Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/1-Q81m3ROessgYBe4r6tBTV3KMPs.roa
File: 1-Q81m3ROessgYBe4r6tBTV3KMPs.roa (raw, json)
Hash identifier: 07MgKQiU4eON7KPircbD2MtRHSmJU0fXvA9Uay+Ei9U=
Subject key identifier: F9:0F:35:9B:74:4E:7A:CB:20:60:17:B8:AF:AB:41:4D:5D:CA:30:FB
Certificate issuer: /CN=19ee619ef96a3afd02fc2d5d003a947e4d2d590a
Certificate serial: 019016796BBD8B24B7D89145321494262521
Authority key identifier: 19:EE:61:9E:F9:6A:3A:FD:02:FC:2D:5D:00:3A:94:7E:4D:2D:59:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ge5hnvlqOv0C_C1dADqUfk0tWQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/1-Q81m3ROessgYBe4r6tBTV3KMPs.roa
Signing time: Fri 14 Jun 2024 11:19:34 +0000
ROA not before: Fri 14 Jun 2024 11:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216258
IP address blocks: 92.42.98.0/24 maxlen: 26
2a13:2140::/32 maxlen: 48
2a13:2141:1::/48 maxlen: 48
2a13:2141:2::/48 maxlen: 48
2a13:2142:1::/48 maxlen: 48
2a13:2142:2::/48 maxlen: 48
2a13:2143:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/Ge5hnvlqOv0C_C1dADqUfk0tWQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/Ge5hnvlqOv0C_C1dADqUfk0tWQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ge5hnvlqOv0C_C1dADqUfk0tWQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:16:79:6b:bd:8b:24:b7:d8:91:45:32:14:94:26:25:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ee619ef96a3afd02fc2d5d003a947e4d2d590a
Validity
Not Before: Jun 14 11:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f90f359b744e7acb206017b8afab414d5dca30fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:44:16:d5:6a:46:78:4a:3d:83:9a:cb:b0:9d:
39:89:8c:28:17:42:c2:93:5b:d9:2f:fc:b3:0a:47:
94:03:be:dc:b7:10:27:75:6a:57:94:59:19:50:4e:
24:94:77:99:33:65:cd:d7:bf:0a:c6:c7:e2:1e:5b:
bc:9e:dc:8f:f5:75:1e:ad:47:e7:67:2f:e5:01:e2:
d0:74:da:27:09:ac:eb:3b:83:99:d6:25:89:ca:c2:
97:ec:40:47:d5:64:fd:92:98:af:a7:e6:17:56:6b:
98:4e:1a:06:3e:7c:bf:56:58:55:ae:1e:5a:e6:f6:
1a:3f:0a:bc:11:8e:e5:a7:8e:d9:17:35:bd:74:82:
f3:ff:cc:15:54:58:fd:fa:15:fd:44:39:f6:2e:c1:
9f:e9:cd:3d:cf:72:e0:d9:e6:22:46:f7:35:b2:d4:
c0:a1:4b:8a:de:8e:51:39:d5:b6:a4:f7:1c:3a:44:
7d:23:d0:d1:71:30:d5:8e:bb:da:67:3b:04:70:9c:
20:0f:bb:a0:a6:1b:09:eb:3a:73:06:27:7d:97:eb:
6d:b6:18:02:cd:ce:85:0c:c7:54:9a:c8:81:5e:6d:
52:08:0a:dd:47:25:97:71:99:20:1d:9b:54:21:c3:
23:fb:d4:6d:d2:4d:2f:ef:9f:5e:ac:8d:fa:ce:da:
12:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:0F:35:9B:74:4E:7A:CB:20:60:17:B8:AF:AB:41:4D:5D:CA:30:FB
X509v3 Authority Key Identifier:
keyid:19:EE:61:9E:F9:6A:3A:FD:02:FC:2D:5D:00:3A:94:7E:4D:2D:59:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ge5hnvlqOv0C_C1dADqUfk0tWQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/1-Q81m3ROessgYBe4r6tBTV3KMPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/9ed6d4-7a0d-42b4-96e1-eb277a20f27f/1/Ge5hnvlqOv0C_C1dADqUfk0tWQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.42.98.0/24
