Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/QjtWj02YBmI5Jv7YvgwRw2CvoyA.roa
File: QjtWj02YBmI5Jv7YvgwRw2CvoyA.roa (raw, json)
Hash identifier: xzR/aqYGTG/UIUSP1rL50ozgA3zAN0ypP0J4BQa6rSk=
Subject key identifier: 42:3B:56:8F:4D:98:06:62:39:26:FE:D8:BE:0C:11:C3:60:AF:A3:20
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 019424B264E7798C8CBCF2B27538171D0541
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/QjtWj02YBmI5Jv7YvgwRw2CvoyA.roa
Signing time: Thu 02 Jan 2025 01:47:38 +0000
ROA not before: Thu 02 Jan 2025 01:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206375
IP address blocks: 93.157.188.0/24 maxlen: 24
93.157.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:64:e7:79:8c:8c:bc:f2:b2:75:38:17:1d:05:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 2 01:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=423b568f4d9806623926fed8be0c11c360afa320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:01:d9:17:f7:00:b6:ae:ee:42:f9:67:76:dc:
41:8d:9a:e6:17:e8:ec:08:bb:73:0d:65:49:41:de:
de:d7:b6:a0:cf:0f:92:6b:21:fa:cf:02:9f:0f:24:
3d:f5:81:64:46:70:a8:31:ba:63:6c:f1:55:5e:df:
f0:09:9d:37:f8:4d:49:02:20:b8:b6:be:53:30:e7:
0f:c7:6b:ed:dd:99:c2:c3:6a:ea:1b:a9:7f:d5:6f:
57:b6:6a:b7:43:fd:f4:a4:cc:df:0c:1e:87:7c:c5:
52:15:45:79:58:69:a0:2d:61:ab:b9:c7:60:e0:8b:
c4:b3:0a:f9:f7:0a:05:26:fd:cb:62:74:ad:5c:ed:
a2:f2:7a:b0:3c:a0:8f:72:8e:23:5c:6b:1c:f5:63:
93:5a:a6:ec:a8:21:51:cb:9a:1a:d2:f8:e0:26:b7:
1a:58:20:a2:7b:4e:01:34:0e:fc:60:55:c8:1f:66:
16:fd:04:01:6a:69:76:cd:64:b9:10:f5:6f:00:cb:
d9:88:e8:92:6b:ef:97:79:d4:38:93:d3:79:5d:ca:
56:ec:46:20:70:1e:7a:4f:98:9f:c1:96:e5:3b:53:
50:d5:59:7c:84:ce:48:e7:d3:07:12:9d:09:8c:3b:
30:1a:93:b6:78:d0:de:f8:52:b7:e1:c1:b8:90:cb:
7a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:3B:56:8F:4D:98:06:62:39:26:FE:D8:BE:0C:11:C3:60:AF:A3:20
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/QjtWj02YBmI5Jv7YvgwRw2CvoyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.188.0/24
93.157.190.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:4d:25:31:0d:b6:1d:b1:49:8a:2f:22:af:19:1b:22:33:97:
91:01:2d:d3:d2:e8:d4:37:82:14:39:26:0f:8d:c1:c0:d5:a8:
7f:1c:4b:de:17:0f:6b:66:99:f0:31:2d:ef:1e:85:f0:97:1c:
2a:cd:f5:25:dd:28:e1:76:63:fc:b4:13:75:13:15:2e:8c:a2:
96:84:3b:09:ff:fe:79:14:34:a6:de:1d:a2:17:54:34:f5:6f:
9d:0f:b8:4d:1d:d2:30:31:cc:b5:0e:b6:1b:e0:c2:ee:da:5a:
cb:96:f2:ec:3a:fd:05:52:71:ca:b7:8a:17:7e:4a:b6:a2:38:
45:9d:21:76:27:e0:b3:01:58:fb:68:18:a4:7c:6f:38:d0:ee:
67:c3:20:f2:26:96:67:bb:e9:6b:ef:8e:45:99:43:82:cc:0f:
ce:5f:a5:c9:c3:94:fe:ac:eb:6e:d0:01:37:e1:4b:60:80:d0:
fc:3c:ac:69:bf:84:61:41:ab:72:d8:ee:4e:78:e7:2f:0f:6c:
df:cd:1e:9d:72:7a:a6:74:bc:07:b4:7b:a7:e3:a9:60:3a:3e:
d2:b0:d2:81:61:f0:9a:d3:2f:74:d1:c7:9d:19:f0:9a:be:5d:
96:f9:d1:bc:0a:b8:ea:43:88:da:e9:1b:a1:5f:72:c2:89:71:
59:13:41:fe
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQksmTneYyMvPKydTgXHQVBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNTUzMjAwNzc2OTY5NDRiMTYxM2MyZThjOWM2MDZhMWUw
NmViNzkwHhcNMjUwMTAyMDE0NzM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjNiNTY4ZjRkOTgwNjYyMzkyNmZlZDhiZTBjMTFjMzYwYWZhMzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5wHZF/cAtq7uQvlndtxBjZrmF+js
CLtzDWVJQd7e17agzw+SayH6zwKfDyQ99YFkRnCoMbpjbPFVXt/wCZ03+E1JAiC4
tr5TMOcPx2vt3ZnCw2rqG6l/1W9Xtmq3Q/30pMzfDB6HfMVSFUV5WGmgLWGrucdg
4IvEswr59woFJv3LYnStXO2i8nqwPKCPco4jXGsc9WOTWqbsqCFRy5oa0vjgJrca
WCCie04BNA78YFXIH2YW/QQBaml2zWS5EPVvAMvZiOiSa++XedQ4k9N5XcpW7EYg
cB56T5ifwZblO1NQ1Vl8hM5I59MHEp0JjDswGpO2eNDe+FK34cG4kMt6UwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEI7Vo9NmAZiOSb+2L4MEcNgr6MgMB8GA1UdIwQY
MBaAFJ5VMgB3aWlEsWE8LoycYGoeBut5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYt
MWUwZThiOTA5ZTM0LzEvUWp0V2owMllCbUk1SnY3WXZnd1J3MkN2b3lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYtMWUwZThiOTA5ZTM0
LzEvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXZ28AwQA
XZ2+MA0GCSqGSIb3DQEBCwUAA4IBAQCPTSUxDbYdsUmKLyKvGRsiM5eRAS3T0ujU
N4IUOSYPjcHA1ah/HEveFw9rZpnwMS3vHoXwlxwqzfUl3SjhdmP8tBN1ExUujKKW
hDsJ//55FDSm3h2iF1Q09W+dD7hNHdIwMcy1DrYb4MLu2lrLlvLsOv0FUnHKt4oX
fkq2ojhFnSF2J+CzAVj7aBikfG840O5nwyDyJpZnu+lr745FmUOCzA/OX6XJw5T+
rOtu0AE34UtggND8PKxpv4RhQaty2O5OeOcvD2zfzR6dcnqmdLwHtHun46lgOj7S
sNKBYfCa0y900cedGfCavl2W+dG8CrjqQ4ja6RuhX3LCiXFZE0H+
-----END CERTIFICATE-----
Generated at Sun Apr 13 18:27:20 2025 by rpki-client