Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zS7aKTnE3_hQMds6XK70ltonVlE.roa
File: zS7aKTnE3_hQMds6XK70ltonVlE.roa (raw, json)
Hash identifier: O3pcJXH68CoIQUdzFQeZA2ukcUc9S3urbNofb/VhkIk=
Subject key identifier: CD:2E:DA:29:39:C4:DF:F8:50:31:DB:3A:5C:AE:F4:96:DA:27:56:51
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01941F8C0FCE95FDF1C900136D5EF00AFA06
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zS7aKTnE3_hQMds6XK70ltonVlE.roa
Signing time: Wed 01 Jan 2025 01:47:40 +0000
ROA not before: Wed 01 Jan 2025 01:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8930
IP address blocks: 193.230.230.0/24 maxlen: 24
194.102.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:0f:ce:95:fd:f1:c9:00:13:6d:5e:f0:0a:fa:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd2eda2939c4dff85031db3a5caef496da275651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:51:93:4d:cd:57:0d:70:30:fc:e0:03:a8:c1:
d7:52:0b:05:8c:26:20:f4:4a:5a:2b:99:6a:83:94:
cd:21:b7:2b:33:8f:b6:98:5f:5a:21:b3:20:6a:01:
7a:b4:3b:af:be:bd:df:f4:d0:e8:53:12:1b:36:bb:
ad:9c:f1:21:10:e4:7a:22:d2:c6:d9:fe:28:94:d5:
d5:d6:2c:7c:90:c1:77:2b:78:f6:b0:11:70:40:f2:
11:7b:6c:66:67:90:e6:80:2a:1c:50:01:65:a1:10:
0b:98:8b:d1:aa:55:c7:61:53:c8:6c:62:07:8f:7a:
38:f4:4f:00:1a:35:48:60:54:06:73:7f:4b:6f:08:
db:4b:9d:33:93:58:26:fe:8a:32:b9:89:aa:fc:d0:
1c:f9:75:13:ec:a4:f0:e7:0a:1a:93:6b:88:2e:0e:
c5:9b:7d:28:db:69:3e:48:e0:29:75:0c:43:30:ec:
3c:0a:9d:96:70:db:a7:d8:68:30:0d:23:cb:92:02:
8c:04:be:ee:fa:85:93:47:bd:e5:1b:08:1f:a2:06:
6b:cf:e2:ab:9c:00:d8:6c:d6:d7:91:db:75:77:9b:
fe:07:08:76:53:89:9d:c3:5f:d4:c4:09:ec:5d:df:
7b:dc:3b:3f:57:71:70:84:63:32:bc:42:4a:1e:59:
14:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2E:DA:29:39:C4:DF:F8:50:31:DB:3A:5C:AE:F4:96:DA:27:56:51
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/zS7aKTnE3_hQMds6XK70ltonVlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.230.230.0/24
194.102.176.0/24
Signature Algorithm: sha256WithRSAEncryption
33:f6:f5:85:06:33:c6:10:61:80:1f:3c:fd:62:a4:f1:44:1e:
50:16:33:b4:e1:e4:3e:90:f5:4d:f4:51:f6:32:ae:9f:a8:b4:
98:2b:79:1f:17:e0:05:b1:d0:88:b3:19:b0:11:ae:47:2a:d3:
ae:d9:9a:82:f2:7d:a4:18:e3:77:2a:6b:57:18:16:ae:59:fc:
35:0b:68:37:1c:fd:ac:dc:f2:fc:ca:9c:ac:79:f6:bc:65:0a:
89:c8:8d:ae:89:ae:1d:01:b8:8d:7a:a7:a4:63:ab:16:40:28:
12:a6:c9:a2:01:13:c8:64:4d:60:ee:be:e8:37:ed:f1:c9:41:
30:41:ce:52:0e:d8:e2:e3:19:d7:dd:91:4e:78:94:19:5d:9c:
77:cb:c0:1d:e7:71:05:4a:fa:1c:e1:7e:d3:c9:59:81:8a:95:
c9:c6:e2:95:04:e1:e5:db:ac:13:8b:9c:84:02:30:03:e0:4d:
f6:18:e5:67:c2:8c:ea:cd:d4:4c:ce:0d:26:e7:f3:39:51:8e:
1d:1b:31:b9:e2:f6:31:c5:2b:61:ad:94:c1:75:d2:88:19:e6:
39:e7:9c:5e:99:1e:cf:f0:cf:73:7f:f1:b3:df:f8:25:a1:4e:
31:0e:e6:cd:0e:b5:0f:11:53:30:e4:b3:7a:8d:c7:1a:a3:d9:
23:3b:fe:ff
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQfjA/Olf3xyQATbV7wCvoGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjUwMTAxMDE0NzQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDJlZGEyOTM5YzRkZmY4NTAzMWRiM2E1Y2FlZjQ5NmRhMjc1NjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VGTTc1XDXAw/OADqMHXUgsFjCYg
9EpaK5lqg5TNIbcrM4+2mF9aIbMgagF6tDuvvr3f9NDoUxIbNrutnPEhEOR6ItLG
2f4olNXV1ix8kMF3K3j2sBFwQPIRe2xmZ5DmgCocUAFloRALmIvRqlXHYVPIbGIH
j3o49E8AGjVIYFQGc39LbwjbS50zk1gm/ooyuYmq/NAc+XUT7KTw5woak2uILg7F
m30o22k+SOApdQxDMOw8Cp2WcNun2GgwDSPLkgKMBL7u+oWTR73lGwgfogZrz+Kr
nADYbNbXkdt1d5v+Bwh2U4mdw1/UxAnsXd973Ds/V3FwhGMyvEJKHlkUCwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFM0u2ik5xN/4UDHbOlyu9JbaJ1ZRMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvelM3YUtUbkUzX2hRTWRzNlhLNzBsdG9uVmxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwebmAwQA
wmawMA0GCSqGSIb3DQEBCwUAA4IBAQAz9vWFBjPGEGGAHzz9YqTxRB5QFjO04eQ+
kPVN9FH2Mq6fqLSYK3kfF+AFsdCIsxmwEa5HKtOu2ZqC8n2kGON3KmtXGBauWfw1
C2g3HP2s3PL8ypysefa8ZQqJyI2uia4dAbiNeqekY6sWQCgSpsmiARPIZE1g7r7o
N+3xyUEwQc5SDtji4xnX3ZFOeJQZXZx3y8Ad53EFSvoc4X7TyVmBipXJxuKVBOHl
26wTi5yEAjAD4E32GOVnwozqzdRMzg0m5/M5UY4dGzG54vYxxSthrZTBddKIGeY5
55xemR7P8M9zf/Gz3/gloU4xDubNDrUPEVMw5LN6jccao9kjO/7/
-----END CERTIFICATE-----
Generated at Wed Apr 9 05:17:09 2025 by rpki-client