Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/1T3yVq56VqUsCRNgAc26gHjStFE.roa
File: 1T3yVq56VqUsCRNgAc26gHjStFE.roa (raw, json)
Hash identifier: PVzW9sgsFXJJvdI8hRhBdC+MSpLl+w3WD1Q650hjph8=
Subject key identifier: D5:3D:F2:56:AE:7A:56:A5:2C:09:13:60:01:CD:BA:80:78:D2:B4:51
Certificate issuer: /CN=667e799364d414f66df363137c79abf61239eb4d
Certificate serial: 018CC5DCC2FA1915874EF36CF22CAD293A6D
Authority key identifier: 66:7E:79:93:64:D4:14:F6:6D:F3:63:13:7C:79:AB:F6:12:39:EB:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zn55k2TUFPZt82MTfHmr9hI5600.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/1T3yVq56VqUsCRNgAc26gHjStFE.roa
Signing time: Mon 01 Jan 2024 16:30:28 +0000
ROA not before: Mon 01 Jan 2024 16:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203854
IP address blocks: 185.122.4.0/23 maxlen: 23
185.122.4.0/22 maxlen: 22
185.122.6.0/23 maxlen: 23
2a05:7e40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/Zn55k2TUFPZt82MTfHmr9hI5600.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/Zn55k2TUFPZt82MTfHmr9hI5600.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zn55k2TUFPZt82MTfHmr9hI5600.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:c2:fa:19:15:87:4e:f3:6c:f2:2c:ad:29:3a:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=667e799364d414f66df363137c79abf61239eb4d
Validity
Not Before: Jan 1 16:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d53df256ae7a56a52c09136001cdba8078d2b451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c9:ad:cf:17:b9:6e:3c:5b:17:5c:e6:a9:9b:
b1:f4:eb:27:76:7b:9c:13:c1:bc:38:4d:32:48:d0:
f0:56:d4:f5:a0:9a:47:a4:08:99:8e:4e:31:89:a2:
fe:10:b7:58:e7:f4:69:31:09:07:cf:90:82:6c:33:
27:e6:8e:75:3e:97:3d:fc:eb:b1:4d:27:a2:61:a3:
02:e0:e2:c1:8d:3a:c6:cb:da:ad:91:df:d2:8e:b6:
30:6a:f5:a6:55:99:08:59:8a:98:d5:a6:2e:4a:4a:
77:39:52:aa:64:cd:8a:56:0b:37:8a:b5:36:fb:bb:
85:c4:55:b1:6d:ea:2e:45:e7:91:93:4a:8c:82:12:
53:d2:28:c2:f2:93:4c:88:65:93:76:35:77:d1:d7:
4d:1b:eb:dd:8b:e7:36:be:54:f8:3f:7f:cf:fa:6b:
f2:2b:5d:03:00:77:86:4e:3a:fa:18:97:09:14:dc:
2c:38:19:1f:78:38:9b:e0:98:e2:12:ef:c6:ed:ce:
cf:a5:16:e9:ed:28:58:f3:74:1a:fc:a2:9d:94:29:
17:39:e9:8a:6f:90:7a:61:52:b4:f4:5d:32:b4:51:
88:c3:35:96:1f:3e:6c:4f:cd:d1:6f:f4:ce:20:22:
fb:c1:c2:b3:7a:a9:1c:07:05:da:72:2f:28:73:de:
78:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3D:F2:56:AE:7A:56:A5:2C:09:13:60:01:CD:BA:80:78:D2:B4:51
X509v3 Authority Key Identifier:
keyid:66:7E:79:93:64:D4:14:F6:6D:F3:63:13:7C:79:AB:F6:12:39:EB:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zn55k2TUFPZt82MTfHmr9hI5600.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/1T3yVq56VqUsCRNgAc26gHjStFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a763fd-0b05-428b-b723-20c23868b91f/1/Zn55k2TUFPZt82MTfHmr9hI5600.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.4.0/22
