Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/1-BXNJQzG92086x0OEmVn_5gMG-Q.roa
File: 1-BXNJQzG92086x0OEmVn_5gMG-Q.roa (raw, json)
Hash identifier: 57Lbj2kPHNwCHNGfC6wuCgWGhS0zeRD7zHRDoBvPZwc=
Subject key identifier: F8:15:CD:25:0C:C6:F7:6D:3C:EB:1D:0E:12:65:67:FF:98:0C:1B:E4
Certificate issuer: /CN=08e7d7b3bc4c0791c0cffe3f1555ab773e3ed16e
Certificate serial: 0191ED5EF5350949FAA70D0DFC8A39B36894
Authority key identifier: 08:E7:D7:B3:BC:4C:07:91:C0:CF:FE:3F:15:55:AB:77:3E:3E:D1:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/1-BXNJQzG92086x0OEmVn_5gMG-Q.roa
Signing time: Fri 13 Sep 2024 21:51:48 +0000
ROA not before: Fri 13 Sep 2024 21:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 93.189.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/COfXs7xMB5HAz_4_FVWrdz4-0W4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/COfXs7xMB5HAz_4_FVWrdz4-0W4.mft
rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ed:5e:f5:35:09:49:fa:a7:0d:0d:fc:8a:39:b3:68:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08e7d7b3bc4c0791c0cffe3f1555ab773e3ed16e
Validity
Not Before: Sep 13 21:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f815cd250cc6f76d3ceb1d0e126567ff980c1be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:fa:10:2b:67:d5:7b:99:4f:d8:4f:d0:10:
03:23:fb:7b:cb:8f:b4:9a:cb:2c:f0:65:0c:d5:dd:
72:ff:12:7d:07:66:57:6b:2c:61:c9:46:ef:30:76:
3d:98:c3:7f:3b:12:61:84:99:22:73:1b:21:87:d2:
c6:63:25:8e:57:a3:32:1e:e8:66:37:d8:ba:df:d9:
e8:6e:41:4e:5e:5f:53:7d:18:33:6f:e8:26:f6:5b:
af:db:13:dc:30:b9:c2:81:5a:c7:97:50:ab:83:dc:
c3:60:06:87:a0:c8:fa:9c:d3:1f:1f:31:d3:9d:73:
24:73:73:36:d6:1e:f2:b2:10:a3:bb:33:fc:d1:fd:
94:32:e9:41:86:d7:0a:41:4a:de:e7:31:04:a2:2c:
c4:05:90:c3:d1:69:ca:01:5a:18:f0:d1:3c:f0:b5:
e6:2c:1c:0b:6d:60:f2:ea:82:76:f6:08:66:22:45:
38:f0:ab:d5:1f:07:f6:39:b1:90:12:4d:a2:32:65:
4f:f7:41:4d:cf:19:cc:e4:8f:85:a2:c7:32:cb:bb:
84:85:b4:a5:60:2a:58:a1:98:9d:3c:6f:3e:c1:37:
b4:57:09:90:c0:a3:92:f0:37:5e:16:a3:d5:3d:03:
9a:3d:bd:6d:7b:c8:fe:0e:3a:fb:c9:52:3e:99:7c:
78:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:15:CD:25:0C:C6:F7:6D:3C:EB:1D:0E:12:65:67:FF:98:0C:1B:E4
X509v3 Authority Key Identifier:
keyid:08:E7:D7:B3:BC:4C:07:91:C0:CF:FE:3F:15:55:AB:77:3E:3E:D1:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/COfXs7xMB5HAz_4_FVWrdz4-0W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/1-BXNJQzG92086x0OEmVn_5gMG-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/1b90de-2b76-4d0b-9093-2fc35cd1ac2a/1/COfXs7xMB5HAz_4_FVWrdz4-0W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.189.228.0/22
