Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/JOoyPjSAiSrgrsf_oc3vT88uonw.roa
File: JOoyPjSAiSrgrsf_oc3vT88uonw.roa (raw, json)
Hash identifier: 5E8fPPsPG/sBPmhkIlgOL0v5pUN4c0uy8prTQnM92eI=
Subject key identifier: 24:EA:32:3E:34:80:89:2A:E0:AE:C7:FF:A1:CD:EF:4F:CF:2E:A2:7C
Certificate issuer: /CN=e122e2b58233a193d1f72778565d6c98d76163a7
Certificate serial: 018CC49325B59C1185CC4F6385947877902A
Authority key identifier: E1:22:E2:B5:82:33:A1:93:D1:F7:27:78:56:5D:6C:98:D7:61:63:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SLitYIzoZPR9yd4Vl1smNdhY6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/JOoyPjSAiSrgrsf_oc3vT88uonw.roa
Signing time: Mon 01 Jan 2024 10:30:26 +0000
ROA not before: Mon 01 Jan 2024 10:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211757
IP address blocks: 31.43.172.0/24 maxlen: 24
31.43.172.0/23 maxlen: 24
31.43.173.0/24 maxlen: 24
185.242.186.0/24 maxlen: 24
2a10:9840:1::/48 maxlen: 48
2a10:9840::/29 maxlen: 48
2a10:9840:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/4SLitYIzoZPR9yd4Vl1smNdhY6c.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/4SLitYIzoZPR9yd4Vl1smNdhY6c.mft
rsync://rpki.ripe.net/repository/DEFAULT/4SLitYIzoZPR9yd4Vl1smNdhY6c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:25:b5:9c:11:85:cc:4f:63:85:94:78:77:90:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e122e2b58233a193d1f72778565d6c98d76163a7
Validity
Not Before: Jan 1 10:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24ea323e3480892ae0aec7ffa1cdef4fcf2ea27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:11:a3:cb:17:bd:f6:16:13:9f:b8:75:76:90:
94:0d:2a:e6:b6:ff:bb:d7:81:63:81:5b:1d:3f:9f:
d8:65:db:2e:df:83:25:ff:3d:c3:6e:68:11:fc:44:
ad:0b:ca:04:7e:39:d6:84:c1:ea:77:b5:3d:6a:cc:
04:56:65:66:40:28:33:7c:9a:86:85:bf:da:a2:65:
29:45:1b:7e:1c:98:95:67:d6:77:b3:53:6d:d3:99:
5b:59:0e:96:c1:33:32:ae:99:15:dd:d7:f3:b0:72:
ed:a7:51:eb:52:b9:fd:7c:0a:65:ec:21:07:41:28:
52:b0:01:00:a1:7e:39:b7:9f:0b:6a:0e:e1:b0:dd:
be:10:19:54:e2:81:ec:62:bc:6f:df:54:fa:e8:ba:
94:59:c9:08:11:29:dd:69:cf:37:cd:f5:64:ab:b9:
fe:45:0c:23:12:87:2d:3d:33:00:c7:ec:b3:e1:58:
a7:e5:f5:72:93:a1:31:6e:29:e9:33:3b:90:5b:75:
8b:28:4a:63:07:1d:54:49:23:d7:70:be:5b:e0:f6:
44:69:29:09:34:c1:46:1d:2c:2d:70:37:fa:41:60:
20:e1:1a:1b:3a:69:67:29:01:6b:26:a2:22:43:14:
7e:34:42:18:9b:ab:bc:7c:d3:8c:e1:c7:cd:fd:36:
92:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EA:32:3E:34:80:89:2A:E0:AE:C7:FF:A1:CD:EF:4F:CF:2E:A2:7C
X509v3 Authority Key Identifier:
keyid:E1:22:E2:B5:82:33:A1:93:D1:F7:27:78:56:5D:6C:98:D7:61:63:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SLitYIzoZPR9yd4Vl1smNdhY6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/JOoyPjSAiSrgrsf_oc3vT88uonw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/4SLitYIzoZPR9yd4Vl1smNdhY6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.172.0/23
