Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/HycRlbzoKMmEuuHu7PhnTYRPmLI.roa
File: HycRlbzoKMmEuuHu7PhnTYRPmLI.roa (raw, json)
Hash identifier: H/DHlOhatkIJtDBw2D822sHcJmA9nHTJC9HRp38Bpbc=
Subject key identifier: 1F:27:11:95:BC:E8:28:C9:84:BA:E1:EE:EC:F8:67:4D:84:4F:98:B2
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 01909E2970D3015B4DC3B353CC09A203DE4F
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/HycRlbzoKMmEuuHu7PhnTYRPmLI.roa
Signing time: Wed 10 Jul 2024 19:40:34 +0000
ROA not before: Wed 10 Jul 2024 19:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 193.135.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9e:29:70:d3:01:5b:4d:c3:b3:53:cc:09:a2:03:de:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Jul 10 19:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f271195bce828c984bae1eeecf8674d844f98b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:32:59:a7:70:4c:1a:8e:ed:ec:5f:c2:8d:cd:
f2:5f:2b:79:f5:89:57:74:c5:ab:86:32:45:91:b5:
e1:f4:a1:05:01:18:d2:67:e0:ed:7b:99:2a:97:49:
8e:2e:3f:75:c4:dd:8a:6b:ba:da:3b:d8:d8:d5:8f:
50:4e:b7:34:02:6e:38:07:0d:ac:04:b7:a8:d8:32:
19:da:3a:da:9e:80:c1:db:13:d5:89:8d:45:f6:26:
9f:07:4d:3f:58:33:2c:f9:95:f1:ac:7b:9f:3c:92:
08:12:d5:06:26:50:e2:23:59:ee:fa:91:fc:0c:11:
9a:38:1b:27:9e:c2:26:a7:ee:e8:cc:b1:17:35:13:
ff:fd:d9:e0:cb:fc:4b:80:3f:74:a5:36:20:33:60:
72:a7:a8:ef:00:f9:85:99:80:ab:5c:83:2f:5a:fb:
77:e0:1c:c1:34:35:58:4a:99:90:ca:2a:76:ea:87:
35:e1:de:7f:3e:10:2e:cb:1e:c5:22:8b:86:f0:38:
3a:48:f1:9d:92:47:2a:a8:9b:bc:7f:b9:7c:6f:6d:
03:4f:67:5e:a5:94:fc:b3:33:7e:48:ca:89:b8:1e:
d2:ad:4f:d3:68:09:df:24:57:0a:1d:d9:db:1c:aa:
b6:03:e5:1f:13:95:fc:c2:34:f4:59:29:9e:a7:f3:
33:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:27:11:95:BC:E8:28:C9:84:BA:E1:EE:EC:F8:67:4D:84:4F:98:B2
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/HycRlbzoKMmEuuHu7PhnTYRPmLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.40.0/21
Signature Algorithm: sha256WithRSAEncryption
02:1f:43:9a:63:aa:52:6e:89:0b:af:40:83:db:06:90:72:58:
68:a3:c2:42:d6:10:ec:82:a9:a0:20:32:f9:58:a9:87:6f:37:
06:6a:f3:d7:af:84:32:d3:81:e8:61:5f:39:5d:b8:c4:1d:7e:
0a:f6:c2:dd:bf:c5:24:2c:38:3a:d5:a5:e5:bd:51:cc:a7:06:
65:f4:ef:e0:a2:6e:cd:3a:38:9d:b2:79:fe:05:87:3f:1d:07:
a5:e6:e0:85:4d:39:78:d9:72:0f:9e:d2:f7:45:04:7c:f0:55:
21:ab:a6:4c:0b:7c:24:64:41:ab:97:2c:2a:29:32:07:1e:05:
f6:39:b2:1d:9b:b3:9b:41:c8:b6:f0:d1:05:1c:37:b0:02:bc:
b5:a4:02:e0:47:68:36:40:73:c0:ba:b1:02:24:2a:a9:c2:2c:
38:f9:27:ba:19:23:65:c0:a0:72:3b:65:76:99:90:0f:9f:6d:
a5:88:63:62:4d:9e:d6:03:23:4b:0b:44:58:1e:33:a7:1c:e6:
46:5f:51:3d:24:ec:d1:32:1b:68:08:cb:12:4e:35:d1:a8:b0:
68:6e:16:bd:5c:e7:1b:71:0d:db:84:84:b9:60:44:0b:39:c2:
4d:11:be:d8:7c:a7:90:8a:9a:ab:f3:ae:41:6c:e0:a4:b4:06:
41:37:ae:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCeKXDTAVtNw7NTzAmiA95PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj
NjdlMDAwHhcNMjQwNzEwMTk0MDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjI3MTE5NWJjZTgyOGM5ODRiYWUxZWVlY2Y4Njc0ZDg0NGY5OGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzJZp3BMGo7t7F/Cjc3yXyt59YlX
dMWrhjJFkbXh9KEFARjSZ+Dte5kql0mOLj91xN2Ka7raO9jY1Y9QTrc0Am44Bw2s
BLeo2DIZ2jranoDB2xPViY1F9iafB00/WDMs+ZXxrHufPJIIEtUGJlDiI1nu+pH8
DBGaOBsnnsImp+7ozLEXNRP//dngy/xLgD90pTYgM2Byp6jvAPmFmYCrXIMvWvt3
4BzBNDVYSpmQyip26oc14d5/PhAuyx7FIouG8Dg6SPGdkkcqqJu8f7l8b20DT2de
pZT8szN+SMqJuB7SrU/TaAnfJFcKHdnbHKq2A+UfE5X8wjT0WSmep/MzdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB8nEZW86CjJhLrh7uz4Z02ET5iyMB8GA1UdIwQY
MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt
N2EwZWNlOWMwYWY4LzEvSHljUmxiem9LTW1FdXVIdTdQaG5UWVJQbUxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4
LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwYcoMA0G
CSqGSIb3DQEBCwUAA4IBAQACH0OaY6pSbokLr0CD2waQclhoo8JC1hDsgqmgIDL5
WKmHbzcGavPXr4Qy04HoYV85XbjEHX4K9sLdv8UkLDg61aXlvVHMpwZl9O/gom7N
Ojidsnn+BYc/HQel5uCFTTl42XIPntL3RQR88FUhq6ZMC3wkZEGrlywqKTIHHgX2
ObIdm7ObQci28NEFHDewAry1pALgR2g2QHPAurECJCqpwiw4+Se6GSNlwKByO2V2
mZAPn22liGNiTZ7WAyNLC0RYHjOnHOZGX1E9JOzRMhtoCMsSTjXRqLBobha9XOcb
cQ3bhIS5YEQLOcJNEb7YfKeQipqr865BbOCktAZBN64M
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:28:45 2024 by rpki-client on console-fra.rpki-client.org