Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/914_ga3UMmvtKts0lYhztetP8tg.roa
File: 914_ga3UMmvtKts0lYhztetP8tg.roa (raw, json)
Hash identifier: vAaUOwgjO1SdYN5JuQ5PPw2cS8ZqRI29WXcD7dFkgc0=
Subject key identifier: F7:5E:3F:81:AD:D4:32:6B:ED:2A:DB:34:95:88:73:B5:EB:4F:F2:D8
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 0191079A65C4873C5F37FBB805182BAC3637
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/914_ga3UMmvtKts0lYhztetP8tg.roa
Signing time: Wed 31 Jul 2024 07:04:04 +0000
ROA not before: Wed 31 Jul 2024 07:04:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212422
IP address blocks: 193.59.94.0/24 maxlen: 24
193.59.95.0/24 maxlen: 24
193.59.98.0/24 maxlen: 24
193.59.102.0/24 maxlen: 24
193.59.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:07:9a:65:c4:87:3c:5f:37:fb:b8:05:18:2b:ac:36:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jul 31 07:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f75e3f81add4326bed2adb34958873b5eb4ff2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:97:2f:bc:09:72:62:8b:46:a2:66:88:30:c7:
f2:c2:bf:05:8c:06:59:1c:6d:c9:62:22:c4:99:33:
0e:2c:e0:e6:1c:4b:37:f9:d2:9a:3a:1a:22:49:94:
1d:f2:d6:f7:c5:ab:6e:12:e9:92:01:c0:ec:e4:5a:
4e:ab:4c:1d:02:8b:5b:c1:73:cb:4f:63:da:4c:34:
6b:e9:c3:d4:c2:a7:b3:1b:a7:97:80:2b:29:59:c2:
35:b7:4e:19:77:e6:f9:20:91:50:63:a9:aa:0d:e9:
46:d2:d7:02:df:b2:76:24:5b:51:7b:e9:fb:80:e3:
fa:44:4b:2f:11:bc:c0:b9:77:34:ca:82:be:02:14:
90:cf:c3:22:29:01:d5:2b:03:92:ef:62:dd:f9:d3:
c1:ba:f7:52:c1:2a:1c:9d:94:a4:30:4a:eb:29:4d:
12:ff:4e:98:3f:e7:eb:0a:fd:be:f7:0b:1d:bf:ae:
00:1c:62:bf:0f:ea:3b:1e:ce:e8:df:66:4a:21:bf:
08:a7:32:8b:5e:18:ee:15:8e:14:06:fe:79:50:ae:
9d:01:87:9a:eb:be:02:89:d2:b9:a4:fe:19:74:ec:
8c:b4:aa:86:eb:84:67:85:52:c4:6d:cf:f6:c4:6c:
38:8d:9d:37:4d:40:37:96:75:54:f6:d5:12:27:9b:
83:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5E:3F:81:AD:D4:32:6B:ED:2A:DB:34:95:88:73:B5:EB:4F:F2:D8
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/914_ga3UMmvtKts0lYhztetP8tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.94.0/23
193.59.98.0/24
193.59.102.0/23
Signature Algorithm: sha256WithRSAEncryption
70:4d:90:f8:8f:e0:8e:b5:e2:b7:d1:6d:03:02:0b:64:07:e1:
cc:fe:61:c6:d6:a4:9d:ef:ae:20:32:b3:ff:cc:d4:df:d5:8d:
00:1e:38:a1:81:06:1e:1c:3a:68:e6:07:43:2a:c9:ae:4b:68:
86:20:1e:a3:b8:57:d4:f6:c3:e8:11:fc:fb:77:26:bd:b3:75:
d9:7a:cf:c2:b1:64:de:d3:7c:fe:76:ed:17:38:2a:38:dc:3e:
58:81:21:5d:47:9a:8f:73:ba:54:6b:58:ad:27:ee:c7:ba:45:
b0:ba:4e:f6:36:c2:35:29:4a:94:5b:a7:91:18:2e:52:24:2a:
b6:7a:46:d3:18:4e:46:44:c0:61:fc:74:11:9f:85:6e:a0:7e:
26:4a:cd:7d:0f:c4:e3:45:54:d5:05:54:e1:59:14:3e:18:97:
21:a4:f7:74:a3:23:6b:f5:bc:e7:9a:e0:87:62:24:fa:03:0d:
c3:38:c0:2d:dc:88:63:66:0a:dc:11:97:a2:17:22:80:59:3b:
50:8f:65:9c:11:ec:2f:3b:e6:5f:e7:9d:78:2c:80:f3:7a:90:
7a:00:fa:c2:13:a5:7b:91:4a:a9:75:de:d1:57:d6:7a:a5:d5:
d1:6c:15:07:01:37:5d:40:95:04:4c:84:2a:30:e2:c0:61:c1:
77:2a:c5:38
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZEHmmXEhzxfN/u4BRgrrDY3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjQwNzMxMDcwNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzVlM2Y4MWFkZDQzMjZiZWQyYWRiMzQ5NTg4NzNiNWViNGZmMmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5cvvAlyYotGomaIMMfywr8FjAZZ
HG3JYiLEmTMOLODmHEs3+dKaOhoiSZQd8tb3xatuEumSAcDs5FpOq0wdAotbwXPL
T2PaTDRr6cPUwqezG6eXgCspWcI1t04Zd+b5IJFQY6mqDelG0tcC37J2JFtRe+n7
gOP6REsvEbzAuXc0yoK+AhSQz8MiKQHVKwOS72Ld+dPBuvdSwSocnZSkMErrKU0S
/06YP+frCv2+9wsdv64AHGK/D+o7Hs7o32ZKIb8IpzKLXhjuFY4UBv55UK6dAYea
674CidK5pP4ZdOyMtKqG64RnhVLEbc/2xGw4jZ03TUA3lnVU9tUSJ5uDWwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFPdeP4Gt1DJr7SrbNJWIc7XrT/LYMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvOTE0X2dhM1VNbXZ0S3RzMGxZaHp0ZXRQOHRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBwTteAwQA
wTtiAwQBwTtmMA0GCSqGSIb3DQEBCwUAA4IBAQBwTZD4j+COteK30W0DAgtkB+HM
/mHG1qSd764gMrP/zNTf1Y0AHjihgQYeHDpo5gdDKsmuS2iGIB6juFfU9sPoEfz7
dya9s3XZes/CsWTe03z+du0XOCo43D5YgSFdR5qPc7pUa1itJ+7HukWwuk72NsI1
KUqUW6eRGC5SJCq2ekbTGE5GRMBh/HQRn4VuoH4mSs19D8TjRVTVBVThWRQ+GJch
pPd0oyNr9bznmuCHYiT6Aw3DOMAt3IhjZgrcEZeiFyKAWTtQj2WcEewvO+Zf5514
LIDzepB6APrCE6V7kUqpdd7RV9Z6pdXRbBUHATddQJUETIQqMOLAYcF3KsU4
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:27:38 2024 by rpki-client on console-ams.rpki-client.org