Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/07fed6-00b3-4cea-a74e-beeebedffc95/1/rtIDQ4L8gG82f_6pPIyn7hau2So.roa
File: rtIDQ4L8gG82f_6pPIyn7hau2So.roa (raw, json)
Hash identifier: bMoFU5iIUvUT3r47v2kI3EfC/h2aiqvIG5Iyv8Xvryw=
Subject key identifier: AE:D2:03:43:82:FC:80:6F:36:7F:FE:A9:3C:8C:A7:EE:16:AE:D9:2A
Certificate issuer: /CN=c50c97eb9baf5428f50f45d330357678b73e061c
Certificate serial: 018CC801E04678E0CEBB56F9ECD3BC1F7B62
Authority key identifier: C5:0C:97:EB:9B:AF:54:28:F5:0F:45:D3:30:35:76:78:B7:3E:06:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xQyX65uvVCj1D0XTMDV2eLc-Bhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/07fed6-00b3-4cea-a74e-beeebedffc95/1/rtIDQ4L8gG82f_6pPIyn7hau2So.roa
Signing time: Tue 02 Jan 2024 02:30:15 +0000
ROA not before: Tue 02 Jan 2024 02:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15702
IP address blocks: 185.190.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/07fed6-00b3-4cea-a74e-beeebedffc95/1/xQyX65uvVCj1D0XTMDV2eLc-Bhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/07fed6-00b3-4cea-a74e-beeebedffc95/1/xQyX65uvVCj1D0XTMDV2eLc-Bhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/xQyX65uvVCj1D0XTMDV2eLc-Bhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:e0:46:78:e0:ce:bb:56:f9:ec:d3:bc:1f:7b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c50c97eb9baf5428f50f45d330357678b73e061c
Validity
Not Before: Jan 2 02:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aed2034382fc806f367ffea93c8ca7ee16aed92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:34:75:31:ee:a3:0e:14:64:2d:c6:d5:c6:13:
34:e3:44:db:4a:5f:c8:30:33:16:b1:a6:05:d9:cd:
e9:37:d5:e5:f8:01:6f:f3:8f:1e:cf:7f:19:c5:e0:
2a:f8:c0:8c:9d:3c:30:ce:ec:87:0e:e7:94:e9:db:
1a:8d:bf:fb:8c:84:94:26:07:59:09:3b:d4:7a:01:
cf:30:5a:61:56:41:ec:16:03:97:a6:66:66:07:10:
02:75:50:46:2f:4f:d8:46:ac:ba:fd:74:ea:8c:76:
a5:52:8d:b6:e0:14:3a:e4:4e:f9:38:72:ff:5a:1b:
7a:75:fa:47:0f:92:6e:50:24:0c:af:89:7a:50:3c:
d7:81:81:84:36:1f:b1:c7:09:5c:b9:50:58:47:e4:
90:48:55:20:f6:ef:1c:22:b1:96:9a:aa:52:a4:3d:
da:80:76:6b:66:16:ad:b5:da:aa:be:0c:b1:ec:0a:
fc:96:23:c6:6f:aa:e8:e3:40:1f:a6:7d:d1:e0:0a:
65:91:27:bf:4c:1c:4e:14:ce:2e:05:e7:cb:7b:80:
17:c9:97:9f:5b:26:61:01:39:c7:a5:c9:de:8e:fd:
0c:32:18:18:55:14:93:a7:98:55:5f:9e:73:67:fa:
17:1e:a5:4d:d1:7d:b0:3d:d6:c7:2f:16:f8:9b:f0:
bf:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D2:03:43:82:FC:80:6F:36:7F:FE:A9:3C:8C:A7:EE:16:AE:D9:2A
X509v3 Authority Key Identifier:
keyid:C5:0C:97:EB:9B:AF:54:28:F5:0F:45:D3:30:35:76:78:B7:3E:06:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xQyX65uvVCj1D0XTMDV2eLc-Bhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/07fed6-00b3-4cea-a74e-beeebedffc95/1/rtIDQ4L8gG82f_6pPIyn7hau2So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/07fed6-00b3-4cea-a74e-beeebedffc95/1/xQyX65uvVCj1D0XTMDV2eLc-Bhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.51.0/24
