Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/02ODEouefmE3VCVfoI3IKhk6WyE.roa
File: 02ODEouefmE3VCVfoI3IKhk6WyE.roa (raw, json)
Hash identifier: L2KHKHkHDwKwgD27XZCpZJC1RMAZyw+1UAiIBahzl5E=
Subject key identifier: D3:63:83:12:8B:9E:7E:61:37:54:25:5F:A0:8D:C8:2A:19:3A:5B:21
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0194236A41580F1B2E2A50C8308DD7928E20
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/02ODEouefmE3VCVfoI3IKhk6WyE.roa
Signing time: Wed 01 Jan 2025 19:49:13 +0000
ROA not before: Wed 01 Jan 2025 19:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205021
IP address blocks: 163.5.15.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:41:58:0f:1b:2e:2a:50:c8:30:8d:d7:92:8e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jan 1 19:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d36383128b9e7e613754255fa08dc82a193a5b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c3:cc:ef:cb:7b:8a:52:6b:03:d4:23:52:31:
29:b4:ae:af:7c:79:d3:16:d8:ac:63:43:ab:8d:ec:
07:42:08:64:08:82:04:0a:37:f8:2b:99:b6:38:50:
32:96:b5:b7:40:c2:0a:15:b2:5c:50:e3:40:7b:a2:
3a:43:98:18:de:2d:25:7b:58:71:58:2e:2a:9a:2c:
bd:8a:40:53:5a:6a:95:5d:08:d0:a1:53:21:be:57:
e2:b7:75:66:10:fd:2c:dc:2d:4e:2d:26:bd:1c:70:
18:9a:cd:16:24:5f:7c:a7:de:1f:de:6e:7b:80:f3:
7d:af:fd:b6:03:5d:74:7d:4e:dd:00:c3:8b:4f:36:
79:b2:f0:86:91:15:9b:93:2f:16:e0:5a:8d:5c:ff:
e8:ba:4c:63:2f:3a:74:9a:86:40:6e:90:d7:c2:b1:
b5:5f:85:d2:87:67:60:f7:a1:59:0f:6e:2d:2c:c3:
c3:12:39:20:dc:7a:aa:47:60:0c:da:f7:94:5f:16:
7c:a5:42:51:f6:eb:94:ce:c0:07:75:a3:49:df:5b:
6d:e9:80:b4:2a:5e:51:ce:49:05:fc:39:05:89:ab:
f8:27:c5:9c:0a:7a:a5:ee:b4:fe:e2:0d:2f:a2:e2:
23:5d:df:78:4d:76:aa:b9:a4:b0:3f:d9:bc:cd:2c:
b4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:63:83:12:8B:9E:7E:61:37:54:25:5F:A0:8D:C8:2A:19:3A:5B:21
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/02ODEouefmE3VCVfoI3IKhk6WyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.15.0/24
163.5.107.0/24
Signature Algorithm: sha256WithRSAEncryption
01:11:4d:a5:33:a5:96:ce:ef:35:ea:d1:0d:d8:8e:3b:f6:de:
a8:2d:5e:38:e9:b4:4f:de:d6:30:e9:bf:40:e9:9a:95:cc:4a:
40:35:13:d4:54:7b:fe:22:61:8e:be:1c:50:b4:c9:84:e4:dc:
86:5a:af:e1:00:b4:96:fa:dc:20:bd:22:c5:66:52:8b:50:99:
25:c7:b6:d5:8f:de:81:fb:10:86:45:8c:ce:7a:37:11:46:ce:
23:2e:24:5d:fd:f8:bd:87:38:93:7b:6c:ad:b2:d3:0e:a5:4e:
25:b9:b4:c1:5a:86:31:3b:c5:3d:a4:3f:0e:5a:a7:1f:4e:8e:
d5:48:1d:f5:6d:5b:9c:4e:10:28:cf:63:85:f2:39:c8:e4:64:
d8:e8:5d:6f:a8:a6:f3:ba:d6:38:a8:87:6d:f6:f6:a0:74:37:
72:d4:63:3c:da:5e:6e:fe:9f:86:15:92:85:ca:79:0a:23:63:
13:2c:2e:16:01:b7:f5:0e:aa:23:2c:45:ce:60:e0:bf:24:6b:
7f:6e:1a:c9:2c:98:b0:9a:9c:f7:8c:3a:12:17:cf:68:8f:08:
55:55:5b:65:74:90:03:4e:3f:a0:ef:10:e1:cf:bf:2b:68:26:
29:95:2f:4d:46:2b:3e:97:c4:30:c0:40:a0:c3:ee:9c:05:3e:
01:53:fd:b4
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQjakFYDxsuKlDIMI3Xko4gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjUwMTAxMTk0OTEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzYzODMxMjhiOWU3ZTYxMzc1NDI1NWZhMDhkYzgyYTE5M2E1YjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsPM78t7ilJrA9QjUjEptK6vfHnT
FtisY0OrjewHQghkCIIECjf4K5m2OFAylrW3QMIKFbJcUONAe6I6Q5gY3i0le1hx
WC4qmiy9ikBTWmqVXQjQoVMhvlfit3VmEP0s3C1OLSa9HHAYms0WJF98p94f3m57
gPN9r/22A110fU7dAMOLTzZ5svCGkRWbky8W4FqNXP/oukxjLzp0moZAbpDXwrG1
X4XSh2dg96FZD24tLMPDEjkg3HqqR2AM2veUXxZ8pUJR9uuUzsAHdaNJ31tt6YC0
Kl5RzkkF/DkFiav4J8WcCnql7rT+4g0vouIjXd94TXaquaSwP9m8zSy0mwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNNjgxKLnn5hN1QlX6CNyCoZOlshMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvMDJPREVvdWVmbUUzVkNWZm9JM0lLaGs2V3lFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAowUPAwQA
owVrMA0GCSqGSIb3DQEBCwUAA4IBAQABEU2lM6WWzu816tEN2I479t6oLV446bRP
3tYw6b9A6ZqVzEpANRPUVHv+ImGOvhxQtMmE5NyGWq/hALSW+twgvSLFZlKLUJkl
x7bVj96B+xCGRYzOejcRRs4jLiRd/fi9hziTe2ytstMOpU4lubTBWoYxO8U9pD8O
WqcfTo7VSB31bVucThAoz2OF8jnI5GTY6F1vqKbzutY4qIdt9vagdDdy1GM82l5u
/p+GFZKFynkKI2MTLC4WAbf1DqojLEXOYOC/JGt/bhrJLJiwmpz3jDoSF89ojwhV
VVtldJADTj+g7xDhz78raCYplS9NRis+l8QwwECgw+6cBT4BU/20
-----END CERTIFICATE-----
Generated at Wed Feb 5 08:48:55 2025 by rpki-client