Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/qhacopoCxb0GvWmi6Dsew4WUrlU.roa
File: qhacopoCxb0GvWmi6Dsew4WUrlU.roa (raw, json)
Hash identifier: gchh6VEGyHxRmGHOXDkK8QXuI0ViMdcTXzGGElb3hNA=
Subject key identifier: AA:16:9C:A2:9A:02:C5:BD:06:BD:69:A2:E8:3B:1E:C3:85:94:AE:55
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018CC4933715818A315B9E5ACC3ED93EF32D
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/qhacopoCxb0GvWmi6Dsew4WUrlU.roa
Signing time: Mon 01 Jan 2024 10:30:31 +0000
ROA not before: Mon 01 Jan 2024 10:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44547
IP address blocks: 185.118.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:37:15:81:8a:31:5b:9e:5a:cc:3e:d9:3e:f3:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 10:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa169ca29a02c5bd06bd69a2e83b1ec38594ae55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:98:ef:cc:18:ff:20:98:6e:2e:6e:f4:f5:db:
00:58:b2:29:62:c5:25:0b:ca:16:1f:28:40:a1:0c:
0d:2d:e9:ef:44:eb:04:97:ee:60:04:89:46:60:12:
f4:0f:dc:cb:14:be:66:5f:bc:b1:77:64:92:a4:e4:
6b:81:41:25:5e:a9:b3:2a:70:d1:20:0e:df:50:a5:
eb:7a:3d:78:8f:ad:98:6d:4f:2a:b0:01:c7:0c:0a:
16:b9:bd:34:ab:a4:c2:62:85:38:ea:d6:1d:4a:5f:
13:85:ba:9f:93:c9:4a:57:6e:22:9c:ab:bc:5b:9b:
65:0f:e0:95:dc:f3:13:bc:91:50:94:34:e9:81:ca:
cd:6a:b1:05:3d:cf:af:8b:53:c0:82:43:fd:96:7f:
19:2a:9e:5e:e2:1d:5d:34:26:e3:56:62:13:20:3e:
ed:4b:12:21:f9:9b:de:af:93:ca:f2:33:09:ca:31:
89:d3:91:e7:1f:e4:ab:10:09:0c:bb:d2:c9:21:9b:
ed:e6:af:01:15:2b:ed:23:22:ca:19:b8:69:8e:ec:
db:ca:e9:f9:84:73:81:1a:b1:6a:7e:b2:9f:b0:e5:
8c:55:7d:81:c3:03:bd:fb:55:cc:3b:fc:e1:e7:61:
62:c8:dd:ef:af:4c:3f:82:25:0b:a0:d3:92:c0:f5:
aa:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:16:9C:A2:9A:02:C5:BD:06:BD:69:A2:E8:3B:1E:C3:85:94:AE:55
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/qhacopoCxb0GvWmi6Dsew4WUrlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.141.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:5e:12:d6:02:85:30:48:2d:20:b8:a5:5a:83:f0:33:a0:07:
95:99:25:d9:97:2f:d1:f2:70:c2:dd:74:da:47:aa:1e:6e:91:
94:97:a8:5b:65:31:fa:09:1c:79:41:71:07:e9:0f:00:39:bf:
94:89:83:03:9b:0e:bc:a2:2b:5b:c3:48:42:8d:0b:07:07:d7:
1a:36:e2:ef:24:22:62:61:6c:df:08:59:49:70:4e:f6:9e:ab:
f4:f9:77:a5:fd:b7:3a:28:7a:0d:ae:b1:07:fb:46:11:87:ba:
97:32:be:db:3b:36:d9:37:f1:23:88:75:c2:79:5d:9d:a1:73:
c8:d7:76:a5:e0:59:b7:3a:40:69:30:4a:aa:63:24:d4:15:6d:
34:9d:fb:57:82:28:27:75:b4:0d:8d:5c:f2:86:1b:a7:c0:80:
47:ad:85:b1:84:ee:08:15:46:8f:8e:d9:38:0b:b3:5e:70:e1:
3a:f7:23:2a:5e:28:91:c6:7e:fa:4f:28:d6:6c:2e:b8:1c:3c:
b1:49:a3:3f:d7:3b:50:33:7f:d3:5f:40:37:45:ba:c1:1e:e2:
43:e1:3e:95:fa:b7:63:6e:56:00:9f:25:bc:5b:50:a5:d4:54:
c1:72:fd:bc:fc:44:96:56:cf:7d:ce:07:89:0e:48:72:dc:14:
dd:86:6f:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEkzcVgYoxW55azD7ZPvMtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMjRkZWZiYWFkZTkzZTk5OGUxM2E5NDIwMjlkZDU5M2I4
YjJlYTMwHhcNMjQwMTAxMTAzMDMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTE2OWNhMjlhMDJjNWJkMDZiZDY5YTJlODNiMWVjMzg1OTRhZTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ZjvzBj/IJhuLm709dsAWLIpYsUl
C8oWHyhAoQwNLenvROsEl+5gBIlGYBL0D9zLFL5mX7yxd2SSpORrgUElXqmzKnDR
IA7fUKXrej14j62YbU8qsAHHDAoWub00q6TCYoU46tYdSl8Thbqfk8lKV24inKu8
W5tlD+CV3PMTvJFQlDTpgcrNarEFPc+vi1PAgkP9ln8ZKp5e4h1dNCbjVmITID7t
SxIh+Zver5PK8jMJyjGJ05HnH+SrEAkMu9LJIZvt5q8BFSvtIyLKGbhpjuzbyun5
hHOBGrFqfrKfsOWMVX2BwwO9+1XMO/zh52FiyN3vr0w/giULoNOSwPWqIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKoWnKKaAsW9Br1poug7HsOFlK5VMB8GA1UdIwQY
MBaAFFMk3vuq3pPpmOE6lCAp3Vk7iy6jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXlUZS02cmVrLW1ZNFRxVUlDbmRXVHVMTHFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yOTRlODQtY2ZjNS00NWE0LWE1Y2Qt
MzNiNzQ1OTk3NWUwLzEvcWhhY29wb0N4YjBHdldtaTZEc2V3NFdVcmxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8yOTRlODQtY2ZjNS00NWE0LWE1Y2QtMzNiNzQ1OTk3NWUw
LzEvVXlUZS02cmVrLW1ZNFRxVUlDbmRXVHVMTHFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXaNMA0G
CSqGSIb3DQEBCwUAA4IBAQCKXhLWAoUwSC0guKVag/AzoAeVmSXZly/R8nDC3XTa
R6oebpGUl6hbZTH6CRx5QXEH6Q8AOb+UiYMDmw68oitbw0hCjQsHB9caNuLvJCJi
YWzfCFlJcE72nqv0+Xel/bc6KHoNrrEH+0YRh7qXMr7bOzbZN/EjiHXCeV2doXPI
13al4Fm3OkBpMEqqYyTUFW00nftXgigndbQNjVzyhhunwIBHrYWxhO4IFUaPjtk4
C7NecOE69yMqXiiRxn76TyjWbC64HDyxSaM/1ztQM3/TX0A3RbrBHuJD4T6V+rdj
blYAnyW8W1Cl1FTBcv28/ESWVs99zgeJDkhy3BTdhm8h
-----END CERTIFICATE-----
Generated at Sat Jun 8 09:18:05 2024 by rpki-client on console-fra.rpki-client.org