Signature Algorithm: sha256WithRSAEncryption
21:b0:bd:b4:0c:e4:2b:06:b9:63:22:af:04:d5:d4:40:09:2d:
d8:cd:6c:21:3b:eb:1e:48:dc:f6:45:01:d4:0c:2e:59:7b:87:
f1:c4:de:d3:10:37:5c:e6:0c:2c:65:bb:88:9f:70:60:00:47:
63:79:b3:13:e6:d8:27:2f:43:dd:8c:88:71:26:44:34:70:f1:
d6:14:e4:38:c6:54:e0:cf:c8:64:1b:69:3b:af:35:6c:ec:4f:
35:6b:7c:1d:cf:14:0d:4d:65:30:b2:b2:fa:ec:b0:43:c7:a7:
75:f0:6c:2a:18:31:b1:55:04:6b:8a:5a:14:c4:ef:a7:09:6b:
85:49:57:d2:26:65:fe:77:72:94:3b:75:1b:bc:82:22:b7:99:
53:0b:89:1f:83:78:11:ce:cc:a4:68:31:28:e2:46:cf:2b:35:
3d:79:a2:20:6c:3c:1d:42:0f:4b:bc:80:04:4a:b3:18:c8:35:
7a:b2:4e:38:d0:8b:a8:b7:10:bb:30:48:45:47:1e:0a:c6:57:
f4:cf:6e:6a:05:ef:d4:f3:f5:27:b9:18:fc:df:ee:8f:ee:51:
b8:c0:ff:99:90:36:8a:68:fe:48:81:4a:80:f3:a1:ab:da:ae:
ec:7a:ff:2a:72:d0:c3:5d:80:1e:e7:06:78:06:04:7a:74:67:
dd:77:19:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAeBGeODOu1b57NO8H3tiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1MGM5N2ViOWJhZjU0MjhmNTBmNDVkMzMwMzU3Njc4Yjcz
ZTA2MWMwHhcNMjQwMTAyMDIzMDE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWQyMDM0MzgyZmM4MDZmMzY3ZmZlYTkzYzhjYTdlZTE2YWVkOTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jR1Me6jDhRkLcbVxhM040TbSl/I
MDMWsaYF2c3pN9Xl+AFv848ez38ZxeAq+MCMnTwwzuyHDueU6dsajb/7jISUJgdZ
CTvUegHPMFphVkHsFgOXpmZmBxACdVBGL0/YRqy6/XTqjHalUo224BQ65E75OHL/
Wht6dfpHD5JuUCQMr4l6UDzXgYGENh+xxwlcuVBYR+SQSFUg9u8cIrGWmqpSpD3a
gHZrZhattdqqvgyx7Ar8liPGb6ro40Afpn3R4AplkSe/TBxOFM4uBefLe4AXyZef
WyZhATnHpcnejv0MMhgYVRSTp5hVX55zZ/oXHqVN0X2wPdbHLxb4m/C/nQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK7SA0OC/IBvNn/+qTyMp+4WrtkqMB8GA1UdIwQY
MBaAFMUMl+ubr1Qo9Q9F0zA1dni3PgYcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFF5WDY1dXZWQ2oxRDBYVE1EVjJlTGMtQmh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8wN2ZlZDYtMDBiMy00Y2VhLWE3NGUt
YmVlZWJlZGZmYzk1LzEvcnRJRFE0TDhnRzgyZl82cFBJeW43aGF1MlNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi8wN2ZlZDYtMDBiMy00Y2VhLWE3NGUtYmVlZWJlZGZmYzk1
LzEveFF5WDY1dXZWQ2oxRDBYVE1EVjJlTGMtQmh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAub4zMA0G
CSqGSIb3DQEBCwUAA4IBAQAhsL20DOQrBrljIq8E1dRACS3YzWwhO+seSNz2RQHU
DC5Ze4fxxN7TEDdc5gwsZbuIn3BgAEdjebMT5tgnL0PdjIhxJkQ0cPHWFOQ4xlTg
z8hkG2k7rzVs7E81a3wdzxQNTWUwsrL67LBDx6d18GwqGDGxVQRriloUxO+nCWuF
SVfSJmX+d3KUO3UbvIIit5lTC4kfg3gRzsykaDEo4kbPKzU9eaIgbDwdQg9LvIAE
SrMYyDV6sk440IuotxC7MEhFRx4Kxlf0z25qBe/U8/UnuRj83+6P7lG4wP+ZkDaK
aP5IgUqA86Gr2q7sev8qctDDXYAe5wZ4BgR6dGfddxnL
-----END CERTIFICATE-----
Generated at Sat Sep 28 17:36:31 2024 by rpki-client on console-ams.rpki-client.org