Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/gjc2lSRErevnAu4c6seK-qgZ_bo.roa
File: gjc2lSRErevnAu4c6seK-qgZ_bo.roa (raw, json)
Hash identifier: IwK1SD9hT/TWWCl/hw1uzYtOFDVRufAuXFdjYoyHzck=
Subject key identifier: 82:37:36:95:24:44:AD:EB:E7:02:EE:1C:EA:C7:8A:FA:A8:19:FD:BA
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018CC6B933F50962622C4B475342E5AD9B49
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/gjc2lSRErevnAu4c6seK-qgZ_bo.roa
Signing time: Mon 01 Jan 2024 20:31:15 +0000
ROA not before: Mon 01 Jan 2024 20:31:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48678
IP address blocks: 212.98.224.0/24 maxlen: 24
212.115.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:33:f5:09:62:62:2c:4b:47:53:42:e5:ad:9b:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 20:31:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=823736952444adebe702ee1ceac78afaa819fdba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d3:ea:3e:d7:fd:76:a8:f9:6f:52:62:8a:32:
3f:6e:4e:45:47:c0:0f:74:1e:f4:b3:ba:fd:c9:d9:
1c:fe:06:00:49:68:96:b8:d5:2e:5e:62:b6:45:04:
f5:8a:4f:a8:aa:53:81:76:0d:84:35:02:ba:66:52:
f7:b9:2f:2b:0b:0a:88:c2:29:53:94:88:4f:72:4b:
27:56:60:69:5a:18:e2:52:48:4a:82:06:c9:f8:ad:
14:01:e7:b3:7b:b9:ec:50:a8:4d:13:3a:33:34:49:
6d:4c:b6:1e:f8:9e:38:89:64:f7:cf:20:75:55:88:
a1:fb:59:e7:e4:d5:97:5d:64:84:3f:2e:9a:74:1c:
a7:84:38:3f:5e:3b:4b:ba:f3:5f:8c:cc:09:de:6e:
7b:3e:0d:1a:59:10:dd:e9:01:44:2f:01:9c:07:fd:
5c:ad:e9:e1:30:a0:46:82:22:0c:0b:28:bf:27:5d:
d7:9e:83:8d:4f:a8:8f:23:af:c7:d1:61:2e:a2:59:
d8:64:01:e1:41:0e:67:2a:39:40:fb:23:17:02:13:
33:a8:88:a5:9a:70:e7:5b:47:63:74:67:5a:bf:15:
08:ec:2e:71:05:ef:cd:78:87:2d:3c:7d:b6:98:9c:
37:6a:17:5e:02:34:89:d9:51:6f:82:0a:b4:2a:aa:
77:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:37:36:95:24:44:AD:EB:E7:02:EE:1C:EA:C7:8A:FA:A8:19:FD:BA
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/gjc2lSRErevnAu4c6seK-qgZ_bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.98.224.0/24
212.115.30.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:5b:67:8d:0b:c8:c0:91:c5:f8:d6:82:06:55:73:1d:8c:b2:
2e:91:b5:56:b7:1c:cb:99:6f:f5:fe:51:55:f4:31:28:31:ae:
3d:1f:42:10:a1:d3:b7:d8:76:11:d6:8c:f4:6a:06:86:4c:1b:
c4:bb:44:f7:48:30:0d:1a:12:61:5d:31:55:ee:19:e8:de:b6:
92:f4:36:f1:a6:7c:90:7c:b7:48:30:0d:df:b3:ef:22:97:66:
7f:17:99:9a:d1:f4:87:c5:f9:7e:38:68:10:20:74:67:98:1d:
3d:04:bc:08:e2:6b:60:3e:7e:f8:03:c4:0b:d1:dc:f9:9a:14:
e4:fd:a8:e3:1f:2e:c8:4b:86:71:74:ad:91:7c:f7:31:c2:90:
b1:1a:49:44:17:b7:5a:60:76:fa:e7:da:e1:1c:bf:fb:9a:55:
05:8c:f4:dd:e2:36:88:04:e4:59:cd:25:f2:92:80:e3:12:cf:
f8:60:ab:2d:32:be:11:d6:cf:ad:b9:3b:a6:1a:8a:0b:a2:66:
0c:d0:95:aa:04:88:3d:14:f6:10:c2:39:aa:e2:c5:b0:e6:35:
a3:7e:5d:d4:37:4d:aa:9a:52:17:97:29:75:c5:ad:73:f6:f3:
fd:3b:6e:21:7e:bc:a2:90:f2:3b:7b:5e:bf:6d:3f:3c:b4:54:
ad:33:0f:ad
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzGuTP1CWJiLEtHU0LlrZtJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw
MWY0YzkwHhcNMjQwMTAxMjAzMTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjM3MzY5NTI0NDRhZGViZTcwMmVlMWNlYWM3OGFmYWE4MTlmZGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotPqPtf9dqj5b1JiijI/bk5FR8AP
dB70s7r9ydkc/gYASWiWuNUuXmK2RQT1ik+oqlOBdg2ENQK6ZlL3uS8rCwqIwilT
lIhPcksnVmBpWhjiUkhKggbJ+K0UAeeze7nsUKhNEzozNEltTLYe+J44iWT3zyB1
VYih+1nn5NWXXWSEPy6adBynhDg/XjtLuvNfjMwJ3m57Pg0aWRDd6QFELwGcB/1c
renhMKBGgiIMCyi/J13XnoONT6iPI6/H0WEuolnYZAHhQQ5nKjlA+yMXAhMzqIil
mnDnW0djdGdavxUI7C5xBe/NeIctPH22mJw3ahdeAjSJ2VFvggq0Kqp34QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFII3NpUkRK3r5wLuHOrHivqoGf26MB8GA1UdIwQY
MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt
ODNkNjQ4Zjc5NzQ2LzEvZ2pjMmxTUkVyZXZuQXU0YzZzZUstcWdaX2JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2
LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1GLgAwQA
1HMeMA0GCSqGSIb3DQEBCwUAA4IBAQAPW2eNC8jAkcX41oIGVXMdjLIukbVWtxzL
mW/1/lFV9DEoMa49H0IQodO32HYR1oz0agaGTBvEu0T3SDANGhJhXTFV7hno3raS
9DbxpnyQfLdIMA3fs+8il2Z/F5ma0fSHxfl+OGgQIHRnmB09BLwI4mtgPn74A8QL
0dz5mhTk/ajjHy7IS4ZxdK2RfPcxwpCxGklEF7daYHb659rhHL/7mlUFjPTd4jaI
BORZzSXykoDjEs/4YKstMr4R1s+tuTumGooLomYM0JWqBIg9FPYQwjmq4sWw5jWj
fl3UN02qmlIXlyl1xa1z9vP9O24hfryikPI7e16/bT88tFStMw+t
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:04:16 2024 by rpki-client on console-ams.rpki-client.org