Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/foLOcYg-7LcPiDsn8-AZ7Azgn2I.roa
File: foLOcYg-7LcPiDsn8-AZ7Azgn2I.roa (raw, json)
Hash identifier: rsStUQnqgnUH/Bh9XKegu1/sfdllrflKVFiM18NkVK4=
Subject key identifier: 7E:82:CE:71:88:3E:EC:B7:0F:88:3B:27:F3:E0:19:EC:0C:E0:9F:62
Certificate issuer: /CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Certificate serial: 018CC64A6FCEDC89C746C8CC6C16172BEF26
Authority key identifier: 4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/foLOcYg-7LcPiDsn8-AZ7Azgn2I.roa
Signing time: Mon 01 Jan 2024 18:30:16 +0000
ROA not before: Mon 01 Jan 2024 18:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1136
IP address blocks: 185.36.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/TEA7xgtKE8Pao0EaySPGNy1CPrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/TEA7xgtKE8Pao0EaySPGNy1CPrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:6f:ce:dc:89:c7:46:c8:cc:6c:16:17:2b:ef:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Validity
Not Before: Jan 1 18:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e82ce71883eecb70f883b27f3e019ec0ce09f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5d:5d:75:9f:70:d2:75:55:bf:1b:06:a7:4d:
bf:7c:61:67:ac:dd:02:2e:36:99:58:61:83:be:cc:
94:b9:31:5c:72:11:15:6d:ed:e9:a2:68:04:a8:74:
0e:fc:9d:61:3a:39:93:56:46:ba:fe:af:70:96:99:
09:cc:10:a6:dd:5c:9c:0d:d4:e3:3e:11:d5:ee:d7:
ae:68:51:c6:ff:df:cc:fa:9b:f9:27:99:78:76:59:
f2:87:95:f3:69:65:90:6c:14:d5:8d:2b:8c:74:82:
52:07:e7:bd:48:d9:ae:9f:f1:9a:09:39:e1:bc:82:
69:04:98:29:65:8b:6e:cd:5e:dd:cf:ef:fc:8a:3d:
83:49:76:3b:06:65:a7:58:69:5b:2b:1d:fb:c5:4d:
16:0e:fa:23:b2:72:98:44:0c:f9:61:1c:6b:f3:dc:
29:38:d8:9e:41:80:3a:51:78:f0:3c:b5:62:ee:c8:
c6:39:6d:72:2a:fb:64:47:09:1a:a7:76:03:e4:ba:
c6:54:93:b7:74:a2:7d:12:2d:db:52:a4:09:5f:ae:
e6:fc:8e:29:0d:64:f5:eb:9a:c3:a2:00:6a:fd:80:
0b:0f:37:49:10:2d:cf:ea:68:6b:e0:5d:cb:4a:76:
04:cf:52:31:53:d6:3d:98:60:82:73:81:98:4c:18:
96:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:82:CE:71:88:3E:EC:B7:0F:88:3B:27:F3:E0:19:EC:0C:E0:9F:62
X509v3 Authority Key Identifier:
keyid:4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/foLOcYg-7LcPiDsn8-AZ7Azgn2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/TEA7xgtKE8Pao0EaySPGNy1CPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.40.0/24
Signature Algorithm: sha256WithRSAEncryption
52:6d:8f:12:ef:bb:dd:3c:9a:cb:f0:44:b6:b7:b9:58:52:96:
