Fy1
AuPCpv+F1pyvUYm+M2SFVFLyBgczJxTbReRZhBK29DiklYdX0bsRFuPy4atdbrzL
lvQBZcnjM4HE02RmqByz0yniqJ0MmyS7ayDa/deVMJL2GlMNwsGYnyXDYV+TYfvY
l39DPp5iUjO3Jnp7cY/v505OMTW6wr/hgZizbi3QRy/612Sqe/h9QYvHiFKyGQ7y
Hv9CmSyDQgaiQTkeonTRf6fyMC6VueK6WUVButyDv705
-----END CERTIFICATE-----
Generated at Sun Jun 23 01:26:06 2024 by rpki-client on console-ams.rpki-client.org