Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/R-QzQ7DREobxXbLRHeZLv2QXf-Y.roa
File: R-QzQ7DREobxXbLRHeZLv2QXf-Y.roa (raw, json)
Hash identifier: IL24i/zccRCyUOv2LgU7kL0qbRkj51TTHHKW9dSswmE=
Subject key identifier: 47:E4:33:43:B0:D1:12:86:F1:5D:B2:D1:1D:E6:4B:BF:64:17:7F:E6
Certificate issuer: /CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Certificate serial: 018CC26D18A68A1ACFDC0116980ED8E1D4F0
Authority key identifier: 22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/R-QzQ7DREobxXbLRHeZLv2QXf-Y.roa
Signing time: Mon 01 Jan 2024 00:29:38 +0000
ROA not before: Mon 01 Jan 2024 00:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206351
IP address blocks: 2001:67c:12e0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:18:a6:8a:1a:cf:dc:01:16:98:0e:d8:e1:d4:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Validity
Not Before: Jan 1 00:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47e43343b0d11286f15db2d11de64bbf64177fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:a9:3b:a8:1c:00:0c:68:7f:15:ff:d2:61:
49:ae:4f:a2:9f:b7:e7:2e:e7:68:d1:68:db:15:d2:
ce:cc:2e:6f:00:d6:0c:a6:22:2e:b1:7a:28:61:90:
96:71:b9:7c:41:5e:48:c2:01:f9:f3:ba:45:c9:62:
3b:c2:9c:49:28:71:1f:3c:92:aa:6a:8b:6d:f8:37:
3a:7c:96:f7:68:50:80:80:09:68:43:c6:d9:ed:e6:
75:d9:89:46:c1:6b:55:02:37:1d:0d:ba:32:19:a0:
90:7c:9a:82:01:a9:f7:d7:77:f5:b8:b7:87:c7:f9:
64:43:97:96:65:04:94:f6:5c:b5:c3:24:87:3f:1e:
a4:38:5a:51:e4:f9:42:af:15:00:4d:61:4b:26:ec:
d4:d7:c0:12:ce:9c:ad:ba:ef:d6:7a:5f:72:23:a2:
ce:1f:ee:ef:00:ab:c8:47:44:bb:72:c5:ac:4c:09:
e4:ed:a3:a7:bb:7e:8b:0f:87:8c:9c:ff:95:a4:a0:
21:e2:60:3f:20:86:07:4d:d8:d4:56:0b:c8:22:52:
86:5c:d3:3d:a6:e6:f5:fd:a7:15:7f:dc:b7:5f:55:
f2:3a:36:cc:7b:39:78:2e:f5:55:b2:d3:9d:18:4a:
c6:73:9f:f8:0e:83:f0:e6:4c:9c:05:15:a1:0c:ce:
a1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E4:33:43:B0:D1:12:86:F1:5D:B2:D1:1D:E6:4B:BF:64:17:7F:E6
X509v3 Authority Key Identifier:
keyid:22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/R-QzQ7DREobxXbLRHeZLv2QXf-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:12e0::/48
Signature Algorithm: sha256WithRSAEncryption
1c:1f:51:7d:14:b6:fb:f5:48:d9:f5:29:2d:72:f9:c9:11:e8:
cf:20:70:9d:4f:39:76:97:81:32:cc:47:69:cf:7c:14:50:5d:
ed:1c:7a:45:54:be:6a:33:4d:23:e7:fd:42:7d:f8:56:43:22:
