Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/FRJc83cb7BZd9vUAxaggB0tqAys.roa
File: FRJc83cb7BZd9vUAxaggB0tqAys.roa (raw, json)
Hash identifier: FhpCgqGpgrIHtv+ar5iSLOsOWOIZc9KneORVbbP0kh4=
Subject key identifier: 15:12:5C:F3:77:1B:EC:16:5D:F6:F5:00:C5:A8:20:07:4B:6A:03:2B
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0191AE7B03533560CD4B0314372A9941860F
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/FRJc83cb7BZd9vUAxaggB0tqAys.roa
Signing time: Sun 01 Sep 2024 16:46:22 +0000
ROA not before: Sun 01 Sep 2024 16:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14445
IP address blocks: 193.93.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ae:7b:03:53:35:60:cd:4b:03:14:37:2a:99:41:86:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Sep 1 16:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15125cf3771bec165df6f500c5a820074b6a032b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:85:1b:e7:0a:44:53:f1:9f:4c:01:69:6f:1a:
82:1c:ff:73:84:95:77:5c:16:38:44:8b:83:87:8c:
a4:ce:92:f3:a6:36:b5:10:dc:af:3e:7b:69:2f:6f:
15:59:80:f7:d8:0d:f7:37:70:07:f5:7a:07:7f:a9:
71:e7:b7:c6:11:3e:72:e9:92:b1:52:25:69:03:a4:
65:b5:d2:96:47:e6:5a:22:fd:b3:26:a8:55:e2:33:
a2:2c:98:0e:bb:eb:5d:df:c3:61:58:a4:db:b7:e1:
0d:ad:55:ec:b5:f1:0d:4b:7c:8f:94:02:79:c0:b5:
fc:07:b4:b2:5e:82:43:f8:92:4d:d8:11:3c:5d:aa:
e9:6f:03:1f:4f:81:ea:24:7e:af:8a:cb:17:83:ce:
74:48:67:a1:20:d0:08:2c:3f:d9:f6:01:cf:3c:5f:
ff:02:90:4b:b9:ec:00:23:46:97:17:cf:d3:4a:d0:
79:c6:85:50:e7:5c:fe:3c:d1:00:ee:47:67:aa:4b:
1d:27:5a:10:da:d7:3c:58:9e:43:0f:98:d7:89:75:
8c:a7:8e:33:11:3f:15:16:0d:81:df:d6:e9:d2:41:
40:40:a6:84:de:20:18:47:c3:a6:a3:f0:49:d6:52:
c1:58:38:fb:45:5b:ae:4c:96:f0:97:4c:56:b4:d7:
13:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:12:5C:F3:77:1B:EC:16:5D:F6:F5:00:C5:A8:20:07:4B:6A:03:2B
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/FRJc83cb7BZd9vUAxaggB0tqAys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.52.0/24
Signature Algorithm: sha256WithRSAEncryption
60:35:16:92:5e:80:c9:d6:4a:ff:c0:d2:0a:e2:1f:71:e7:1c:
7c:7d:a4:0a:31:b7:d7:79:99:b2:32:53:56:21:86:30:53:dd:
de:f0:45:f7:65:d6:05:38:11:93:48:69:2d:14:12:73:94:58:
bf:08:d4:f7:e2:69:cc:0f:65:9e:64:21:66:19:98:92:c3:d5:
ab:6a:2d:06:fb:a9:b7:26:75:11:f5:85:6c:fc:84:e7:59:cd:
ae:34:b9:86:22:a7:3e:3d:2c:aa:3b:31:14:a6:41:59:a2:ac:
c7:eb:59:9e:c8:eb:37:75:75:b1:c0:2b:d1:e3:c7:6a:6f:25:
01:70:9f:af:49:b7:42:48:26:c2:57:49:59:52:36:0b:a3:87:
9b:16:c2:c2:a8:1d:14:e7:9e:aa:17:15:f4:fb:25:60:ea:17:
5a:80:be:79:70:f4:1a:9f:cf:2a:c2:fc:55:46:ad:2f:6d:40:
01:2b:cc:50:0d:76:18:fd:3a:9c:09:85:3c:a6:e2:7f:d9:39:
aa:04:c5:a2:9d:0e:89:8c:cf:4f:2f:e4:76:08:11:eb:d5:69:
18:cf:f6:c7:61:d9:20:51:5c:e5:03:2a:19:45:c1:73:da:cb:
c2:04:9a:90:8b:b9:10:1b:f0:52:b8:2e:25:fa:fb:b6:a7:00:
3e:bc:1f:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGuewNTNWDNSwMUNyqZQYYPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjQwOTAxMTY0NjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTEyNWNmMzc3MWJlYzE2NWRmNmY1MDBjNWE4MjAwNzRiNmEwMzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4Ub5wpEU/GfTAFpbxqCHP9zhJV3
XBY4RIuDh4ykzpLzpja1ENyvPntpL28VWYD32A33N3AH9XoHf6lx57fGET5y6ZKx
UiVpA6RltdKWR+ZaIv2zJqhV4jOiLJgOu+td38NhWKTbt+ENrVXstfENS3yPlAJ5
wLX8B7SyXoJD+JJN2BE8XarpbwMfT4HqJH6vissXg850SGehINAILD/Z9gHPPF//
ApBLuewAI0aXF8/TStB5xoVQ51z+PNEA7kdnqksdJ1oQ2tc8WJ5DD5jXiXWMp44z
ET8VFg2B39bp0kFAQKaE3iAYR8Omo/BJ1lLBWDj7RVuuTJbwl0xWtNcTrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBUSXPN3G+wWXfb1AMWoIAdLagMrMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvRlJKYzgzY2I3QlpkOXZVQXhhZ2dCMHRxQXlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwV00MA0G
CSqGSIb3DQEBCwUAA4IBAQBgNRaSXoDJ1kr/wNIK4h9x5xx8faQKMbfXeZmyMlNW
IYYwU93e8EX3ZdYFOBGTSGktFBJzlFi/CNT34mnMD2WeZCFmGZiSw9Wrai0G+6m3
JnUR9YVs/ITnWc2uNLmGIqc+PSyqOzEUpkFZoqzH61meyOs3dXWxwCvR48dqbyUB
cJ+vSbdCSCbCV0lZUjYLo4ebFsLCqB0U556qFxX0+yVg6hdagL55cPQan88qwvxV
Rq0vbUABK8xQDXYY/TqcCYU8puJ/2TmqBMWinQ6JjM9PL+R2CBHr1WkYz/bHYdkg
UVzlAyoZRcFz2svCBJqQi7kQG/BSuC4l+vu2pwA+vB9/
-----END CERTIFICATE-----
Generated at Thu Nov 21 23:45:44 2024 by rpki-client on console-ams.rpki-client.org