Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/ScJyOyeJqecm_JX_7aC4k8P_YpA.roa
File: ScJyOyeJqecm_JX_7aC4k8P_YpA.roa (raw, json)
Hash identifier: ukjMaBbURX9+UWKG6VBvXLlxC1OfUxSHDqrxiAPPhX0=
Subject key identifier: 49:C2:72:3B:27:89:A9:E7:26:FC:95:FF:ED:A0:B8:93:C3:FF:62:90
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0192CF610CE45159DF709B06BBEC23460C41
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/ScJyOyeJqecm_JX_7aC4k8P_YpA.roa
Signing time: Sun 27 Oct 2024 19:08:16 +0000
ROA not before: Sun 27 Oct 2024 19:08:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212416
IP address blocks: 193.168.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:40:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:cf:61:0c:e4:51:59:df:70:9b:06:bb:ec:23:46:0c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Oct 27 19:08:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49c2723b2789a9e726fc95ffeda0b893c3ff6290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6b:d5:58:d4:90:c0:14:62:be:0b:c9:05:7e:
8f:d1:e8:c7:12:f3:37:fd:3b:ed:fe:fd:59:02:2f:
f4:30:9a:38:a2:e2:d8:97:94:bb:55:a7:ec:73:17:
d3:b6:41:db:42:7b:b2:e3:8e:3c:c1:ad:bf:9d:6e:
0e:53:e6:da:7e:0c:e6:55:52:ce:20:ae:8d:a0:80:
28:58:f3:e9:ac:a2:ba:cf:2f:f6:01:6b:dd:ff:ec:
c2:20:1a:37:b5:d2:5d:32:31:ff:c5:65:83:d3:36:
b2:dd:73:14:d4:a6:a1:bc:9f:40:30:b8:de:e3:df:
c1:a8:ea:72:0b:72:f2:92:dd:d4:79:4e:e3:ee:87:
79:89:43:be:7e:1e:19:cf:2b:8d:e7:3e:ef:82:54:
a3:bf:f6:26:b2:1c:50:d6:8e:f0:91:ea:0a:be:5d:
9e:e2:2f:65:02:88:58:03:d5:1f:59:29:ae:a3:c0:
c6:39:9a:24:b8:ec:f5:67:12:ee:63:fc:4c:dc:2e:
71:67:d6:54:8c:27:14:0b:d1:93:fd:19:44:0b:00:
1b:43:c1:ce:b9:b7:80:7a:3f:39:c5:c5:10:af:df:
5c:8f:2f:a2:87:f4:3b:bb:13:58:f2:a4:67:35:f6:
b9:2c:64:0c:49:c6:c8:62:af:c6:ef:bc:c5:b5:23:
b8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C2:72:3B:27:89:A9:E7:26:FC:95:FF:ED:A0:B8:93:C3:FF:62:90
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/ScJyOyeJqecm_JX_7aC4k8P_YpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.201.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:8d:22:91:1f:ac:24:00:4a:c9:bf:2a:db:10:f2:b6:d4:ee:
36:04:32:53:f5:3c:d9:c9:de:82:06:b2:a5:3e:41:53:e0:cc:
30:92:6f:89:35:f5:37:ab:34:ca:21:75:bd:0b:52:5f:9f:7a:
eb:9f:49:8b:ff:3c:a1:56:12:72:07:64:6e:dd:99:f7:ed:53:
5b:44:2f:75:2e:36:af:a8:91:e9:4e:0a:71:58:55:62:1c:f9:
16:7f:84:2b:97:92:51:ab:0c:7c:9a:d1:99:15:fd:6b:d1:59:
cf:fb:84:f1:3d:66:1f:95:46:5b:35:9e:2e:4c:b7:d4:2c:8c:
38:ab:2f:3b:ba:53:68:87:e8:95:c6:31:6a:d5:07:0d:21:0e:
cf:ea:c7:d5:e5:01:c7:98:ca:70:7c:2f:16:cb:6c:cd:81:72:
32:de:6e:8f:d0:55:cc:32:ef:06:a9:0f:be:19:2a:b7:0d:43:
c6:66:db:ef:80:7e:dd:2c:e3:0d:6e:69:af:00:5e:2d:47:fc:
47:73:f2:c7:dc:e0:9d:61:6e:c7:c6:b0:63:39:ff:aa:11:3b:
49:34:22:c6:5b:4f:30:4f:e9:33:58:d3:53:8d:4f:8e:f0:4d:
1a:25:25:2a:be:8f:0e:21:42:30:04:97:07:b2:7d:6e:f3:99:
bb:dc:0e:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZLPYQzkUVnfcJsGu+wjRgxBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk
ZjM1NGEwHhcNMjQxMDI3MTkwODE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWMyNzIzYjI3ODlhOWU3MjZmYzk1ZmZlZGEwYjg5M2MzZmY2MjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWvVWNSQwBRivgvJBX6P0ejHEvM3
/Tvt/v1ZAi/0MJo4ouLYl5S7VafscxfTtkHbQnuy4448wa2/nW4OU+bafgzmVVLO
IK6NoIAoWPPprKK6zy/2AWvd/+zCIBo3tdJdMjH/xWWD0zay3XMU1KahvJ9AMLje
49/BqOpyC3Lykt3UeU7j7od5iUO+fh4ZzyuN5z7vglSjv/YmshxQ1o7wkeoKvl2e
4i9lAohYA9UfWSmuo8DGOZokuOz1ZxLuY/xM3C5xZ9ZUjCcUC9GT/RlECwAbQ8HO
ubeAej85xcUQr99cjy+ih/Q7uxNY8qRnNfa5LGQMScbIYq/G77zFtSO4JQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEnCcjsniannJvyV/+2guJPD/2KQMB8GA1UdIwQY
MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt
MjBlMTk3ODBjYjJlLzEvU2NKeU95ZUpxZWNtX0pYXzdhQzRrOFBfWXBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl
LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwajJMA0G
CSqGSIb3DQEBCwUAA4IBAQAOjSKRH6wkAErJvyrbEPK21O42BDJT9TzZyd6CBrKl
PkFT4Mwwkm+JNfU3qzTKIXW9C1Jfn3rrn0mL/zyhVhJyB2Ru3Zn37VNbRC91Ljav
qJHpTgpxWFViHPkWf4Qrl5JRqwx8mtGZFf1r0VnP+4TxPWYflUZbNZ4uTLfULIw4
qy87ulNoh+iVxjFq1QcNIQ7P6sfV5QHHmMpwfC8Wy2zNgXIy3m6P0FXMMu8GqQ++
GSq3DUPGZtvvgH7dLOMNbmmvAF4tR/xHc/LH3OCdYW7HxrBjOf+qETtJNCLGW08w
T+kzWNNTjU+O8E0aJSUqvo8OIUIwBJcHsn1u85m73A7i
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:39:43 2024 by rpki-client on console-ams.rpki-client.org