Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Oekrd0xBJ89jH6UOQy_ZMvl_hV4.roa
File: Oekrd0xBJ89jH6UOQy_ZMvl_hV4.roa (raw, json)
Hash identifier: vFx7t48mmDqXczSgslMJKjutyjpLWXncRE2Jo1dG/EE=
Subject key identifier: 39:E9:2B:77:4C:41:27:CF:63:1F:A5:0E:43:2F:D9:32:F9:7F:85:5E
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018F4C8997E0105D0246B985046206DF1AA6
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Oekrd0xBJ89jH6UOQy_ZMvl_hV4.roa
Signing time: Mon 06 May 2024 06:13:56 +0000
ROA not before: Mon 06 May 2024 06:13:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212691
IP address blocks: 2a0e:8f02:f05e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:89:97:e0:10:5d:02:46:b9:85:04:62:06:df:1a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: May 6 06:13:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39e92b774c4127cf631fa50e432fd932f97f855e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e4:b0:66:6f:e4:49:c6:a3:1d:50:9d:e5:05:
30:75:64:bd:9c:28:d7:dd:33:b5:c7:ec:cb:d0:2b:
cb:b8:44:d7:d7:f4:b2:1e:3e:03:36:0d:ff:d4:02:
0d:50:61:99:21:20:09:4f:c4:c5:bd:03:3d:52:27:
f5:61:1c:d0:cc:e6:6f:80:b5:2b:66:84:75:f1:c6:
cc:4e:7e:12:47:c0:57:65:70:be:42:4a:f3:70:40:
8f:65:49:0b:c6:bf:b3:73:92:d5:99:26:14:ff:94:
e6:39:c5:21:89:d6:a3:e6:f5:91:e7:99:c0:d3:ad:
a0:df:51:76:66:2f:eb:f4:0e:90:74:ff:ea:db:3e:
ef:80:53:80:6b:61:87:4a:a6:d1:7f:81:36:cb:4d:
78:91:af:06:98:47:24:28:6e:34:8b:d4:be:9a:5d:
52:8a:23:b7:d6:87:41:67:5f:f8:24:0a:7b:2c:70:
7d:26:a2:22:f6:60:8b:3f:61:bb:e1:65:eb:b2:b5:
c1:dc:ab:b8:24:50:69:a6:87:ac:ac:3a:97:46:e2:
9b:9e:88:6d:7b:76:1b:82:98:1e:ea:4f:55:f6:ff:
84:6f:e7:d0:97:48:ef:ec:4c:24:23:e9:46:3b:53:
cd:08:b9:5c:ab:7d:e2:40:b4:d8:fe:0a:db:a2:e9:
da:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E9:2B:77:4C:41:27:CF:63:1F:A5:0E:43:2F:D9:32:F9:7F:85:5E
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/Oekrd0xBJ89jH6UOQy_ZMvl_hV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f05e::/48
Signature Algorithm: sha256WithRSAEncryption
71:b1:38:6b:0f:74:81:4a:5a:99:40:1e:ab:1a:9a:f0:05:1e:
49:52:ba:03:8f:2f:42:d9:f1:fc:5c:7f:47:24:80:9d:cd:df:
ba:25:87:11:4d:47:20:e7:dd:b9:c0:c5:96:02:48:a2:61:63:
4a:dd:da:3a:0a:06:2c:87:ef:90:fc:57:8d:45:98:d6:91:2c:
cb:37:3e:fa:29:da:d1:3d:fd:fb:b0:53:e9:da:d8:f1:24:66:
e8:9a:b3:dc:d0:db:91:88:da:ae:fb:71:48:40:03:a2:9c:a0:
31:c2:f5:9e:3d:a5:06:95:c2:46:fb:fa:b9:49:f2:37:2d:bb:
f4:52:be:72:d5:1b:3c:36:69:99:a7:f8:3a:3a:ce:40:f6:f0:
d5:fe:e8:81:09:02:6f:5e:ee:35:8e:dc:22:d0:f9:27:28:f6:
4c:2a:94:9d:b6:d2:82:f4:97:b1:47:aa:11:62:1d:fc:c4:ef:
ef:71:81:a6:da:ce:ae:79:8e:e6:c4:bf:57:53:4f:25:ec:76:
13:68:cb:cc:c4:7d:eb:6d:69:c8:94:12:63:b7:4e:55:c6:87:
6c:03:39:70:8f:36:b9:c2:89:27:39:f4:b7:cf:41:7b:62:42:
33:e1:13:aa:3e:1a:d6:0a:44:d9:a9:60:79:bc:a3:6d:1f:4a:
70:b8:fb:24
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY9MiZfgEF0CRrmFBGIG3xqmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjQwNTA2MDYxMzU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOWU5MmI3NzRjNDEyN2NmNjMxZmE1MGU0MzJmZDkzMmY5N2Y4NTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveSwZm/kScajHVCd5QUwdWS9nCjX
3TO1x+zL0CvLuETX1/SyHj4DNg3/1AINUGGZISAJT8TFvQM9Uif1YRzQzOZvgLUr
ZoR18cbMTn4SR8BXZXC+QkrzcECPZUkLxr+zc5LVmSYU/5TmOcUhidaj5vWR55nA
062g31F2Zi/r9A6QdP/q2z7vgFOAa2GHSqbRf4E2y014ka8GmEckKG40i9S+ml1S
iiO31odBZ1/4JAp7LHB9JqIi9mCLP2G74WXrsrXB3Ku4JFBppoesrDqXRuKbnoht
e3Ybgpge6k9V9v+Eb+fQl0jv7EwkI+lGO1PNCLlcq33iQLTY/grbouna7QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDnpK3dMQSfPYx+lDkMv2TL5f4VeMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvT2VrcmQweEJKODlqSDZVT1F5X1pNdmxfaFY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6PAvBe
MA0GCSqGSIb3DQEBCwUAA4IBAQBxsThrD3SBSlqZQB6rGprwBR5JUroDjy9C2fH8
XH9HJICdzd+6JYcRTUcg5925wMWWAkiiYWNK3do6CgYsh++Q/FeNRZjWkSzLNz76
KdrRPf37sFPp2tjxJGbomrPc0NuRiNqu+3FIQAOinKAxwvWePaUGlcJG+/q5SfI3
Lbv0Ur5y1Rs8NmmZp/g6Os5A9vDV/uiBCQJvXu41jtwi0PknKPZMKpSdttKC9Jex
R6oRYh38xO/vcYGm2s6ueY7mxL9XU08l7HYTaMvMxH3rbWnIlBJjt05VxodsAzlw
jza5woknOfS3z0F7YkIz4ROqPhrWCkTZqWB5vKNtH0pwuPsk
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:20:43 2024 by rpki-client on console-fra.rpki-client.org