6b:73:f0:2b:e3:74:69:75:01:9d:ad:15:2c:fe:c7:1a:e5:53:
b9:72:fc:81:13:12:ad:7a:1b:6d:1d:e4:66:69:f8:6b:1c:27:
ce:d7:09:50:db:fd:e3:56:22:55:30:3e:cc:4c:1a:0f:a7:aa:
39:59:05:d5:a6:76:5b:44:8e:59:6c:61:fc:b7:63:e8:22:02:
2a:c6:a6:6c:bd:fd:0c:99:60:5a:66:e7:8e:5d:c9:aa:53:ca:
3b:b0:74:5c:95:74:e6:b1:6b:6b:d8:e6:1e:89:12:fe:9e:c4:
12:f7:f9:74:fd:0a:a0:90:73:05:5d:bc:3e:83:43:a0:23:5a:
5a:d6:53:8b:01:0e:47:c8:71:47:2a:8c:62:91:c1:7e:ed:46:
22:ab:04:58:25:08:07:ec:4b:83:46:62:04:8a:14:05:4c:76:
80:af:cf:70:c2:0c:9e:45:e6:29:30:2f:ae:02:a0:00:cb:10:
ac:8f:05:bd:02:eb:0b:f0:3b:75:d3:51:47:a4:3e:23:e4:62:
06:0a:02:30
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzCbRimihrP3AEWmA7Y4dTwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMjRmZDY1MDAzYzM5NDkwYWJlYWE5ZTFlZmU1ZjIwMjQ2
ZGM3N2IwHhcNMjQwMTAxMDAyOTM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2U0MzM0M2IwZDExMjg2ZjE1ZGIyZDExZGU2NGJiZjY0MTc3ZmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstWpO6gcAAxofxX/0mFJrk+in7fn
Ludo0WjbFdLOzC5vANYMpiIusXooYZCWcbl8QV5IwgH587pFyWI7wpxJKHEfPJKq
aott+Dc6fJb3aFCAgAloQ8bZ7eZ12YlGwWtVAjcdDboyGaCQfJqCAan313f1uLeH
x/lkQ5eWZQSU9ly1wySHPx6kOFpR5PlCrxUATWFLJuzU18ASzpytuu/Wel9yI6LO
H+7vAKvIR0S7csWsTAnk7aOnu36LD4eMnP+VpKAh4mA/IIYHTdjUVgvIIlKGXNM9
pub1/acVf9y3X1XyOjbMezl4LvVVstOdGErGc5/4DoPw5kycBRWhDM6hmQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEfkM0Ow0RKG8V2y0R3mS79kF3/mMB8GA1UdIwQY
MBaAFCIk/WUAPDlJCr6qnh7+XyAkbcd7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWlUOVpRQThPVWtLdnFxZUh2NWZJQ1J0eDNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85YjQ5MDAtMDg1YS00YTBlLWE5OGYt
YzZkYjM0YzJmN2U5LzEvUi1RelE3RFJFb2J4WGJMUkhlWkx2MlFYZi1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS85YjQ5MDAtMDg1YS00YTBlLWE5OGYtYzZkYjM0YzJmN2U5
LzEvSWlUOVpRQThPVWtLdnFxZUh2NWZJQ1J0eDNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBLg
MA0GCSqGSIb3DQEBCwUAA4IBAQAcH1F9FLb79UjZ9SktcvnJEejPIHCdTzl2l4Ey
zEdpz3wUUF3tHHpFVL5qM00j5/1CffhWQyJrc/Ar43RpdQGdrRUs/sca5VO5cvyB
ExKtehttHeRmafhrHCfO1wlQ2/3jViJVMD7MTBoPp6o5WQXVpnZbRI5ZbGH8t2Po
IgIqxqZsvf0MmWBaZueOXcmqU8o7sHRclXTmsWtr2OYeiRL+nsQS9/l0/QqgkHMF
Xbw+g0OgI1pa1lOLAQ5HyHFHKoxikcF+7UYiqwRYJQgH7EuDRmIEihQFTHaAr89w
wgyeReYpMC+uAqAAyxCsjwW9AusL8Dt101FHpD4j5GIGCgIw
-----END CERTIFICATE-----
Generated at Mon Jun 24 10:30:28 2024 by rpki-client on console-fra.rpki-client.org