Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/JniKFTAlQvzCRjwL_MQOJwakN6Y.roa
File: JniKFTAlQvzCRjwL_MQOJwakN6Y.roa (raw, json)
Hash identifier: XGCwWj3fSeQhYvc9Gk8bBdQygJfkLX7pIx0vL2ueFEQ=
Subject key identifier: 26:78:8A:15:30:25:42:FC:C2:46:3C:0B:FC:C4:0E:27:06:A4:37:A6
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64AF30BC8C3A2A93916F2F0770A6732
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/JniKFTAlQvzCRjwL_MQOJwakN6Y.roa
Signing time: Mon 01 Jan 2024 18:30:49 +0000
ROA not before: Mon 01 Jan 2024 18:30:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199429
IP address blocks: 217.156.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:f3:0b:c8:c3:a2:a9:39:16:f2:f0:77:0a:67:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26788a15302542fcc2463c0bfcc40e2706a437a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a3:b1:67:54:45:13:44:ce:94:74:95:5e:b4:
5a:f5:a5:07:5f:92:1a:9e:90:da:07:f9:84:83:62:
80:78:bc:30:b2:97:f0:44:00:44:5c:e8:79:47:90:
c3:65:2f:6a:97:89:1d:55:5b:61:15:c5:f3:57:30:
94:a7:13:31:5d:1f:15:8b:cd:95:15:2e:c9:4a:59:
bf:57:37:39:66:6e:5f:48:a1:d5:db:c3:f3:cc:05:
1b:3b:79:36:4a:0a:99:51:81:29:8d:fa:22:6e:31:
b6:c7:3f:a6:74:ea:d0:fa:0c:fa:23:ed:44:6a:a9:
af:b7:09:08:c1:74:47:86:62:e6:97:aa:49:51:9f:
96:77:f8:b3:5b:4f:62:15:70:29:3a:af:ed:bc:bf:
f4:ab:c3:2a:95:9b:c8:1d:f4:3b:a9:d7:66:a3:c1:
55:93:f7:58:01:d8:e0:f3:90:9e:1a:6b:e5:e0:f2:
ef:56:fd:2e:d2:77:ca:6b:8e:5c:69:aa:70:ee:54:
40:84:ef:b9:17:e0:eb:cc:70:e5:3c:00:97:05:79:
22:a5:6e:a5:86:4b:83:86:95:67:f3:25:35:c1:fe:
40:56:57:3b:60:33:e8:42:42:32:ff:f4:f7:ae:d9:
e4:1c:60:55:7b:e9:97:3e:80:d2:80:5a:62:24:c9:
2d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:78:8A:15:30:25:42:FC:C2:46:3C:0B:FC:C4:0E:27:06:A4:37:A6
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/JniKFTAlQvzCRjwL_MQOJwakN6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.90.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:fe:63:72:c6:88:b8:9c:8a:5f:f1:86:d0:d3:fa:dc:ef:13:
51:64:29:ac:ef:be:0a:6c:a8:b7:f8:e0:ca:06:10:ac:2d:a5:
9e:db:14:9e:ed:2b:0c:87:85:89:21:7e:9d:af:78:b5:29:d0:
0b:e3:b3:07:4f:68:ac:89:d8:4f:33:81:52:67:dd:aa:40:a5:
3f:cc:f4:25:57:7e:a5:f3:65:58:2e:20:93:4a:ed:e1:6b:45:
5c:4d:61:bf:c3:a9:a2:1a:be:2f:d5:d9:94:15:fa:5c:70:92:
59:e4:57:89:2e:7a:2c:dd:25:0b:87:00:7a:8a:cc:a2:26:53:
a2:fd:c0:e6:7e:61:3a:a5:f0:60:54:b4:d0:a8:ac:9f:58:5a:
bd:25:44:49:ab:27:58:46:66:2c:1d:58:14:5e:16:b5:3b:64:
49:20:23:25:38:ec:1e:34:60:3d:16:2f:c2:f7:87:00:aa:20:
22:79:1f:c3:c0:a5:c8:28:08:9a:4b:2c:e0:9b:50:81:ac:19:
53:55:05:f8:e0:a7:a8:ff:51:44:6e:bb:c7:e8:02:9a:3c:63:
1d:c3:60:2d:1c:43:59:aa:5a:91:ee:5b:80:24:04:c7:39:08:
a4:c1:c2:d1:1b:da:93:04:ce:65:aa:02:21:c8:4e:c4:bb:2b:
a1:86:fc:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGSvMLyMOiqTkW8vB3CmcyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQwMTAxMTgzMDQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjc4OGExNTMwMjU0MmZjYzI0NjNjMGJmY2M0MGUyNzA2YTQzN2E2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKOxZ1RFE0TOlHSVXrRa9aUHX5Ia
npDaB/mEg2KAeLwwspfwRABEXOh5R5DDZS9ql4kdVVthFcXzVzCUpxMxXR8Vi82V
FS7JSlm/Vzc5Zm5fSKHV28PzzAUbO3k2SgqZUYEpjfoibjG2xz+mdOrQ+gz6I+1E
aqmvtwkIwXRHhmLml6pJUZ+Wd/izW09iFXApOq/tvL/0q8MqlZvIHfQ7qddmo8FV
k/dYAdjg85CeGmvl4PLvVv0u0nfKa45caapw7lRAhO+5F+DrzHDlPACXBXkipW6l
hkuDhpVn8yU1wf5AVlc7YDPoQkIy//T3rtnkHGBVe+mXPoDSgFpiJMktUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCZ4ihUwJUL8wkY8C/zEDicGpDemMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvSm5pS0ZUQWxRdnpDUmp3TF9NUU9Kd2FrTjZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2ZxaMA0G
CSqGSIb3DQEBCwUAA4IBAQBf/mNyxoi4nIpf8YbQ0/rc7xNRZCms774KbKi3+ODK
BhCsLaWe2xSe7SsMh4WJIX6dr3i1KdAL47MHT2isidhPM4FSZ92qQKU/zPQlV36l
82VYLiCTSu3ha0VcTWG/w6miGr4v1dmUFfpccJJZ5FeJLnos3SULhwB6isyiJlOi
/cDmfmE6pfBgVLTQqKyfWFq9JURJqydYRmYsHVgUXha1O2RJICMlOOweNGA9Fi/C
94cAqiAieR/DwKXIKAiaSyzgm1CBrBlTVQX44Keo/1FEbrvH6AKaPGMdw2AtHENZ
qlqR7luAJATHOQikwcLRG9qTBM5lqgIhyE7EuyuhhvwY
-----END CERTIFICATE-----
Generated at Mon Nov 25 18:07:42 2024 by rpki-client on console-fra.rpki-client.org