Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1Qku8s-loof24E71Wb68N3Fu64U.roa
File: 1Qku8s-loof24E71Wb68N3Fu64U.roa (raw, json)
Hash identifier: 1dhgBwnAckLmohNbgiKOWKxcrL1ort1MuhWQerwS6NI=
Subject key identifier: D5:09:2E:F2:CF:A5:A2:87:F6:E0:4E:F5:59:BE:BC:37:71:6E:EB:85
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F7C41EC3ADB079BA4FCAE5DBC3B8839D5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1Qku8s-loof24E71Wb68N3Fu64U.roa
Signing time: Wed 15 May 2024 12:37:26 +0000
ROA not before: Wed 15 May 2024 12:37:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43824
IP address blocks: 185.226.173.0/24 maxlen: 24
185.226.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7c:41:ec:3a:db:07:9b:a4:fc:ae:5d:bc:3b:88:39:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 15 12:37:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5092ef2cfa5a287f6e04ef559bebc37716eeb85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:99:37:8c:56:6f:e0:b6:21:95:de:27:44:79:
71:18:19:7a:c0:c5:83:21:7f:6e:4f:a3:67:9a:69:
ee:98:18:a9:6e:04:2f:5a:fc:94:eb:29:4b:8d:7e:
af:bb:52:35:20:33:f3:3e:f2:fe:b9:91:d4:60:29:
10:91:cc:af:9e:e8:2d:30:8a:66:2a:dd:c5:24:47:
a8:35:db:78:b0:88:f5:b5:11:39:bc:95:25:c3:c4:
7f:1a:cf:38:91:65:83:3e:0c:87:50:78:10:b8:ec:
fa:85:77:72:9b:42:9d:c3:30:b1:1a:74:77:2c:85:
b3:32:8b:c4:03:e7:61:57:cc:5c:8c:c9:ed:54:fd:
a2:b9:09:cc:de:f3:78:e5:70:45:8c:39:1c:ac:ad:
fc:4a:be:a3:d4:c8:93:d7:ff:a9:a2:ae:4f:fe:87:
c7:e5:26:2d:26:1a:c1:af:7d:bf:d2:0d:9d:22:d5:
ca:43:c0:e2:e6:47:d5:45:24:2a:b3:36:78:c9:26:
58:9b:88:86:cb:96:95:2e:f8:63:48:9b:a1:a6:bd:
37:a2:63:e4:fb:60:b8:2f:ab:1a:d7:63:8d:39:ee:
81:eb:34:3c:46:43:82:28:c1:0d:8f:a3:4d:56:cc:
9b:45:2c:2f:02:ce:8a:fa:22:f6:87:73:5a:2f:a4:
ba:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:09:2E:F2:CF:A5:A2:87:F6:E0:4E:F5:59:BE:BC:37:71:6E:EB:85
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1Qku8s-loof24E71Wb68N3Fu64U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.173.0/24
185.226.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:1a:58:e7:c5:51:9e:a2:51:f1:56:fb:e2:5e:22:7f:ca:ec:
dc:ab:53:df:d3:8a:ca:e9:43:ae:9d:a0:d6:64:2c:fd:f9:33:
3e:10:66:b6:1a:b6:13:19:73:c9:e9:7b:7e:f7:e4:95:75:af:
dd:ff:89:3b:3a:dd:16:fc:9a:ec:0a:1f:38:1a:14:df:eb:64:
e9:43:b8:db:43:a9:5b:f5:3d:6c:59:02:fc:c3:c0:32:df:87:
f4:ee:7a:b3:8e:85:e1:e3:77:c1:18:3b:64:97:a8:0e:7e:53:
d8:11:76:ff:bc:26:8a:92:c1:c0:49:6d:96:fd:4b:ec:81:5b:
ba:15:a0:19:fa:7e:91:16:e3:28:8c:32:be:53:84:b0:03:54:
2c:84:bc:76:7e:a4:b0:de:5a:47:55:9f:d7:73:9f:04:6b:72:
9e:62:b8:0d:1b:4d:f3:11:e8:a1:d3:08:cc:50:fc:5a:98:de:
c6:d1:5c:cd:62:b4:fd:06:cc:07:61:62:13:66:a5:a4:be:70:
87:19:0b:97:2d:11:6f:cb:28:21:60:d8:4b:48:a3:8f:22:52:
f2:d5:82:fc:8a:39:99:57:f4:d9:02:92:7c:9e:a5:e6:cb:a7:
54:b9:b5:cf:d5:c0:ed:71:0a:9b:f4:18:19:75:70:1b:49:13:
27:39:5a:b8
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY98Qew62webpPyuXbw7iDnVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwNTE1MTIzNzI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTA5MmVmMmNmYTVhMjg3ZjZlMDRlZjU1OWJlYmMzNzcxNmVlYjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypk3jFZv4LYhld4nRHlxGBl6wMWD
IX9uT6NnmmnumBipbgQvWvyU6ylLjX6vu1I1IDPzPvL+uZHUYCkQkcyvnugtMIpm
Kt3FJEeoNdt4sIj1tRE5vJUlw8R/Gs84kWWDPgyHUHgQuOz6hXdym0KdwzCxGnR3
LIWzMovEA+dhV8xcjMntVP2iuQnM3vN45XBFjDkcrK38Sr6j1MiT1/+poq5P/ofH
5SYtJhrBr32/0g2dItXKQ8Di5kfVRSQqszZ4ySZYm4iGy5aVLvhjSJuhpr03omPk
+2C4L6sa12ONOe6B6zQ8RkOCKMENj6NNVsybRSwvAs6K+iL2h3NaL6S6EQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNUJLvLPpaKH9uBO9Vm+vDdxbuuFMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvMVFrdThzLWxvb2YyNEU3MVdiNjhOM0Z1NjRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAueKtAwQA
ueKvMA0GCSqGSIb3DQEBCwUAA4IBAQBqGljnxVGeolHxVvviXiJ/yuzcq1Pf04rK
6UOunaDWZCz9+TM+EGa2GrYTGXPJ6Xt+9+SVda/d/4k7Ot0W/JrsCh84GhTf62Tp
Q7jbQ6lb9T1sWQL8w8Ay34f07nqzjoXh43fBGDtkl6gOflPYEXb/vCaKksHASW2W
/UvsgVu6FaAZ+n6RFuMojDK+U4SwA1QshLx2fqSw3lpHVZ/Xc58Ea3KeYrgNG03z
Eeih0wjMUPxamN7G0VzNYrT9BswHYWITZqWkvnCHGQuXLRFvyyghYNhLSKOPIlLy
1YL8ijmZV/TZApJ8nqXmy6dUubXP1cDtcQqb9BgZdXAbSRMnOVq4
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:15:14 2024 by rpki-client on console-ams.rpki-client.org