Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/481ONYMTUbrU1OJkj5sDk_jB0Ms.roa
File: 481ONYMTUbrU1OJkj5sDk_jB0Ms.roa (raw, json)
Hash identifier: +8aovwmz3Vl1nBKbZqNP3jZmM2j68g9N8kETG2vUT6Q=
Subject key identifier: E3:CD:4E:35:83:13:51:BA:D4:D4:E2:64:8F:9B:03:93:F8:C1:D0:CB
Certificate issuer: /CN=d8fc6e45181d839fd10e4a902762f26c9a646796
Certificate serial: 018CCA2A6988C5791508438EFB5FAE510AD7
Authority key identifier: D8:FC:6E:45:18:1D:83:9F:D1:0E:4A:90:27:62:F2:6C:9A:64:67:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/481ONYMTUbrU1OJkj5sDk_jB0Ms.roa
Signing time: Tue 02 Jan 2024 12:33:46 +0000
ROA not before: Tue 02 Jan 2024 12:33:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47909
IP address blocks: 2a05:a7c7::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:69:88:c5:79:15:08:43:8e:fb:5f:ae:51:0a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fc6e45181d839fd10e4a902762f26c9a646796
Validity
Not Before: Jan 2 12:33:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3cd4e35831351bad4d4e2648f9b0393f8c1d0cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:36:d7:a0:a1:ec:6f:ae:42:0e:73:8d:60:af:
96:22:44:99:36:85:26:04:cd:58:28:02:8d:02:4c:
b9:5d:34:57:37:51:1b:5c:fa:c3:03:a8:54:d7:cd:
31:e9:00:40:99:d4:cf:05:6d:15:99:df:9d:cf:9e:
7f:b5:a9:56:93:bf:2d:3d:30:de:5b:74:d5:02:95:
86:7e:e6:9b:65:07:f7:a0:10:15:d0:71:a0:ba:33:
6b:82:41:0f:52:d3:4a:0c:16:3a:08:20:76:5a:52:
62:09:47:57:20:08:35:7a:9f:b1:2a:d9:33:83:d7:
8b:e9:8a:53:26:e4:7c:95:60:71:48:29:0b:72:02:
33:40:5f:ce:6a:0a:d3:13:60:9e:1a:aa:c3:2a:6b:
43:84:a1:06:d3:26:a5:64:86:4c:c0:56:84:df:ad:
72:ab:65:18:59:87:de:7e:ac:df:04:4c:12:38:80:
3e:8c:28:d9:34:77:0e:89:74:bb:a4:ca:65:27:37:
59:95:d6:86:60:18:09:5d:71:6b:9c:20:1f:f3:d2:
5f:b8:04:04:28:1c:97:b1:17:5e:fb:36:12:49:1c:
0b:da:8c:a6:4f:3f:e4:9c:65:60:0c:60:ad:79:05:
31:61:34:28:b1:ad:a5:a9:ee:e2:13:9a:23:6f:16:
7f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CD:4E:35:83:13:51:BA:D4:D4:E2:64:8F:9B:03:93:F8:C1:D0:CB
X509v3 Authority Key Identifier:
keyid:D8:FC:6E:45:18:1D:83:9F:D1:0E:4A:90:27:62:F2:6C:9A:64:67:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/481ONYMTUbrU1OJkj5sDk_jB0Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:a7c7::/32
Signature Algorithm: sha256WithRSAEncryption
5c:cc:d2:2b:79:cc:ab:ca:83:2f:2a:b1:99:b6:d5:c4:74:d2:
f5:cc:60:63:92:8c:c2:c0:b3:00:08:ad:b0:8f:0c:24:89:0b:
