Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iruQ_xOxBjHzjqA93_6-2IWAt58.roa
File: iruQ_xOxBjHzjqA93_6-2IWAt58.roa (raw, json)
Hash identifier: MT7EAScpGHszYfC5jVR5KwnC68o3OZETL1jKiNLtqoE=
Subject key identifier: 8A:BB:90:FF:13:B1:06:31:F3:8E:A0:3D:DF:FE:BE:D8:85:80:B7:9F
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0192BB5DC3D16E3B1766E345773CA815BC42
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iruQ_xOxBjHzjqA93_6-2IWAt58.roa
Signing time: Wed 23 Oct 2024 21:52:17 +0000
ROA not before: Wed 23 Oct 2024 21:52:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205021
IP address blocks: 163.5.15.0/24 maxlen: 24
163.5.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bb:5d:c3:d1:6e:3b:17:66:e3:45:77:3c:a8:15:bc:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Oct 23 21:52:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8abb90ff13b10631f38ea03ddffebed88580b79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:33:f7:90:4e:69:9a:da:6d:50:43:85:d2:
a7:a1:fd:e7:3f:8f:1e:bd:63:73:53:ac:a6:0c:6f:
2e:44:be:27:2c:e0:50:56:1f:7d:af:b0:f6:7e:0f:
1c:72:d9:68:9d:73:71:67:bc:b7:27:03:fd:1b:48:
3e:eb:5f:c2:07:60:bb:22:fd:15:e7:d5:05:52:36:
aa:44:13:d8:a7:e9:c0:7d:18:09:d1:3f:58:a4:cb:
00:4c:f9:25:95:eb:1a:6e:b6:49:d0:ba:a3:ab:9f:
85:ae:c5:d1:bc:74:95:de:a5:24:e7:25:4e:62:a8:
04:46:6d:5f:f7:8d:cf:6f:a1:ff:05:ff:ea:52:4c:
01:09:00:79:1a:f0:7c:2d:20:fb:88:0e:86:37:9d:
8c:cc:81:23:6b:69:91:d7:bc:25:4c:91:d6:ed:5c:
5b:4c:03:17:09:d0:dd:04:66:94:85:22:b5:6e:bf:
f6:fa:29:57:09:af:1e:bb:0c:ff:19:a8:c2:aa:b3:
6f:f9:53:78:30:d4:45:b3:4a:e9:eb:45:17:36:8e:
01:9c:6d:e7:55:70:9c:0b:6c:1f:eb:d2:2e:49:74:
7e:97:a9:dd:89:f4:e4:da:e3:59:3a:c1:fd:0e:15:
ff:25:0d:0a:41:f1:dd:0d:a6:b8:e0:91:66:6f:b2:
b0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BB:90:FF:13:B1:06:31:F3:8E:A0:3D:DF:FE:BE:D8:85:80:B7:9F
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/iruQ_xOxBjHzjqA93_6-2IWAt58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.15.0/24
163.5.107.0/24
Signature Algorithm: sha256WithRSAEncryption
25:a1:68:9d:1d:4b:a9:f4:9d:d0:23:48:cd:56:f5:91:c4:b4:
d5:a0:36:47:53:0d:c6:32:7c:27:ef:b9:ec:80:5e:b8:9c:50:
cc:31:83:c3:8c:c0:95:6c:61:c6:90:0d:5a:60:39:fc:0c:d0:
83:37:92:0b:4b:17:fb:d5:df:0f:c6:ad:2d:0a:03:b9:fd:8f:
19:2c:51:15:17:26:e4:fb:ce:0f:e8:81:81:58:40:4a:16:58:
9c:fa:c4:41:f2:e4:61:20:72:8e:ca:f3:ba:ab:51:31:1a:ed:
cd:93:4b:fc:64:51:1b:4c:18:a6:b5:21:f6:b2:07:f2:b2:d7:
64:6d:6e:39:67:da:7b:8d:0d:8b:d7:94:51:1c:92:8a:5e:4b:
60:2d:e9:00:68:ca:ef:29:6e:9d:cd:f7:77:0c:ea:eb:85:bd:
63:f7:c5:64:9c:e7:7b:b2:57:f0:b4:68:3c:df:8d:ca:32:e5:
73:e7:70:e8:d5:77:27:2b:84:02:c7:8b:b7:34:f2:2c:49:ac:
78:07:c8:be:a4:6a:70:9c:3f:38:23:e3:20:ad:90:d5:8b:dd:
69:42:fc:44:9e:1f:98:47:fc:b7:82:c9:3e:44:5d:54:ef:14:
00:90:91:90:52:13:cb:5c:e4:a7:fc:c9:b1:77:d4:a6:d9:d5:
77:60:c6:12
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZK7XcPRbjsXZuNFdzyoFbxCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2
MjRiY2IwHhcNMjQxMDIzMjE1MjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWJiOTBmZjEzYjEwNjMxZjM4ZWEwM2RkZmZlYmVkODg1ODBiNzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQUz95BOaZrabVBDhdKnof3nP48e
vWNzU6ymDG8uRL4nLOBQVh99r7D2fg8cctlonXNxZ7y3JwP9G0g+61/CB2C7Iv0V
59UFUjaqRBPYp+nAfRgJ0T9YpMsATPkllesabrZJ0Lqjq5+FrsXRvHSV3qUk5yVO
YqgERm1f943Pb6H/Bf/qUkwBCQB5GvB8LSD7iA6GN52MzIEja2mR17wlTJHW7Vxb
TAMXCdDdBGaUhSK1br/2+ilXCa8euwz/GajCqrNv+VN4MNRFs0rp60UXNo4BnG3n
VXCcC2wf69IuSXR+l6ndifTk2uNZOsH9DhX/JQ0KQfHdDaa44JFmb7KwYwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIq7kP8TsQYx846gPd/+vtiFgLefMB8GA1UdIwQY
MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt
OWZlOTQxMDhmZjAxLzEvaXJ1UV94T3hCakh6anFBOTNfNi0ySVdBdDU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx
LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAowUPAwQA
owVrMA0GCSqGSIb3DQEBCwUAA4IBAQAloWidHUup9J3QI0jNVvWRxLTVoDZHUw3G
Mnwn77nsgF64nFDMMYPDjMCVbGHGkA1aYDn8DNCDN5ILSxf71d8Pxq0tCgO5/Y8Z
LFEVFybk+84P6IGBWEBKFlic+sRB8uRhIHKOyvO6q1ExGu3Nk0v8ZFEbTBimtSH2
sgfystdkbW45Z9p7jQ2L15RRHJKKXktgLekAaMrvKW6dzfd3DOrrhb1j98VknOd7
slfwtGg8343KMuVz53Do1XcnK4QCx4u3NPIsSax4B8i+pGpwnD84I+MgrZDVi91p
QvxEnh+YR/y3gsk+RF1U7xQAkJGQUhPLXOSn/Mmxd9Sm2dV3YMYS
-----END CERTIFICATE-----
Generated at Fri Nov 22 11:47:08 2024 by rpki-client on console-fra.rpki-client.org