Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1PxtSPSWEPcK7Y6ANdUaahzS--8.roa
File: 1PxtSPSWEPcK7Y6ANdUaahzS--8.roa (raw, json)
Hash identifier: s7sia5fT9uXa0gks9wuE0laDYRqWi0HN/iPkzE0czqg=
Subject key identifier: D4:FC:6D:48:F4:96:10:F7:0A:ED:8E:80:35:D5:1A:6A:1C:D2:FB:EF
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 018FDE0A4B7FE69A544EF78DC615B8B067C7
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1PxtSPSWEPcK7Y6ANdUaahzS--8.roa
Signing time: Mon 03 Jun 2024 12:19:27 +0000
ROA not before: Mon 03 Jun 2024 12:19:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207263
IP address blocks: 193.140.72.0/22 maxlen: 24
193.140.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:de:0a:4b:7f:e6:9a:54:4e:f7:8d:c6:15:b8:b0:67:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jun 3 12:19:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4fc6d48f49610f70aed8e8035d51a6a1cd2fbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:51:91:57:e5:e4:fa:07:b1:54:3b:59:1a:88:
9d:8c:86:5b:72:1b:7e:45:db:11:f4:80:0f:a7:9e:
a8:2d:2b:41:db:c4:b0:52:41:f4:64:9f:e8:53:76:
05:b6:01:1c:4e:99:f3:d6:2a:32:7c:80:f2:f0:2a:
1e:55:34:c6:5e:8d:ba:f0:cb:ff:5b:46:8b:01:2f:
7b:2b:32:6a:51:f9:2b:6a:55:be:14:41:b4:56:84:
e8:80:30:32:12:3f:00:c1:6e:ae:7d:52:43:68:c1:
21:8d:43:aa:4e:b9:d6:43:ae:4a:0d:6f:a0:69:f9:
35:bd:ab:28:f4:52:f8:98:96:0c:a8:13:b5:e1:77:
1d:fb:a7:a9:ed:37:2a:9b:2a:09:39:ca:7a:70:c5:
5a:44:bf:15:f8:b6:ff:43:4b:dc:ef:5a:a1:08:44:
29:22:02:93:5d:66:cf:1a:c6:df:43:88:17:14:ea:
74:c8:83:fc:90:3d:b4:de:e1:65:c0:02:17:ff:55:
71:00:c9:02:ff:62:af:f7:7d:9b:f4:47:06:fb:40:
9b:80:63:2f:2d:fe:cb:84:04:c4:e1:12:9a:c2:b3:
fe:46:18:de:3c:ac:ac:a9:58:85:84:72:e8:ca:72:
02:01:77:e1:d0:18:91:a3:7a:6a:f9:c0:e5:99:1e:
6b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FC:6D:48:F4:96:10:F7:0A:ED:8E:80:35:D5:1A:6A:1C:D2:FB:EF
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1PxtSPSWEPcK7Y6ANdUaahzS--8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.72.0/22
193.140.87.0/24
Signature Algorithm: sha256WithRSAEncryption
26:6e:ba:e7:e5:86:ed:68:a0:dc:2b:f8:fc:89:88:0d:b6:cb:
cc:1c:e1:7d:49:5a:5c:c0:d6:03:40:8c:4f:7e:c0:ca:4e:d4:
4a:a2:97:b8:8d:64:af:c4:96:14:6a:60:91:e0:c2:3f:de:dc:
c9:69:ff:2f:25:60:71:d7:5d:88:f7:c2:95:ec:4e:00:54:1c:
80:6c:10:6f:bc:62:1a:14:25:21:c0:d3:36:7a:aa:64:8a:5b:
08:55:dc:98:6d:05:39:f5:f5:bd:6c:37:07:98:62:89:ed:9f:
98:a9:dd:dc:b4:4e:ef:de:dc:15:08:77:86:04:a3:b1:16:1e:
3e:d8:ce:08:a2:ea:00:83:c7:7e:da:73:fc:06:a4:50:cf:66:
dc:a8:47:6b:12:65:5f:9d:a4:8f:f2:4a:6c:2b:3b:e9:0c:2c:
12:95:bb:ce:43:cc:1f:0d:a4:86:b0:57:2f:7e:88:67:8a:95:
ab:6a:10:ff:e1:e3:48:ee:41:74:5f:bf:14:03:7a:d3:c3:d2:
7a:c8:d2:d2:54:82:59:0a:87:cb:66:cc:cc:e7:f7:7a:54:c5:
09:66:f0:e9:d1:c4:a5:e3:39:1f:4f:d6:75:1b:07:a8:50:83:
7a:6d:9c:00:53:21:bc:c0:4c:4d:7a:bc:74:66:c6:5a:dc:90:
a6:f2:a9:35
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY/eCkt/5ppUTveNxhW4sGfHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3NTE4ZDE4MDkyM2E3ZjNjMDA2NTNlYzEyYmM3MDJiOTVh
YWI5MDcwHhcNMjQwNjAzMTIxOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNGZjNmQ0OGY0OTYxMGY3MGFlZDhlODAzNWQ1MWE2YTFjZDJmYmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFGRV+Xk+gexVDtZGoidjIZbcht+
RdsR9IAPp56oLStB28SwUkH0ZJ/oU3YFtgEcTpnz1ioyfIDy8CoeVTTGXo268Mv/
W0aLAS97KzJqUfkralW+FEG0VoTogDAyEj8AwW6ufVJDaMEhjUOqTrnWQ65KDW+g
afk1vaso9FL4mJYMqBO14Xcd+6ep7TcqmyoJOcp6cMVaRL8V+Lb/Q0vc71qhCEQp
IgKTXWbPGsbfQ4gXFOp0yIP8kD203uFlwAIX/1VxAMkC/2Kv932b9EcG+0CbgGMv
Lf7LhATE4RKawrP+RhjePKysqViFhHLoynICAXfh0BiRo3pq+cDlmR5rAwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNT8bUj0lhD3Cu2OgDXVGmoc0vvvMB8GA1UdIwQY
MBaAFDdRjRgJI6fzwAZT7BK8cCuVqrkHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgt
NTk2NzE5MjBmYjYwLzEvMVB4dFNQU1dFUGNLN1k2QU5kVWFhaHpTLS04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgtNTk2NzE5MjBmYjYw
LzEvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwYxIAwQA
wYxXMA0GCSqGSIb3DQEBCwUAA4IBAQAmbrrn5YbtaKDcK/j8iYgNtsvMHOF9SVpc
wNYDQIxPfsDKTtRKope4jWSvxJYUamCR4MI/3tzJaf8vJWBx112I98KV7E4AVByA
bBBvvGIaFCUhwNM2eqpkilsIVdyYbQU59fW9bDcHmGKJ7Z+Yqd3ctE7v3twVCHeG
BKOxFh4+2M4IouoAg8d+2nP8BqRQz2bcqEdrEmVfnaSP8kpsKzvpDCwSlbvOQ8wf
DaSGsFcvfohnipWrahD/4eNI7kF0X78UA3rTw9J6yNLSVIJZCofLZszM5/d6VMUJ
ZvDp0cSl4zkfT9Z1GweoUIN6bZwAUyG8wExNerx0ZsZa3JCm8qk1
-----END CERTIFICATE-----
Generated at Mon Jun 24 12:14:28 2024 by rpki-client on console-ams.rpki-client.org