IPv6:
2a13:2140::/32
2a13:2141:1::-2a13:2141:2:ffff:ffff:ffff:ffff:ffff
2a13:2142:1::-2a13:2142:2:ffff:ffff:ffff:ffff:ffff
2a13:2143:1::/48
Signature Algorithm: sha256WithRSAEncryption
39:d8:20:5f:12:b4:14:96:db:f0:11:23:ae:01:7b:86:39:cd:
25:af:e7:5e:23:39:0b:7d:a6:2b:46:04:a3:32:6f:1c:cc:d1:
36:a4:82:a7:0b:26:a1:f3:82:55:cc:5a:02:55:9c:46:08:6c:
e8:42:2c:0a:b7:06:ba:a8:03:67:73:d8:63:cb:a0:ac:e5:bd:
17:12:5d:a2:a7:f6:11:c4:cb:49:ef:e2:a6:e9:6d:40:89:22:
8e:4e:d7:cf:c4:2d:e8:c4:b0:f5:54:1f:ea:16:26:e2:7b:a5:
16:68:bc:9f:c4:7e:1f:6b:d7:e1:e8:bd:42:9b:90:d7:af:ce:
02:04:2f:4d:0c:6f:14:3a:4a:d9:15:b6:3c:62:51:75:23:0a:
50:07:d7:48:f0:26:ea:f9:6a:1c:ab:f3:62:d3:02:50:ee:f9:
73:07:34:d7:dd:34:b8:c3:bf:6c:5e:af:49:79:06:06:9d:08:
cd:0e:5b:64:6d:f1:ad:95:90:24:41:35:4e:15:ce:af:09:5f:
2d:f7:f7:6e:8b:18:22:52:ec:85:2a:64:c2:b0:77:a1:ea:a2:
dd:58:0f:58:d5:c8:5b:d5:af:17:14:38:12:86:99:08:a3:c2:
7b:33:35:5e:f3:dd:52:10:10:ab:2c:30:0d:93:bd:f0:9b:5e:
bf:c1:e0:b9
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgISAZAWeWu9iyS32JFFMhSUJiUhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZWU2MTllZjk2YTNhZmQwMmZjMmQ1ZDAwM2E5NDdlNGQy
ZDU5MGEwHhcNMjQwNjE0MTExOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTBmMzU5Yjc0NGU3YWNiMjA2MDE3YjhhZmFiNDE0ZDVkY2EzMGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkQW1WpGeEo9g5rLsJ05iYwoF0LC
k1vZL/yzCkeUA77ctxAndWpXlFkZUE4klHeZM2XN178KxsfiHlu8ntyP9XUerUfn
Zy/lAeLQdNonCazrO4OZ1iWJysKX7EBH1WT9kpivp+YXVmuYThoGPny/VlhVrh5a
5vYaPwq8EY7lp47ZFzW9dILz/8wVVFj9+hX9RDn2LsGf6c09z3Lg2eYiRvc1stTA
oUuK3o5ROdW2pPccOkR9I9DRcTDVjrvaZzsEcJwgD7ugphsJ6zpzBid9l+ttthgC
zc6FDMdUmsiBXm1SCArdRyWXcZkgHZtUIcMj+9Rt0k0v759erI36ztoSPwIDAQAB
o4ICSjCCAkYwHQYDVR0OBBYEFPkPNZt0TnrLIGAXuK+rQU1dyjD7MB8GA1UdIwQY
MBaAFBnuYZ75ajr9AvwtXQA6lH5NLVkKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2U1aG52bHFPdjBDX0MxZEFEcVVmazB0V1FvLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC85ZWQ2ZDQtN2EwZC00MmI0LTk2ZTEt
ZWIyNzdhMjBmMjdmLzEvMS1RODFtM1JPZXNzZ1lCZTRyNnRCVFYzS01Qcy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZTAvOWVkNmQ0LTdhMGQtNDJiNC05NmUxLWViMjc3YTIwZjI3
Zi8xL0dlNWhudmxxT3YwQ19DMWRBRHFVZmswdFdRby5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBfBggrBgEFBQcBBwEB/wRQME4wDAQCAAEwBgMEAFwqYjA+
BAIAAjA4AwUAKhMhQDASAwcAKhMhQQABAwcAKhMhQQACMBIDBwAqEyFCAAEDBwAq
EyFCAAIDBwAqEyFDAAEwDQYJKoZIhvcNAQELBQADggEBADnYIF8StBSW2/ARI64B
e4Y5zSWv514jOQt9pitGBKMybxzM0TakgqcLJqHzglXMWgJVnEYIbOhCLAq3Brqo
A2dz2GPLoKzlvRcSXaKn9hHEy0nv4qbpbUCJIo5O18/ELejEsPVUH+oWJuJ7pRZo
vJ/Efh9r1+HovUKbkNevzgIEL00MbxQ6StkVtjxiUXUjClAH10jwJur5ahyr82LT
AlDu+XMHNNfdNLjDv2xer0l5BgadCM0OW2Rt8a2VkCRBNU4Vzq8JXy33926LGCJS
7IUqZMKwd6Hqot1YD1jVyFvVrxcUOBKGmQijwnszNV7z3VIQEKssMA2TvfCbXr/B
4Lk=
-----END CERTIFICATE-----
Generated at Sun Jun 23 15:04:54 2024 by rpki-client on console-ams.rpki-client.org