Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/cv50Ygj16I3buOe6GJNaAo3pwDM.roa
File: cv50Ygj16I3buOe6GJNaAo3pwDM.roa (raw, json)
Hash identifier: /nS2b4qZwGqCEOEuu2HsHK4EKSc62U+s+N23JnvwU8o=
Subject key identifier: 72:FE:74:62:08:F5:E8:8D:DB:B8:E7:BA:18:93:5A:02:8D:E9:C0:33
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 018CC94E0A5931A3A60A2ADFAAF33A148E06
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/cv50Ygj16I3buOe6GJNaAo3pwDM.roa
Signing time: Tue 02 Jan 2024 08:33:03 +0000
ROA not before: Tue 02 Jan 2024 08:33:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209316
IP address blocks: 193.59.132.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:0a:59:31:a3:a6:0a:2a:df:aa:f3:3a:14:8e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 2 08:33:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72fe746208f5e88ddbb8e7ba18935a028de9c033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c8:64:28:0c:60:a0:0e:b0:bd:c1:6a:1b:fa:
25:d0:3d:97:b4:c1:51:8a:dc:29:b6:4b:ff:87:4c:
15:9b:43:43:15:8d:bf:ed:be:62:fa:bd:5f:5d:90:
b5:d6:e8:bc:be:e1:2e:11:4a:07:6e:9e:80:88:f9:
63:ec:2b:f7:4a:41:f5:e6:c6:df:dd:cb:a6:26:1e:
bb:b6:64:64:50:d6:a0:ec:b5:ca:9c:f1:d6:df:7d:
c1:3e:e1:01:15:2a:6a:b3:ae:0c:ab:4e:31:7a:84:
e6:35:b2:18:a8:4b:c8:cc:2b:62:b2:e5:99:c2:b1:
86:13:6b:7d:98:b2:ec:d1:1b:be:11:e8:be:fa:70:
fe:67:73:1c:ff:18:d7:7d:32:f0:e3:45:b1:2e:e9:
ef:2b:51:d0:a8:c9:77:f1:20:77:30:65:53:aa:33:
05:4f:e6:b7:11:3b:97:7e:27:84:52:e9:d6:f6:c9:
28:7a:51:1a:d8:6c:1c:24:11:0a:ba:90:a7:24:b1:
c4:67:e2:55:8b:7a:23:54:72:7c:44:32:60:b6:c0:
57:42:fd:81:64:dc:3b:15:84:e3:17:9d:ed:6f:83:
80:48:c6:49:84:3e:c4:40:a4:47:bd:6a:73:a5:c7:
e0:64:07:6b:c7:01:ea:8d:f4:2d:46:e9:b0:9d:1e:
37:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FE:74:62:08:F5:E8:8D:DB:B8:E7:BA:18:93:5A:02:8D:E9:C0:33
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/cv50Ygj16I3buOe6GJNaAo3pwDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.132.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:d3:48:90:3b:2f:13:bf:a4:63:94:28:89:d0:db:0f:a6:f9:
fa:36:2e:e7:7c:52:29:3d:42:05:5d:95:4e:49:2a:7b:44:c9:
8f:1e:57:fc:e5:3e:c6:55:50:88:7e:cf:fb:08:90:ef:cf:0f:
5a:bd:15:25:44:31:d8:43:ee:6a:e7:5e:15:e7:d3:ff:60:f0:
94:24:42:02:8b:73:10:07:e8:1d:0d:1e:82:02:8e:25:df:87:
42:28:d8:0c:33:1c:f8:2c:ce:b5:13:7c:74:43:e2:2f:12:13:
b7:92:82:41:d2:f3:4e:92:83:16:00:ce:eb:21:23:93:fd:20:
e5:df:cc:e6:d3:d6:53:4a:17:44:44:96:86:56:16:67:2e:4c:
94:1e:09:32:fa:ba:ac:1a:8d:aa:0a:0c:97:73:6c:54:8f:e4:
4c:ec:28:e4:63:78:d0:fa:b2:39:58:7f:06:2a:a1:f1:15:0b:
4a:22:a9:e3:37:9e:70:43:b7:4f:f2:c9:d2:ad:25:0e:e2:1f:
33:ac:02:16:54:60:ed:86:47:60:98:62:4e:e0:dc:9d:9c:34:
51:a9:27:43:e7:ef:dc:29:12:44:ce:50:7d:5e:7d:35:51:1e:
f8:13:f1:3c:e9:6b:97:a1:7b:3e:d9:1d:0c:73:34:4c:77:29:
5a:b9:d6:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTgpZMaOmCirfqvM6FI4GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjQwMTAyMDgzMzAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MmZlNzQ2MjA4ZjVlODhkZGJiOGU3YmExODkzNWEwMjhkZTljMDMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8hkKAxgoA6wvcFqG/ol0D2XtMFR
itwptkv/h0wVm0NDFY2/7b5i+r1fXZC11ui8vuEuEUoHbp6AiPlj7Cv3SkH15sbf
3cumJh67tmRkUNag7LXKnPHW333BPuEBFSpqs64Mq04xeoTmNbIYqEvIzCtisuWZ
wrGGE2t9mLLs0Ru+Eei++nD+Z3Mc/xjXfTLw40WxLunvK1HQqMl38SB3MGVTqjMF
T+a3ETuXfieEUunW9skoelEa2GwcJBEKupCnJLHEZ+JVi3ojVHJ8RDJgtsBXQv2B
ZNw7FYTjF53tb4OASMZJhD7EQKRHvWpzpcfgZAdrxwHqjfQtRumwnR43GQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHL+dGII9eiN27jnuhiTWgKN6cAzMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvY3Y1MFlnajE2STNidU9lNkdKTmFBbzNwd0RNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwTuEMA0G
CSqGSIb3DQEBCwUAA4IBAQBP00iQOy8Tv6RjlCiJ0NsPpvn6Ni7nfFIpPUIFXZVO
SSp7RMmPHlf85T7GVVCIfs/7CJDvzw9avRUlRDHYQ+5q514V59P/YPCUJEICi3MQ
B+gdDR6CAo4l34dCKNgMMxz4LM61E3x0Q+IvEhO3koJB0vNOkoMWAM7rISOT/SDl
38zm09ZTShdERJaGVhZnLkyUHgky+rqsGo2qCgyXc2xUj+RM7CjkY3jQ+rI5WH8G
KqHxFQtKIqnjN55wQ7dP8snSrSUO4h8zrAIWVGDthkdgmGJO4NydnDRRqSdD5+/c
KRJEzlB9Xn01UR74E/E86WuXoXs+2R0MczRMdylaudYN
-----END CERTIFICATE-----
Generated at Sat Nov 23 18:56:09 2024 by rpki-client on console-fra.rpki-client.org