f2:89:87:cd:bd:f6:80:39:7e:26:66:cc:eb:6e:43:2f:c6:7e:
d8:23:29:29:b3:a6:eb:8b:f8:23:05:73:86:53:1b:74:05:71:
60:e4:24:7a:46:9d:16:aa:41:35:b0:e6:4c:2a:67:6f:82:91:
b6:6b:8e:5e:7b:94:58:71:fc:c8:c8:ae:f8:fa:94:7e:02:47:
47:4f:dd:f8:f6:d7:c3:6d:e9:52:da:ba:bc:42:38:5f:5b:b3:
bf:55:9b:17:4d:bd:4a:1a:15:f0:71:97:1f:d7:a0:17:59:a8:
4d:65:32:7b:e8:67:a0:9e:b8:b1:52:32:68:c6:24:a5:0a:1f:
d5:71:2a:9a:4b:38:40:8d:51:67:3a:4a:6e:ca:cb:e9:10:91:
c0:0c:18:03:2f:f9:b4:a6:09:06:06:9f:b7:86:fe:15:37:f3:
02:84:67:b9:2a:cc:ba:9f:48:5d:c5:95:c0:44:3a:25:2d:de:
cb:4c:91:00:33:32:50:e2:f9:65:a7:c9:d1:ad:8b:f3:ee:50:
a0:53:cb:ed:b4:72:80:46:b1:5d:42:2b:35:88:f5:18:48:05:
3f:54:f3:7b:f2:e0:9e:44:bd:11:67:2f:a9:62:2e:af:0e:43:
92:5e:f9:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGSm/O3InHRsjMbBYXK+8mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjNDAzYmM2MGI0YTEzYzNkYWEzNDExYWM5MjNjNjM3MmQ0
MjNlYjgwHhcNMjQwMTAxMTgzMDE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTgyY2U3MTg4M2VlY2I3MGY4ODNiMjdmM2UwMTllYzBjZTA5ZjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml1ddZ9w0nVVvxsGp02/fGFnrN0C
LjaZWGGDvsyUuTFcchEVbe3pomgEqHQO/J1hOjmTVka6/q9wlpkJzBCm3VycDdTj
PhHV7teuaFHG/9/M+pv5J5l4dlnyh5XzaWWQbBTVjSuMdIJSB+e9SNmun/GaCTnh
vIJpBJgpZYtuzV7dz+/8ij2DSXY7BmWnWGlbKx37xU0WDvojsnKYRAz5YRxr89wp
ONieQYA6UXjwPLVi7sjGOW1yKvtkRwkap3YD5LrGVJO3dKJ9Ei3bUqQJX67m/I4p
DWT165rDogBq/YALDzdJEC3P6mhr4F3LSnYEz1IxU9Y9mGCCc4GYTBiWtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH6CznGIPuy3D4g7J/PgGewM4J9iMB8GA1UdIwQY
MBaAFExAO8YLShPD2qNBGskjxjctQj64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEVBN3hndEtFOFBhbzBFYXlTUEdOeTFDUHJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8wOGI5YzQtMGFmZC00ODc2LTllZjct
MmU4NGI4ZDE4ZTRlLzEvZm9MT2NZZy03TGNQaURzbjgtQVo3QXpnbjJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi8wOGI5YzQtMGFmZC00ODc2LTllZjctMmU4NGI4ZDE4ZTRl
LzEvVEVBN3hndEtFOFBhbzBFYXlTUEdOeTFDUHJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSQoMA0G
CSqGSIb3DQEBCwUAA4IBAQBSbY8S77vdPJrL8ES2t7lYUpbyiYfNvfaAOX4mZszr
bkMvxn7YIykps6bri/gjBXOGUxt0BXFg5CR6Rp0WqkE1sOZMKmdvgpG2a45ee5RY
cfzIyK74+pR+AkdHT9349tfDbelS2rq8QjhfW7O/VZsXTb1KGhXwcZcf16AXWahN
ZTJ76GegnrixUjJoxiSlCh/VcSqaSzhAjVFnOkpuysvpEJHADBgDL/m0pgkGBp+3
hv4VN/MChGe5Ksy6n0hdxZXARDolLd7LTJEAMzJQ4vllp8nRrYvz7lCgU8vttHKA
RrFdQis1iPUYSAU/VPN78uCeRL0RZy+pYi6vDkOSXvn7
-----END CERTIFICATE-----
Generated at Sat Jun 22 10:04:04 2024 by rpki-client on console-ams.rpki-client.org