Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/OS34xgpIU3Qko3Oy19TzuarvrKc.roa
File: OS34xgpIU3Qko3Oy19TzuarvrKc.roa (raw, json)
Hash identifier: fo+pnDR0lSVVFRCobeGa3d0+dHgr1Wv+Cd4HUCqUrh8=
Subject key identifier: 39:2D:F8:C6:0A:48:53:74:24:A3:73:B2:D7:D4:F3:B9:AA:EF:AC:A7
Certificate issuer: /CN=6d3756d540e5c17f194c45ca4738665d51accb6c
Certificate serial: 018CC5DC3F041CFDBC2B3F58E7C281C394CF
Authority key identifier: 6D:37:56:D5:40:E5:C1:7F:19:4C:45:CA:47:38:66:5D:51:AC:CB:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/OS34xgpIU3Qko3Oy19TzuarvrKc.roa
Signing time: Mon 01 Jan 2024 16:29:54 +0000
ROA not before: Mon 01 Jan 2024 16:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56651
IP address blocks: 193.26.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 05:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:3f:04:1c:fd:bc:2b:3f:58:e7:c2:81:c3:94:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d3756d540e5c17f194c45ca4738665d51accb6c
Validity
Not Before: Jan 1 16:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=392df8c60a48537424a373b2d7d4f3b9aaefaca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:50:8a:72:af:d0:47:3b:ca:c9:a8:fc:dc:d3:
c8:e9:8b:3c:86:8a:b8:76:06:f7:e7:14:1d:21:a7:
4f:67:cb:00:d7:d1:e9:c9:61:3f:3d:ab:84:76:57:
e6:56:eb:61:b2:75:f7:85:b9:09:8b:02:2c:65:e1:
85:0a:13:99:c3:02:b0:28:d5:e0:0f:74:d3:35:a2:
91:a5:5d:5a:0f:bc:d3:b4:cc:9f:19:80:91:6b:bd:
08:a3:de:f4:0e:ff:ae:10:2c:fe:cb:c7:03:81:ae:
44:9d:b5:6a:4c:ed:75:05:c5:fc:ea:ba:95:d0:75:
97:1e:18:e2:43:19:82:a0:87:c2:1b:5b:38:8e:51:
e2:e0:06:05:ef:74:bd:96:52:16:fa:cc:ab:61:7a:
0c:ba:a1:8e:90:dd:f2:ad:00:7b:69:8b:eb:cf:ef:
5f:f7:39:f5:78:6a:a5:f0:6b:8c:16:6a:82:9b:57:
c3:08:76:3f:0e:7c:f9:30:ef:23:a9:ae:d7:fd:81:
92:94:48:79:e3:80:11:33:dc:99:56:52:a0:2e:56:
6b:50:10:ea:ee:f2:d0:34:58:f8:1c:83:57:c8:ed:
f9:a3:e6:1f:cb:e5:fe:74:6b:9a:6a:b9:fa:f5:ae:
c5:6a:68:62:aa:e6:9f:74:7d:06:0e:f7:6f:b1:b6:
34:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2D:F8:C6:0A:48:53:74:24:A3:73:B2:D7:D4:F3:B9:AA:EF:AC:A7
X509v3 Authority Key Identifier:
keyid:6D:37:56:D5:40:E5:C1:7F:19:4C:45:CA:47:38:66:5D:51:AC:CB:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/OS34xgpIU3Qko3Oy19TzuarvrKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.220.0/24
Signature Algorithm: sha256WithRSAEncryption
18:82:20:96:5a:d3:ba:28:8b:fd:ab:b9:ff:a3:0b:8b:4c:9a:
ca:32:f5:fd:ae:00:ff:0b:b9:c2:90:bc:24:a7:b3:13:46:0e:
7d:ed:60:d9:28:70:e6:14:57:88:4d:a9:1f:80:65:c5:59:c2:
7e:84:f3:ea:ab:b2:bd:f8:4e:cf:1a:ea:38:80:2c:ea:84:e1:
fd:97:78:f5:b8:a3:7c:03:4d:55:be:e1:d0:0e:0c:85:d4:8c:
3c:3a:d6:e6:0d:a6:75:2d:65:8f:7f:c6:19:5c:f3:4d:f1:22:
c3:9d:88:88:fd:b3:d0:b8:7b:81:10:9f:7a:22:bb:ea:a3:9c:
6a:c7:b5:f5:a3:7b:3c:08:de:6d:e7:16:71:9e:83:39:9b:e6:
b9:de:13:1b:95:d4:0c:af:7f:de:b1:cb:a3:ec:9e:bf:de:9b:
d5:6a:3a:68:b4:4c:f8:d9:16:f5:aa:35:93:2d:a9:63:6b:a8:
a3:23:5a:12:ba:dc:a5:3b:84:7b:38:9e:9c:16:f3:18:2b:98:
e5:60:35:e4:9e:18:b8:a9:f6:4e:ff:39:7e:54:70:09:19:4b:
28:f3:d2:57:10:39:24:c8:b1:3f:6a:58:94:8c:cf:e0:5f:84:
e5:59:78:23:d9:d8:90:a9:67:de:95:e4:cd:3f:76:83:16:50:
61:d9:b0:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzF3D8EHP28Kz9Y58KBw5TPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMzc1NmQ1NDBlNWMxN2YxOTRjNDVjYTQ3Mzg2NjVkNTFh
Y2NiNmMwHhcNMjQwMTAxMTYyOTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTJkZjhjNjBhNDg1Mzc0MjRhMzczYjJkN2Q0ZjNiOWFhZWZhY2E3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA81CKcq/QRzvKyaj83NPI6Ys8hoq4
dgb35xQdIadPZ8sA19HpyWE/PauEdlfmVuthsnX3hbkJiwIsZeGFChOZwwKwKNXg
D3TTNaKRpV1aD7zTtMyfGYCRa70Io970Dv+uECz+y8cDga5EnbVqTO11BcX86rqV
0HWXHhjiQxmCoIfCG1s4jlHi4AYF73S9llIW+syrYXoMuqGOkN3yrQB7aYvrz+9f
9zn1eGql8GuMFmqCm1fDCHY/Dnz5MO8jqa7X/YGSlEh544ARM9yZVlKgLlZrUBDq
7vLQNFj4HINXyO35o+Yfy+X+dGuaarn69a7FamhiquafdH0GDvdvsbY0ZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDkt+MYKSFN0JKNzstfU87mq76ynMB8GA1UdIwQY
MBaAFG03VtVA5cF/GUxFykc4Zl1RrMtsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlRkVzFVRGx3WDhaVEVYS1J6aG1YVkdzeTJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC85NWY2ODItZWFkZS00YzE4LWFjNTIt
YzhhOWUzNzJjMjI5LzEvT1MzNHhncElVM1FrbzNPeTE5VHp1YXJ2cktjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC85NWY2ODItZWFkZS00YzE4LWFjNTItYzhhOWUzNzJjMjI5
LzEvYlRkVzFVRGx3WDhaVEVYS1J6aG1YVkdzeTJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRrcMA0G
CSqGSIb3DQEBCwUAA4IBAQAYgiCWWtO6KIv9q7n/owuLTJrKMvX9rgD/C7nCkLwk
p7MTRg597WDZKHDmFFeITakfgGXFWcJ+hPPqq7K9+E7PGuo4gCzqhOH9l3j1uKN8
A01VvuHQDgyF1Iw8OtbmDaZ1LWWPf8YZXPNN8SLDnYiI/bPQuHuBEJ96Irvqo5xq
x7X1o3s8CN5t5xZxnoM5m+a53hMbldQMr3/escuj7J6/3pvVajpotEz42Rb1qjWT
Lalja6ijI1oSutylO4R7OJ6cFvMYK5jlYDXknhi4qfZO/zl+VHAJGUso89JXEDkk
yLE/aliUjM/gX4TlWXgj2diQqWfeleTNP3aDFlBh2bAh
-----END CERTIFICATE-----
Generated at Sun Jun 30 13:36:20 2024 by rpki-client on console-ams.rpki-client.org