74:61:37:61:7a:2c:66:dd:fe:28:75:e0:52:7c:49:58:ad:85:
36:d9:0a:99:5c:af:60:24:6d:01:74:95:d0:97:fc:74:1a:00:
b1:a2:c4:7a:06:b3:ac:be:f4:da:23:ce:43:97:1b:66:64:1f:
d4:28:88:4d:f8:a9:bb:2d:27:15:4e:96:99:70:e2:44:f3:41:
44:58:6f:b0:85:eb:2b:47:56:b7:ab:4b:08:ec:1a:b2:93:4b:
c4:e9:d5:97:8d:f7:3e:98:b1:fd:ab:7b:28:04:2e:c5:17:ed:
84:45:98:10:3e:31:c9:ff:5f:84:92:0d:7a:e8:08:f6:ff:3e:
01:7e:6b:41:65:18:dc:2d:c8:b4:15:56:08:a8:96:8f:05:59:
d6:f8:04:9c:da:dd:3d:49:88:d3:f9:e5:88:79:65:91:b9:a8:
03:45:b2:f5:c4:49:83:d6:98:46:ed:7b:cb:64:91:d1:c0:09:
8c:04:5c:1e:80:35:ab:74:42:2b:93:6e:47:cf:a8:89:07:5f:
e2:d0:79:2a:33:96:f0:b6:e4:53:6e:9e:d8:1e:d2:c1:b9:0d:
de:f0:a1:d5
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzKKmmIxXkVCEOO+1+uUQrXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZmM2ZTQ1MTgxZDgzOWZkMTBlNGE5MDI3NjJmMjZjOWE2
NDY3OTYwHhcNMjQwMTAyMTIzMzQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2NkNGUzNTgzMTM1MWJhZDRkNGUyNjQ4ZjliMDM5M2Y4YzFkMGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTbXoKHsb65CDnONYK+WIkSZNoUm
BM1YKAKNAky5XTRXN1EbXPrDA6hU180x6QBAmdTPBW0Vmd+dz55/talWk78tPTDe
W3TVApWGfuabZQf3oBAV0HGgujNrgkEPUtNKDBY6CCB2WlJiCUdXIAg1ep+xKtkz
g9eL6YpTJuR8lWBxSCkLcgIzQF/OagrTE2CeGqrDKmtDhKEG0yalZIZMwFaE361y
q2UYWYfefqzfBEwSOIA+jCjZNHcOiXS7pMplJzdZldaGYBgJXXFrnCAf89JfuAQE
KByXsRde+zYSSRwL2oymTz/knGVgDGCteQUxYTQosa2lqe7iE5ojbxZ/xQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOPNTjWDE1G61NTiZI+bA5P4wdDLMB8GA1UdIwQY
MBaAFNj8bkUYHYOf0Q5KkCdi8myaZGeWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlB4dVJSZ2RnNV9SRGtxUUoyTHliSnBrWjVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82MjM0M2MtZWRiZS00YThhLTg0ZjIt
N2ViMmViODViODRhLzEvNDgxT05ZTVRVYnJVMU9Ka2o1c0RrX2pCME1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi82MjM0M2MtZWRiZS00YThhLTg0ZjItN2ViMmViODViODRh
LzEvMlB4dVJSZ2RnNV9SRGtxUUoyTHliSnBrWjVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgWnxzAN
BgkqhkiG9w0BAQsFAAOCAQEAXMzSK3nMq8qDLyqxmbbVxHTS9cxgY5KMwsCzAAit
sI8MJIkLdGE3YXosZt3+KHXgUnxJWK2FNtkKmVyvYCRtAXSV0Jf8dBoAsaLEegaz
rL702iPOQ5cbZmQf1CiITfipuy0nFU6WmXDiRPNBRFhvsIXrK0dWt6tLCOwaspNL
xOnVl433Ppix/at7KAQuxRfthEWYED4xyf9fhJINeugI9v8+AX5rQWUY3C3ItBVW
CKiWjwVZ1vgEnNrdPUmI0/nliHllkbmoA0Wy9cRJg9aYRu17y2SR0cAJjARcHoA1
q3RCK5NuR8+oiQdf4tB5KjOW8LbkU26e2B7SwbkN3vCh1Q==
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:16:09 2024 by rpki-client on console-fra.rpki-client.org