Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/DleDyLPLopIufdj0rRKsn1GD_jE.roa
File: DleDyLPLopIufdj0rRKsn1GD_jE.roa (raw, json)
Hash identifier: bcVlNem2SbKvjr7hSjR6UcDjR4abtsTwAewiyV5UGkY=
Subject key identifier: 0E:57:83:C8:B3:CB:A2:92:2E:7D:D8:F4:AD:12:AC:9F:51:83:FE:31
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8D575ACBD103AF4A743DBE42FB921
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/DleDyLPLopIufdj0rRKsn1GD_jE.roa
Signing time: Mon 01 Jan 2024 20:30:51 +0000
ROA not before: Mon 01 Jan 2024 20:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43927
IP address blocks: 2a0c:9a40:8088::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d5:75:ac:bd:10:3a:f4:a7:43:db:e4:2f:b9:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e5783c8b3cba2922e7dd8f4ad12ac9f5183fe31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:16:07:91:5b:8e:3b:d4:2d:6a:89:b7:cf:69:
ed:8a:30:17:88:4d:74:30:c0:05:b4:ad:12:2d:45:
62:04:41:ae:0a:b8:cc:69:5f:8c:79:4f:f7:52:1b:
3e:cf:88:1e:50:cb:dd:6a:43:59:59:ad:7f:d4:11:
a2:25:38:3c:8f:e4:1e:1a:a0:16:c9:15:de:47:25:
9f:27:35:63:1e:73:58:7b:b5:bb:75:8f:61:30:a7:
f0:ad:6a:9f:d9:55:e5:31:db:82:89:28:8b:3e:fa:
43:07:e4:73:c2:24:a1:f3:4f:51:9a:49:e8:e7:b5:
3b:42:d5:ab:4f:fb:5a:0a:42:0b:73:a1:ee:35:cf:
ff:b0:55:77:42:1f:93:c6:f4:52:4b:b5:1f:73:7b:
95:70:57:fd:ea:31:f8:6d:d6:75:d5:bb:d7:d3:c9:
48:53:34:74:4f:91:9a:40:dc:6f:29:ff:6e:18:95:
22:0e:61:6c:41:31:2c:5e:1a:92:55:17:9d:b7:ce:
9d:0e:33:17:c2:4e:2a:b1:1b:05:c1:88:3d:c9:f6:
5c:5c:d5:21:9e:90:00:17:42:a4:67:22:f1:6c:6a:
76:97:21:b3:8d:c3:9a:92:b1:68:22:f3:e9:46:45:
80:e2:2c:7c:5a:04:e2:f9:25:5b:4e:ed:a1:09:a6:
83:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:57:83:C8:B3:CB:A2:92:2E:7D:D8:F4:AD:12:AC:9F:51:83:FE:31
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/DleDyLPLopIufdj0rRKsn1GD_jE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8088::/48
Signature Algorithm: sha256WithRSAEncryption
30:7f:17:3c:fc:26:0e:ed:7c:70:61:3f:e1:ba:b2:67:8b:9e:
9f:33:2f:47:31:bf:13:35:2d:af:0e:11:18:90:0d:a3:ed:75:
b6:17:7c:6b:05:c8:ac:a8:dd:69:cc:dd:7c:1f:57:df:ee:5b:
cc:e1:a7:5b:03:e0:91:31:44:10:75:62:26:8a:31:0d:c7:3a:
02:fe:aa:92:46:bd:5c:df:42:f9:cf:18:4b:ed:0d:4b:b0:d3:
9c:17:0b:dc:8e:4a:d6:ae:d4:4f:93:28:cf:99:2c:48:18:30:
2a:63:68:4b:57:41:c6:80:d0:a9:bd:a5:47:1a:c2:d9:a2:d9:
e2:1f:f1:45:cd:6e:50:73:85:a2:38:fc:38:68:ce:2f:0f:36:
f4:a1:53:e3:da:47:4b:1f:86:cf:63:fb:ae:ce:a8:83:62:75:
9f:5f:4d:fc:0a:99:71:7e:0d:c5:ff:59:04:03:7a:30:aa:5e:
26:bd:cb:29:89:2a:28:b9:33:57:fa:25:0d:34:96:e5:89:60:
e6:9c:e0:25:13:fb:b6:e9:36:41:55:43:51:0c:6c:eb:e6:3c:
a8:37:e9:b1:32:e5:04:c9:4c:de:9f:e3:3b:c3:bb:bb:5f:92:
cb:74:ab:ad:24:c1:c0:e7:b9:04:8d:fb:6c:79:73:5a:a4:a5:
b8:c1:ef:57
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzGuNV1rL0QOvSnQ9vkL7khMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjQwMTAxMjAzMDUxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTU3ODNjOGIzY2JhMjkyMmU3ZGQ4ZjRhZDEyYWM5ZjUxODNmZTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxYHkVuOO9Qtaom3z2ntijAXiE10
MMAFtK0SLUViBEGuCrjMaV+MeU/3Uhs+z4geUMvdakNZWa1/1BGiJTg8j+QeGqAW
yRXeRyWfJzVjHnNYe7W7dY9hMKfwrWqf2VXlMduCiSiLPvpDB+RzwiSh809Rmkno
57U7QtWrT/taCkILc6HuNc//sFV3Qh+TxvRSS7Ufc3uVcFf96jH4bdZ11bvX08lI
UzR0T5GaQNxvKf9uGJUiDmFsQTEsXhqSVRedt86dDjMXwk4qsRsFwYg9yfZcXNUh
npAAF0KkZyLxbGp2lyGzjcOakrFoIvPpRkWA4ix8WgTi+SVbTu2hCaaDPQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFA5Xg8izy6KSLn3Y9K0SrJ9Rg/4xMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvRGxlRHlMUExvcEl1ZmRqMHJSS3NuMUdEX2pFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgyaQICI
MA0GCSqGSIb3DQEBCwUAA4IBAQAwfxc8/CYO7XxwYT/hurJni56fMy9HMb8TNS2v
DhEYkA2j7XW2F3xrBcisqN1pzN18H1ff7lvM4adbA+CRMUQQdWImijENxzoC/qqS
Rr1c30L5zxhL7Q1LsNOcFwvcjkrWrtRPkyjPmSxIGDAqY2hLV0HGgNCpvaVHGsLZ
otniH/FFzW5Qc4WiOPw4aM4vDzb0oVPj2kdLH4bPY/uuzqiDYnWfX038Cplxfg3F
/1kEA3owql4mvcspiSoouTNX+iUNNJbliWDmnOAlE/u26TZBVUNRDGzr5jyoN+mx
MuUEyUzen+M7w7u7X5LLdKutJMHA57kEjftseXNapKW4we9X
-----END CERTIFICATE-----
Generated at Fri May 17 04:45:39 2024 by rpki-client on console-ams.rpki-client.org