IPv6:
2a05:7e40::/29
Signature Algorithm: sha256WithRSAEncryption
10:6d:35:41:0a:df:0d:1c:8b:ab:a4:ff:15:a9:04:c9:2e:ff:
5a:97:17:fb:b4:36:8b:80:e0:25:56:cc:29:83:21:4e:24:c6:
a6:8e:17:62:47:86:10:23:40:38:d4:17:96:a2:cf:0f:cf:ca:
b7:96:8c:45:78:a4:63:b4:d7:5e:78:1f:c3:de:30:27:58:ad:
71:a4:d7:e8:07:e5:e6:c8:7f:f2:93:e1:8d:a1:e8:3b:10:fc:
1e:0c:7a:ae:7e:87:39:37:bb:dc:b5:8b:14:ff:c0:3d:6c:a0:
69:57:f5:41:23:1b:8c:67:67:93:bf:4a:04:bf:50:75:19:d1:
8c:0d:ff:c2:50:f9:e9:6c:06:5e:9d:51:ba:13:b9:bb:0d:1d:
7d:60:64:2d:d6:e3:24:6a:2d:ae:3a:4a:7b:a0:52:f8:17:c0:
16:5a:14:56:dd:58:b2:18:90:fd:a9:2e:81:a3:39:50:32:f7:
85:f1:4b:bd:02:8b:98:43:d6:64:8f:cc:03:88:16:ae:19:be:
25:c2:57:41:1f:82:6e:7f:80:ae:62:9b:c0:82:f9:b6:81:e5:
c4:16:1f:32:d0:42:ec:d3:61:a5:ee:79:27:6e:6d:8c:a7:b4:
21:7a:69:8a:91:6b:26:45:2e:4d:18:ad:06:3f:14:ba:6c:e7:
b6:a8:7c:a5
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzF3ML6GRWHTvNs8iytKTptMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2N2U3OTkzNjRkNDE0ZjY2ZGYzNjMxMzdjNzlhYmY2MTIz
OWViNGQwHhcNMjQwMTAxMTYzMDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTNkZjI1NmFlN2E1NmE1MmMwOTEzNjAwMWNkYmE4MDc4ZDJiNDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsmtzxe5bjxbF1zmqZux9Osndnuc
E8G8OE0ySNDwVtT1oJpHpAiZjk4xiaL+ELdY5/RpMQkHz5CCbDMn5o51Ppc9/Oux
TSeiYaMC4OLBjTrGy9qtkd/SjrYwavWmVZkIWYqY1aYuSkp3OVKqZM2KVgs3irU2
+7uFxFWxbeouReeRk0qMghJT0ijC8pNMiGWTdjV30ddNG+vdi+c2vlT4P3/P+mvy
K10DAHeGTjr6GJcJFNwsOBkfeDib4JjiEu/G7c7PpRbp7ShY83Qa/KKdlCkXOemK
b5B6YVK09F0ytFGIwzWWHz5sT83Rb/TOICL7wcKzeqkcBwXaci8oc954zQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNU98lauelalLAkTYAHNuoB40rRRMB8GA1UdIwQY
MBaAFGZ+eZNk1BT2bfNjE3x5q/YSOetNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm41NWsyVFVGUFp0ODJNVGZIbXI5aEk1NjAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hNzYzZmQtMGIwNS00MjhiLWI3MjMt
MjBjMjM4NjhiOTFmLzEvMVQzeVZxNTZWcVVzQ1JOZ0FjMjZnSGpTdEZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9hNzYzZmQtMGIwNS00MjhiLWI3MjMtMjBjMjM4NjhiOTFm
LzEvWm41NWsyVFVGUFp0ODJNVGZIbXI5aEk1NjAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXoEMA0E
AgACMAcDBQMqBX5AMA0GCSqGSIb3DQEBCwUAA4IBAQAQbTVBCt8NHIurpP8VqQTJ
Lv9alxf7tDaLgOAlVswpgyFOJMamjhdiR4YQI0A41BeWos8Pz8q3loxFeKRjtNde
eB/D3jAnWK1xpNfoB+XmyH/yk+GNoeg7EPweDHqufoc5N7vctYsU/8A9bKBpV/VB
IxuMZ2eTv0oEv1B1GdGMDf/CUPnpbAZenVG6E7m7DR19YGQt1uMkai2uOkp7oFL4
F8AWWhRW3ViyGJD9qS6BozlQMveF8Uu9AouYQ9Zkj8wDiBauGb4lwldBH4Juf4Cu
YpvAgvm2geXEFh8y0ELs02Gl7nknbm2Mp7QhemmKkWsmRS5NGK0GPxS6bOe2qHyl
-----END CERTIFICATE-----
Generated at Sun Jun 23 02:35:41 2024 by rpki-client on console-ams.rpki-client.org