Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/NIsqSVrDqCkT_DxOkHHBW617cU0.roa
File: NIsqSVrDqCkT_DxOkHHBW617cU0.roa (raw, json)
Hash identifier: skAMXVQOHa8CfxG5QlHScEd2fCQNoz6ddPlHo1Epphc=
Subject key identifier: 34:8B:2A:49:5A:C3:A8:29:13:FC:3C:4E:90:71:C1:5B:AD:7B:71:4D
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 018CC94E06C33AAFE17B39C8875F5F865FF6
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/NIsqSVrDqCkT_DxOkHHBW617cU0.roa
Signing time: Tue 02 Jan 2024 08:33:03 +0000
ROA not before: Tue 02 Jan 2024 08:33:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203508
IP address blocks: 194.181.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:06:c3:3a:af:e1:7b:39:c8:87:5f:5f:86:5f:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 2 08:33:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=348b2a495ac3a82913fc3c4e9071c15bad7b714d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4d:9f:f5:f5:f1:11:01:66:31:5a:e0:43:88:
04:37:42:14:c1:e7:d2:3d:b3:69:9c:dd:66:04:84:
19:5e:41:67:6c:be:f2:31:ff:7a:49:dd:5e:d2:2e:
91:11:f5:22:f2:8c:dd:4d:26:65:29:02:64:bc:da:
0f:41:d3:81:11:9e:dc:84:8e:46:6e:61:97:fd:81:
eb:32:d1:0f:66:45:54:7e:e2:0c:b1:ea:9b:52:1c:
b5:2a:bf:f0:b9:4f:71:54:73:2c:c5:66:f6:49:39:
5b:85:b1:e3:10:3b:a8:0d:7d:63:14:67:98:33:bd:
06:e4:f4:4c:c9:3d:53:17:a3:f6:f4:64:be:09:2d:
5d:52:1c:fd:93:a4:80:82:9b:6e:bf:d1:5b:26:30:
23:44:f6:32:d2:70:00:da:06:c2:2e:8b:ec:f0:85:
47:71:37:dc:0d:a6:f6:41:57:2f:b9:a6:7e:b6:80:
93:f7:74:24:ca:0e:4c:78:ef:03:21:55:98:8c:01:
30:f2:8b:90:b2:1e:bd:d0:22:ed:b6:c1:f2:db:53:
4c:42:94:28:36:ae:69:6b:3c:bf:ab:1d:b1:7f:84:
92:9a:a3:0e:61:7d:d9:7c:bf:df:a8:6c:41:91:55:
65:7b:a9:4b:7e:4f:1b:bb:81:4f:cc:e0:f2:17:f2:
1f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8B:2A:49:5A:C3:A8:29:13:FC:3C:4E:90:71:C1:5B:AD:7B:71:4D
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/NIsqSVrDqCkT_DxOkHHBW617cU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.45.0/24
Signature Algorithm: sha256WithRSAEncryption
35:95:72:7f:1c:9b:2b:61:a9:81:b6:55:5c:ca:23:a8:f0:58:
1a:81:0d:a9:fd:1e:e8:c8:a2:6f:06:42:f1:54:52:39:e1:67:
07:9c:3b:0f:8c:4f:d1:af:90:d3:31:9c:20:f1:81:2b:f1:3b:
e0:45:2e:96:04:24:c3:0a:5f:ef:e2:8a:0f:1b:44:dc:2b:ad:
65:fe:da:4a:09:27:09:d0:74:05:3e:54:66:87:d0:81:7a:32:
d8:98:89:2b:fb:0a:87:9a:df:9d:ad:b0:ed:8d:e0:b3:f1:90:
23:c2:29:a7:05:d7:53:99:08:15:49:7c:6a:3b:48:80:6b:18:
68:ac:6f:a8:92:f8:79:c2:69:33:f3:d4:0e:c0:4c:fc:8b:2a:
df:8e:34:6f:7e:05:1f:64:aa:64:b3:7f:88:22:c5:4f:51:91:
c5:06:39:88:05:57:3e:24:10:17:90:df:90:a4:b5:30:02:6f:
cb:54:05:2f:7c:1c:58:27:37:17:8b:87:1d:0d:d9:f4:4b:27:
ba:f8:2f:0d:4d:f7:e8:b2:75:d6:fd:61:76:28:ee:8f:75:35:
a6:97:0e:3d:34:cd:35:6d:92:ca:a3:73:b5:df:d0:33:c1:96:
b3:86:02:94:87:e5:fb:a8:ef:c0:58:72:ba:f3:19:ac:6b:b3:
e3:d1:36:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTgbDOq/heznIh19fhl/2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjQwMTAyMDgzMzAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNDhiMmE0OTVhYzNhODI5MTNmYzNjNGU5MDcxYzE1YmFkN2I3MTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtU2f9fXxEQFmMVrgQ4gEN0IUwefS
PbNpnN1mBIQZXkFnbL7yMf96Sd1e0i6REfUi8ozdTSZlKQJkvNoPQdOBEZ7chI5G
bmGX/YHrMtEPZkVUfuIMseqbUhy1Kr/wuU9xVHMsxWb2STlbhbHjEDuoDX1jFGeY
M70G5PRMyT1TF6P29GS+CS1dUhz9k6SAgptuv9FbJjAjRPYy0nAA2gbCLovs8IVH
cTfcDab2QVcvuaZ+toCT93Qkyg5MeO8DIVWYjAEw8ouQsh690CLttsHy21NMQpQo
Nq5pazy/qx2xf4SSmqMOYX3ZfL/fqGxBkVVle6lLfk8bu4FPzODyF/IfEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDSLKklaw6gpE/w8TpBxwVute3FNMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvTklzcVNWckRxQ2tUX0R4T2tISEJXNjE3Y1UwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwrUtMA0G
CSqGSIb3DQEBCwUAA4IBAQA1lXJ/HJsrYamBtlVcyiOo8FgagQ2p/R7oyKJvBkLx
VFI54WcHnDsPjE/Rr5DTMZwg8YEr8TvgRS6WBCTDCl/v4ooPG0TcK61l/tpKCScJ
0HQFPlRmh9CBejLYmIkr+wqHmt+drbDtjeCz8ZAjwimnBddTmQgVSXxqO0iAaxho
rG+okvh5wmkz89QOwEz8iyrfjjRvfgUfZKpks3+IIsVPUZHFBjmIBVc+JBAXkN+Q
pLUwAm/LVAUvfBxYJzcXi4cdDdn0Sye6+C8NTffosnXW/WF2KO6PdTWmlw49NM01
bZLKo3O139AzwZazhgKUh+X7qO/AWHK68xmsa7Pj0TbU
-----END CERTIFICATE-----
Generated at Sat Nov 23 20:27:38 2024 by rpki-client on console-ams.rpki-client.org