Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/jqqi7mtjJsbjTYZRj698LPqD5l4.roa
File: jqqi7mtjJsbjTYZRj698LPqD5l4.roa (raw, json)
Hash identifier: YLCXbJJELFr17iqA8/3qH2xIXLS14NqUANgXmm2NeYQ=
Subject key identifier: 8E:AA:A2:EE:6B:63:26:C6:E3:4D:86:51:8F:AF:7C:2C:FA:83:E6:5E
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8ED0B21DCF00DEEAE3F6729C80E21
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/jqqi7mtjJsbjTYZRj698LPqD5l4.roa
Signing time: Mon 01 Jan 2024 20:30:57 +0000
ROA not before: Mon 01 Jan 2024 20:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210890
IP address blocks: 2a0c:9a40:8030::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:ed:0b:21:dc:f0:0d:ee:ae:3f:67:29:c8:0e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8eaaa2ee6b6326c6e34d86518faf7c2cfa83e65e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9d:1b:63:23:c9:74:31:66:0d:97:ab:51:79:
14:61:bf:3f:54:09:e6:a6:eb:8b:8b:f0:01:b8:d3:
73:31:17:9e:fe:29:03:68:cf:d9:5b:ba:c2:2e:31:
f9:f3:11:7f:f3:42:e1:6a:28:bc:51:32:7b:0f:0d:
8b:b5:b2:5c:39:67:5c:b5:cc:f9:ee:6f:13:65:b1:
b3:c5:c4:31:c3:14:95:12:24:16:05:e3:ab:15:51:
1d:1f:48:92:13:fd:d0:8e:84:89:ef:55:05:2f:f8:
71:4b:b5:04:7b:e3:11:f5:d0:51:93:66:bc:65:a0:
f4:3f:0d:9f:6a:35:de:8f:37:db:b1:21:91:85:9a:
d8:18:d0:8a:90:b7:8c:65:2d:be:aa:40:07:d7:9b:
bb:c9:57:88:d8:24:22:4f:91:48:81:8c:62:0f:fc:
60:ad:8e:11:5b:ed:2e:99:ba:46:09:3e:15:33:2c:
54:41:03:5a:18:e4:b3:24:ac:85:ba:bb:b1:c5:77:
90:d6:bf:81:1b:f4:ef:01:74:19:81:a6:b9:a5:aa:
ef:cc:a0:d3:3b:48:d3:8c:4e:a7:a8:81:1a:c0:de:
03:52:e3:9a:ae:69:89:87:ec:64:3b:12:8e:25:02:
b5:bd:49:38:7e:12:ec:25:e4:08:ef:6e:58:6d:1a:
9d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AA:A2:EE:6B:63:26:C6:E3:4D:86:51:8F:AF:7C:2C:FA:83:E6:5E
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/jqqi7mtjJsbjTYZRj698LPqD5l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8030::/44
Signature Algorithm: sha256WithRSAEncryption
45:e0:0b:e1:8c:1f:17:cc:e3:d3:02:ac:2f:e7:e7:69:87:fe:
76:b5:25:37:9e:b4:7d:4d:03:f1:07:59:12:77:62:2d:4d:8e:
4b:dc:dd:3f:cd:72:df:c7:0d:a7:5e:1c:fb:8e:a3:21:75:b0:
02:5a:a9:2b:c1:d4:c7:33:39:31:5b:51:15:69:83:c7:a6:90:
fb:5a:4e:27:2e:96:b1:67:ee:85:35:fc:34:23:0f:84:c7:bd:
76:18:5f:7d:60:aa:dd:9a:44:ea:c5:91:e0:ac:9f:7c:7f:e6:
71:e4:bb:00:61:12:23:ad:62:7d:bd:12:38:0b:92:79:00:c1:
a8:4f:44:13:eb:41:10:4f:98:c4:0a:ea:ca:55:dc:07:5b:08:
48:f2:fc:66:f2:09:30:e9:7c:de:5d:19:84:d1:f2:f2:59:78:
89:f0:46:19:50:82:bf:de:0d:b6:4f:76:11:72:86:a3:9e:6a:
36:8b:b1:d9:46:5a:da:20:7d:6e:1a:fc:91:b4:54:7c:96:62:
36:25:29:01:4c:fe:08:cc:ae:54:68:f1:c2:cb:3e:fa:fd:6f:
a0:52:f8:a4:d3:37:63:13:30:50:92:09:8b:e2:3d:51:60:be:
c3:e5:b7:15:76:df:28:ab:5b:eb:64:86:0f:b0:64:30:1c:f4:
82:7f:4e:7c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzGuO0LIdzwDe6uP2cpyA4hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjQwMTAxMjAzMDU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZWFhYTJlZTZiNjMyNmM2ZTM0ZDg2NTE4ZmFmN2MyY2ZhODNlNjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJ0bYyPJdDFmDZerUXkUYb8/VAnm
puuLi/ABuNNzMRee/ikDaM/ZW7rCLjH58xF/80Lhaii8UTJ7Dw2LtbJcOWdctcz5
7m8TZbGzxcQxwxSVEiQWBeOrFVEdH0iSE/3QjoSJ71UFL/hxS7UEe+MR9dBRk2a8
ZaD0Pw2fajXejzfbsSGRhZrYGNCKkLeMZS2+qkAH15u7yVeI2CQiT5FIgYxiD/xg
rY4RW+0umbpGCT4VMyxUQQNaGOSzJKyFuruxxXeQ1r+BG/TvAXQZgaa5parvzKDT
O0jTjE6nqIEawN4DUuOarmmJh+xkOxKOJQK1vUk4fhLsJeQI725YbRqd+QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFI6qou5rYybG402GUY+vfCz6g+ZeMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvanFxaTdtdGpKc2JqVFlaUmo2OThMUHFENWw0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgyaQIAw
MA0GCSqGSIb3DQEBCwUAA4IBAQBF4AvhjB8XzOPTAqwv5+dph/52tSU3nrR9TQPx
B1kSd2ItTY5L3N0/zXLfxw2nXhz7jqMhdbACWqkrwdTHMzkxW1EVaYPHppD7Wk4n
LpaxZ+6FNfw0Iw+Ex712GF99YKrdmkTqxZHgrJ98f+Zx5LsAYRIjrWJ9vRI4C5J5
AMGoT0QT60EQT5jECurKVdwHWwhI8vxm8gkw6XzeXRmE0fLyWXiJ8EYZUIK/3g22
T3YRcoajnmo2i7HZRlraIH1uGvyRtFR8lmI2JSkBTP4IzK5UaPHCyz76/W+gUvik
0zdjEzBQkgmL4j1RYL7D5bcVdt8oq1vrZIYPsGQwHPSCf058
-----END CERTIFICATE-----
Generated at Fri May 17 04:45:39 2024 by rpki-client on console-ams.rpki-client.org