Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/ET747Zx2WhMsw9ASl97jopKOmHE.roa
File: ET747Zx2WhMsw9ASl97jopKOmHE.roa (raw, json)
Hash identifier: P2UzAPuOimWeDMaDjm3sbbm2XRHT8cGwEWmgWGvxaZ4=
Subject key identifier: 11:3E:F8:ED:9C:76:5A:13:2C:C3:D0:12:97:DE:E3:A2:92:8E:98:71
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 018CC64B66EC9B7AFB6203095B8C7BB47A9A
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/ET747Zx2WhMsw9ASl97jopKOmHE.roa
Signing time: Mon 01 Jan 2024 18:31:19 +0000
ROA not before: Mon 01 Jan 2024 18:31:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 150090
IP address blocks: 2a0e:46c4:1805::/48 maxlen: 48
2a0e:46c4:1803::/48 maxlen: 48
2a0e:46c4:1806::/48 maxlen: 48
2a0e:46c4:1804::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Sep 2024 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:66:ec:9b:7a:fb:62:03:09:5b:8c:7b:b4:7a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 18:31:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=113ef8ed9c765a132cc3d01297dee3a2928e9871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4e:2e:c8:07:b9:db:7a:01:5b:10:35:5a:73:
29:fa:d9:ab:e3:d0:fe:16:54:e9:b4:94:72:c9:9c:
3a:66:9a:2f:90:61:c7:81:81:50:e5:3d:ee:13:48:
3e:59:e3:72:c1:3e:05:b5:f5:72:4d:41:f5:b1:21:
ff:31:09:db:8f:c6:a6:0a:cc:5e:db:41:be:cb:ac:
c5:b8:f2:07:62:8a:a3:15:a0:76:f5:82:98:85:dd:
db:16:8f:13:91:e2:ae:51:fc:68:b0:74:fe:fc:91:
e1:1f:03:e0:ba:15:84:a6:fe:d1:e3:99:a1:72:6f:
42:30:79:19:a0:99:b4:20:22:da:c5:d2:e6:5a:2a:
bd:45:20:48:2f:30:69:c2:8e:36:f6:c1:f4:25:c1:
f4:cf:77:e0:8e:fa:46:81:53:05:53:56:21:14:9f:
c6:45:dc:7b:e3:d0:43:f1:a6:82:13:b6:c8:45:82:
de:fe:68:b3:75:bc:b0:55:6f:35:05:5d:d8:c9:00:
1d:b7:8e:7b:8c:4b:59:6a:f3:1c:a2:ba:ee:61:5f:
7c:46:8f:59:26:67:07:ba:34:bf:04:d9:a0:2a:93:
31:84:d6:1e:f3:47:a2:4f:21:20:01:aa:72:34:7b:
22:41:c1:5f:44:94:be:e4:f6:b4:ab:2c:9e:39:db:
ba:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3E:F8:ED:9C:76:5A:13:2C:C3:D0:12:97:DE:E3:A2:92:8E:98:71
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/ET747Zx2WhMsw9ASl97jopKOmHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:1803::-2a0e:46c4:1806:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7c:77:0f:d9:aa:e1:cf:7d:5f:e2:4a:81:96:59:08:7c:67:41:
3a:91:15:1e:84:c0:0a:e6:81:ce:e1:c2:d2:9d:28:0a:74:d3:
4b:4d:a2:8f:27:6e:a1:c1:2a:c9:c2:92:af:9b:7a:b6:e2:05:
81:c6:ad:21:f2:2c:36:85:37:be:82:05:34:e2:86:90:97:78:
f5:00:e9:91:a6:5a:fe:58:8c:43:8b:d5:6b:ed:15:a3:dc:33:
bc:4f:86:21:21:75:b5:38:d0:57:0e:f4:e3:59:48:ae:aa:e9:
cf:0f:1f:80:38:0d:b2:78:c7:79:82:98:e9:07:54:e0:e0:31:
7f:d6:26:0c:d1:af:61:dc:65:bd:1b:a2:d6:16:ac:1f:a4:24:
0a:4c:ae:f7:da:04:4d:de:09:29:7a:b8:d4:04:3f:13:39:4c:
4f:f1:13:61:11:2e:64:f5:b8:72:bc:dd:c0:59:e4:65:1b:9b:
81:cd:ec:b6:3f:1b:13:6d:fb:1f:0a:1b:57:10:3b:79:b0:43:
02:30:0d:28:4a:0c:9f:7a:5f:2a:c3:e6:79:90:25:43:c8:a6:
b8:76:02:b7:4f:e7:6f:38:9f:ec:3e:76:d7:80:56:4c:f3:86:
e0:ab:07:6c:9d:48:0f:a1:a2:1e:47:c5:99:80:9f:0f:b2:f6:
37:ef:bd:a7
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYzGS2bsm3r7YgMJW4x7tHqaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MGU1NDUwZDE0ODY3ODBhYmE1NGYwNDVlYzQ4MDJmMTlm
MGI0ZjcwHhcNMjQwMTAxMTgzMTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTNlZjhlZDljNzY1YTEzMmNjM2QwMTI5N2RlZTNhMjkyOGU5ODcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmU4uyAe523oBWxA1WnMp+tmr49D+
FlTptJRyyZw6ZpovkGHHgYFQ5T3uE0g+WeNywT4FtfVyTUH1sSH/MQnbj8amCsxe
20G+y6zFuPIHYoqjFaB29YKYhd3bFo8TkeKuUfxosHT+/JHhHwPguhWEpv7R45mh
cm9CMHkZoJm0ICLaxdLmWiq9RSBILzBpwo429sH0JcH0z3fgjvpGgVMFU1YhFJ/G
Rdx749BD8aaCE7bIRYLe/mizdbywVW81BV3YyQAdt457jEtZavMcorruYV98Ro9Z
JmcHujS/BNmgKpMxhNYe80eiTyEgAapyNHsiQcFfRJS+5Pa0qyyeOdu6EwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFBE++O2cdloTLMPQEpfe46KSjphxMB8GA1UdIwQY
MBaAFDcOVFDRSGeAq6VPBF7EgC8Z8LT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnc1VVVORklaNENycFU4RVhzU0FMeG53dFBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9mMGY3MGMtMDZlNy00MWFjLWEyYjgt
ODU4ZGNlNTdmY2RiLzEvRVQ3NDdaeDJXaE1zdzlBU2w5N2pvcEtPbUhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi9mMGY3MGMtMDZlNy00MWFjLWEyYjgtODU4ZGNlNTdmY2Ri
LzEvTnc1VVVORklaNENycFU4RVhzU0FMeG53dFBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAqDkbE
GAMDBwAqDkbEGAYwDQYJKoZIhvcNAQELBQADggEBAHx3D9mq4c99X+JKgZZZCHxn
QTqRFR6EwArmgc7hwtKdKAp000tNoo8nbqHBKsnCkq+berbiBYHGrSHyLDaFN76C
BTTihpCXePUA6ZGmWv5YjEOL1WvtFaPcM7xPhiEhdbU40FcO9ONZSK6q6c8PH4A4
DbJ4x3mCmOkHVODgMX/WJgzRr2HcZb0botYWrB+kJApMrvfaBE3eCSl6uNQEPxM5
TE/xE2ERLmT1uHK83cBZ5GUbm4HN7LY/GxNt+x8KG1cQO3mwQwIwDShKDJ96XyrD
5nmQJUPIprh2ArdP5284n+w+dteAVkzzhuCrB2ydSA+hoh5HxZmAnw+y9jfvvac=
-----END CERTIFICATE-----
Generated at Fri Sep 27 22:04:04 2024 by rpki-client on console-ams.rpki-client.org