Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/1-QU2VrVC9HRC1m1GR7PEaW6D6Iw.roa
File: 1-QU2VrVC9HRC1m1GR7PEaW6D6Iw.roa (raw, json)
Hash identifier: eJFE+5LF/0JmSA23ZTh8lWUvNZI/6KZMzeSRjTi3ytk=
Subject key identifier: F9:05:36:56:B5:42:F4:74:42:D6:6D:46:47:B3:C4:69:6E:83:E8:8C
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 018F1630925BBFE927888BE3AA39D405DDC8
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/1-QU2VrVC9HRC1m1GR7PEaW6D6Iw.roa
Signing time: Thu 25 Apr 2024 16:57:12 +0000
ROA not before: Thu 25 Apr 2024 16:57:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216084
IP address blocks: 45.85.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:16:30:92:5b:bf:e9:27:88:8b:e3:aa:39:d4:05:dd:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Apr 25 16:57:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9053656b542f47442d66d4647b3c4696e83e88c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:64:29:c6:29:1f:93:e7:02:53:11:c1:ab:68:
ef:de:74:62:46:85:ec:25:fd:6c:ee:3f:5c:b3:72:
90:1e:2e:85:05:c9:db:13:60:e9:5b:13:39:58:07:
d2:68:64:7c:56:5b:ba:6f:7f:73:3d:53:62:91:47:
39:7b:e8:a0:e2:fe:c9:23:17:3f:59:60:42:69:fd:
e4:7c:f9:98:6e:0b:3b:25:fa:80:15:f0:97:a1:b8:
3b:08:70:1b:67:8a:78:71:64:09:24:32:53:90:73:
3d:62:2a:62:a4:05:b0:2f:c2:c6:c2:1a:55:ee:98:
8f:8d:f3:d8:65:fd:d1:e6:01:98:18:44:0d:c3:86:
af:80:cf:2a:b4:ca:c1:b6:18:94:e5:f5:9d:d8:ca:
c9:f1:f6:84:fb:d7:cf:9d:1e:4d:8a:4b:6a:96:8a:
7e:ba:cf:20:e1:89:39:39:bf:1c:b6:1a:7c:14:d9:
b3:b7:b0:d9:ea:90:2d:bd:be:de:9f:e2:e6:c4:ef:
c5:33:5c:dd:4b:d5:6f:00:b5:7a:63:ba:8a:1f:af:
3d:e7:b5:e0:88:73:e3:1e:32:d9:bb:d7:7d:01:98:
03:25:6e:5c:ce:73:37:20:a1:3b:4c:46:14:d1:8a:
01:19:d1:ad:59:a9:05:b1:3c:12:6a:f8:3b:16:e8:
b8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:05:36:56:B5:42:F4:74:42:D6:6D:46:47:B3:C4:69:6E:83:E8:8C
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/1-QU2VrVC9HRC1m1GR7PEaW6D6Iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.15.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:ed:14:cd:5d:ce:5a:d7:de:3c:de:3f:85:31:eb:9c:e4:ec:
dc:66:87:a7:54:7e:b2:82:d2:c9:19:d4:80:bb:44:80:5a:7f:
1a:11:d8:43:82:bb:3a:0c:68:a2:6b:27:90:35:be:f8:ff:5f:
15:3a:63:55:84:d8:4d:ad:2c:6f:ce:32:a4:64:79:ff:d1:00:
d8:bb:dd:3b:e8:24:f3:26:82:5e:8d:98:49:a6:34:a1:ce:f5:
40:86:06:0f:ac:82:82:90:16:0f:39:5c:8b:11:5a:7a:d1:e6:
a5:a8:69:5f:18:11:8e:25:3d:21:a2:57:f7:56:97:47:c4:f0:
9f:74:69:aa:c1:e8:83:a6:22:ce:1d:31:e1:41:59:5a:1a:ea:
1f:b4:c6:97:65:c4:02:60:15:58:09:05:20:c8:6b:86:0d:72:
2b:14:cf:cc:e3:05:bd:4d:4a:5a:05:cd:43:34:ec:6b:77:b7:
74:55:87:6b:9f:ed:66:55:fa:21:b1:8e:b4:c5:54:c2:d1:ec:
85:5a:7a:6d:28:4f:95:1c:b4:58:e4:ba:93:e4:b7:bd:81:cf:
6f:77:56:45:31:af:08:28:2f:01:4e:f4:09:bf:b9:56:50:c5:
12:f7:03:76:10:06:88:29:17:81:de:94:ea:2d:a1:28:de:bf:
e9:e0:60:12
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY8WMJJbv+kniIvjqjnUBd3IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ZmM4ODdjOTc3MzkzNTc1ZGU2MjU3ZTc1ZmE5OWNkZTIw
MzdjNmMwHhcNMjQwNDI1MTY1NzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTA1MzY1NmI1NDJmNDc0NDJkNjZkNDY0N2IzYzQ2OTZlODNlODhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgGQpxikfk+cCUxHBq2jv3nRiRoXs
Jf1s7j9cs3KQHi6FBcnbE2DpWxM5WAfSaGR8Vlu6b39zPVNikUc5e+ig4v7JIxc/
WWBCaf3kfPmYbgs7JfqAFfCXobg7CHAbZ4p4cWQJJDJTkHM9YipipAWwL8LGwhpV
7piPjfPYZf3R5gGYGEQNw4avgM8qtMrBthiU5fWd2MrJ8faE+9fPnR5Niktqlop+
us8g4Yk5Ob8cthp8FNmzt7DZ6pAtvb7en+LmxO/FM1zdS9VvALV6Y7qKH68957Xg
iHPjHjLZu9d9AZgDJW5cznM3IKE7TEYU0YoBGdGtWakFsTwSavg7Fui4ZQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPkFNla1QvR0QtZtRkezxGlug+iMMB8GA1UdIwQY
MBaAFET8iHyXc5NXXeYlfnX6mc3iA3xsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUlB5SWZKZHprMWRkNWlWLWRmcVp6ZUlEZkd3LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mMDdjNjYtNDczZC00MzVhLWI2OTMt
YzM2OWMxZDRjMzM3LzEvMS1RVTJWclZDOUhSQzFtMUdSN1BFYVc2RDZJdy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZjcvZjA3YzY2LTQ3M2QtNDM1YS1iNjkzLWMzNjljMWQ0YzMz
Ny8xL1JQeUlmSmR6azFkZDVpVi1kZnFaemVJRGZHdy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1VDzAN
BgkqhkiG9w0BAQsFAAOCAQEAse0UzV3OWtfePN4/hTHrnOTs3GaHp1R+soLSyRnU
gLtEgFp/GhHYQ4K7OgxoomsnkDW++P9fFTpjVYTYTa0sb84ypGR5/9EA2LvdO+gk
8yaCXo2YSaY0oc71QIYGD6yCgpAWDzlcixFaetHmpahpXxgRjiU9IaJX91aXR8Tw
n3RpqsHog6Yizh0x4UFZWhrqH7TGl2XEAmAVWAkFIMhrhg1yKxTPzOMFvU1KWgXN
QzTsa3e3dFWHa5/tZlX6IbGOtMVUwtHshVp6bShPlRy0WOS6k+S3vYHPb3dWRTGv
CCgvAU70Cb+5VlDFEvcDdhAGiCkXgd6U6i2hKN6/6eBgEg==
-----END CERTIFICATE-----
Generated at Mon Jun 3 00:13:54 2024 by rpki-client on console-fra.rpki-client.org