Signature Algorithm: sha256WithRSAEncryption
06:bb:cb:53:79:7c:96:ae:bf:53:1d:62:1d:7c:57:b6:18:86:
61:19:11:2e:49:ee:8a:40:1f:50:1a:bd:2c:92:da:6f:72:a0:
a8:6e:48:af:95:fc:c5:9b:17:61:0d:e7:53:ef:5c:8d:d0:ea:
c4:a1:d0:60:5a:95:22:1c:1f:21:31:02:6d:07:c5:88:16:27:
e7:c2:8d:f1:14:f1:70:04:62:cf:71:12:84:50:d1:d5:09:e5:
2e:f6:a8:03:bd:60:1a:08:97:6c:54:64:37:13:eb:dd:46:d8:
58:e2:1a:e6:a8:f2:bf:fd:03:99:50:0c:02:28:22:38:df:14:
70:bc:ef:0e:34:27:c9:74:9e:e5:68:ea:f3:7a:b2:fd:2a:10:
e2:44:7b:b0:8d:83:30:19:02:48:8c:16:05:8d:78:f9:5d:4d:
8f:06:44:89:c7:a1:03:1f:10:31:bf:3f:c2:f3:c9:80:85:a8:
72:ac:ac:18:76:3f:d0:bd:a0:21:5c:09:d0:c1:88:44:db:a1:
b9:65:63:92:32:9c:ce:34:27:6a:e0:47:6d:78:99:84:be:2c:
a0:2a:9b:49:5c:bd:d0:c5:b4:03:5e:c9:7e:da:01:1f:98:9e:
1f:64:ec:f5:c2:e7:b9:d3:3e:00:4c:d4:8e:9e:45:c8:f0:fa:
a2:2e:71:4c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZHtXvU1CUn6pw0N/Io5s2iUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4ZTdkN2IzYmM0YzA3OTFjMGNmZmUzZjE1NTVhYjc3M2Uz
ZWQxNmUwHhcNMjQwOTEzMjE1MTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODE1Y2QyNTBjYzZmNzZkM2NlYjFkMGUxMjY1NjdmZjk4MGMxYmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0r6ECtn1XuZT9hP0BADI/t7y4+0
msss8GUM1d1y/xJ9B2ZXayxhyUbvMHY9mMN/OxJhhJkicxshh9LGYyWOV6MyHuhm
N9i639nobkFOXl9TfRgzb+gm9luv2xPcMLnCgVrHl1Crg9zDYAaHoMj6nNMfHzHT
nXMkc3M21h7yshCjuzP80f2UMulBhtcKQUre5zEEoizEBZDD0WnKAVoY8NE88LXm
LBwLbWDy6oJ29ghmIkU48KvVHwf2ObGQEk2iMmVP90FNzxnM5I+Foscyy7uEhbSl
YCpYoZidPG8+wTe0VwmQwKOS8DdeFqPVPQOaPb1te8j+Djr7yVI+mXx4cQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPgVzSUMxvdtPOsdDhJlZ/+YDBvkMB8GA1UdIwQY
MBaAFAjn17O8TAeRwM/+PxVVq3c+PtFuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ09mWHM3eE1CNUhBel80X0ZWV3JkejQtMFc0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8xYjkwZGUtMmI3Ni00ZDBiLTkwOTMt
MmZjMzVjZDFhYzJhLzEvMS1CWE5KUXpHOTIwODZ4ME9FbVZuXzVnTUctUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMjcvMWI5MGRlLTJiNzYtNGQwYi05MDkzLTJmYzM1Y2QxYWMy
YS8xL0NPZlhzN3hNQjVIQXpfNF9GVldyZHo0LTBXNC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAl295DAN
BgkqhkiG9w0BAQsFAAOCAQEABrvLU3l8lq6/Ux1iHXxXthiGYRkRLknuikAfUBq9
LJLab3KgqG5Ir5X8xZsXYQ3nU+9cjdDqxKHQYFqVIhwfITECbQfFiBYn58KN8RTx
cARiz3EShFDR1QnlLvaoA71gGgiXbFRkNxPr3UbYWOIa5qjyv/0DmVAMAigiON8U
cLzvDjQnyXSe5Wjq83qy/SoQ4kR7sI2DMBkCSIwWBY14+V1NjwZEicehAx8QMb8/
wvPJgIWocqysGHY/0L2gIVwJ0MGIRNuhuWVjkjKczjQnauBHbXiZhL4soCqbSVy9
0MW0A17JftoBH5ieH2Ts9cLnudM+AEzUjp5FyPD6oi5xTA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:27 2024 by rpki-client on console-ams.rpki-client.org