185.242.186.0/24
IPv6:
2a10:9840::/29
Signature Algorithm: sha256WithRSAEncryption
6f:ca:92:38:8e:80:da:5d:a1:97:d5:8e:79:d9:08:57:7d:ac:
17:fa:8b:20:a3:e2:d6:f6:d2:b7:bc:3f:a2:3b:19:f6:2f:59:
74:1c:cc:5c:70:6b:4e:c2:40:84:69:ef:87:0c:69:70:b2:36:
95:41:f6:5b:5d:46:92:61:c0:d0:20:30:fe:b8:1f:75:09:b4:
fb:57:74:dc:42:f6:32:78:56:44:4b:c0:c6:d9:d7:2a:b2:83:
09:04:4e:73:32:75:83:b6:cf:70:02:e6:07:92:47:5d:dd:8b:
5a:47:40:56:39:54:50:50:e8:6a:12:57:f4:b7:ff:1b:f2:68:
82:71:16:97:23:dc:93:0a:0b:1b:cd:68:75:3b:db:fa:e4:a2:
89:d1:6b:03:9b:b7:6c:db:16:51:1d:e4:a5:2f:a7:f9:80:af:
98:c7:ec:e4:d6:ac:b4:2d:ba:90:d4:7e:e9:b4:14:5a:b9:ae:
9b:56:79:cb:0d:e8:e7:74:a8:25:78:cb:78:f6:a7:85:16:3b:
5d:d0:fb:17:8d:79:45:17:c6:78:13:9a:0c:c6:28:ea:39:e4:
cd:0c:05:61:ef:1b:ff:0a:61:a8:21:69:67:d7:47:33:eb:f7:
82:70:5f:63:01:8d:e7:8a:b1:b7:d8:3c:7a:c2:79:a0:35:b4:
fb:6b:0a:fe
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYzEkyW1nBGFzE9jhZR4d5AqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMjJlMmI1ODIzM2ExOTNkMWY3Mjc3ODU2NWQ2Yzk4ZDc2
MTYzYTcwHhcNMjQwMTAxMTAzMDI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGVhMzIzZTM0ODA4OTJhZTBhZWM3ZmZhMWNkZWY0ZmNmMmVhMjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhxGjyxe99hYTn7h1dpCUDSrmtv+7
14FjgVsdP5/YZdsu34Ml/z3DbmgR/EStC8oEfjnWhMHqd7U9aswEVmVmQCgzfJqG
hb/aomUpRRt+HJiVZ9Z3s1Nt05lbWQ6WwTMyrpkV3dfzsHLtp1HrUrn9fApl7CEH
QShSsAEAoX45t58Lag7hsN2+EBlU4oHsYrxv31T66LqUWckIESndac83zfVkq7n+
RQwjEoctPTMAx+yz4Vin5fVyk6ExbinpMzuQW3WLKEpjBx1USSPXcL5b4PZEaSkJ
NMFGHSwtcDf6QWAg4RobOmlnKQFrJqIiQxR+NEIYm6u8fNOM4cfN/TaSwwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFCTqMj40gIkq4K7H/6HN70/PLqJ8MB8GA1UdIwQY
MBaAFOEi4rWCM6GT0fcneFZdbJjXYWOnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFNMaXRZSXpvWlBSOXlkNFZsMXNtTmRoWTZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9kODE1ZmQtY2ZhYi00YTRhLTk1OTUt
NDE2NmI3NWIwOGFmLzEvSk9veVBqU0FpU3JncnNmX29jM3ZUODh1b253LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9kODE1ZmQtY2ZhYi00YTRhLTk1OTUtNDE2NmI3NWIwOGFm
LzEvNFNMaXRZSXpvWlBSOXlkNFZsMXNtTmRoWTZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBHyusAwQA
ufK6MA0EAgACMAcDBQMqEJhAMA0GCSqGSIb3DQEBCwUAA4IBAQBvypI4joDaXaGX
1Y552QhXfawX+osgo+LW9tK3vD+iOxn2L1l0HMxccGtOwkCEae+HDGlwsjaVQfZb
XUaSYcDQIDD+uB91CbT7V3TcQvYyeFZES8DG2dcqsoMJBE5zMnWDts9wAuYHkkdd
3YtaR0BWOVRQUOhqElf0t/8b8miCcRaXI9yTCgsbzWh1O9v65KKJ0WsDm7ds2xZR
HeSlL6f5gK+Yx+zk1qy0LbqQ1H7ptBRaua6bVnnLDejndKgleMt49qeFFjtd0PsX
jXlFF8Z4E5oMxijqOeTNDAVh7xv/CmGoIWln10cz6/eCcF9jAY3nirG32Dx6wnmg
NbT7awr+
-----END CERTIFICATE-----
Generated at Sun Jun 23 19:07:04 2024 by rpki-client on console-fra.rpki-client.org