Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/EIYY6pyoZzhoE-OmCsd-7Mu9FFU.roa
File: EIYY6pyoZzhoE-OmCsd-7Mu9FFU.roa (raw, json)
Hash identifier: WIKkBv55bXUTyWen3+vP5ujtl2la8B8D1bkgNt3ZJjU=
Subject key identifier: 10:86:18:EA:9C:A8:67:38:68:13:E3:A6:0A:C7:7E:EC:CB:BD:14:55
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 0192EEC9E5E0AA7138E3DC4C9ABEC5F13030
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/EIYY6pyoZzhoE-OmCsd-7Mu9FFU.roa
Signing time: Sat 02 Nov 2024 21:31:01 +0000
ROA not before: Sat 02 Nov 2024 21:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42708
IP address blocks: 86.110.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ee:c9:e5:e0:aa:71:38:e3:dc:4c:9a:be:c5:f1:30:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Nov 2 21:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=108618ea9ca867386813e3a60ac77eeccbbd1455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8b:00:a8:fe:53:02:ff:ee:2e:cb:9a:08:a0:
7e:d0:f3:94:21:ea:53:74:aa:a8:41:b7:27:2b:5a:
1e:88:98:37:d9:a7:29:15:b3:b3:5e:56:ee:53:e7:
63:df:a9:c7:c5:e1:3f:6d:8f:ac:54:4f:94:0a:ec:
72:8b:33:cd:55:54:ec:5e:f9:73:96:2b:96:3c:63:
90:17:2f:4e:d7:28:9d:f3:23:52:50:a7:d1:f5:e9:
56:9c:f7:fe:de:dd:52:fc:78:99:d9:f6:e5:ee:25:
2d:0a:16:dd:d1:cd:23:6b:65:50:3d:ec:ad:08:e5:
e7:7d:26:9c:de:80:ae:f0:dd:ee:92:e1:56:52:45:
ba:b6:ad:42:ab:be:95:cc:61:6d:3f:32:e2:ed:f1:
81:73:da:fd:65:03:8f:e9:09:51:39:8e:d4:30:33:
5f:09:10:0c:d6:97:3a:a4:85:a6:0d:5b:1b:8d:70:
81:b6:3c:62:56:f1:e8:6d:bc:93:aa:e8:e8:33:88:
f4:c9:57:cf:8e:ba:23:02:bb:43:89:99:11:6b:5a:
5d:84:56:06:5d:5a:5d:35:d3:ef:ed:6c:f5:11:09:
94:41:d4:a0:ff:38:2e:f1:65:c5:75:98:c0:03:7d:
b7:20:13:22:5d:86:da:c1:51:11:65:c6:30:28:e2:
19:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:86:18:EA:9C:A8:67:38:68:13:E3:A6:0A:C7:7E:EC:CB:BD:14:55
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/EIYY6pyoZzhoE-OmCsd-7Mu9FFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.52.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:50:ee:d6:d5:d5:75:12:fe:54:3f:4c:dc:59:ad:d3:d4:ee:
ff:71:5c:ed:3d:d8:29:66:55:9d:9e:88:b1:68:80:20:18:a8:
4e:79:ab:57:55:48:e8:72:7b:96:2e:6e:63:ff:05:d5:63:92:
f3:50:a2:07:4a:f9:37:78:4d:f9:33:ca:c7:31:cf:1e:fc:3c:
b7:77:08:f5:f7:8b:18:53:96:8a:c2:ea:3d:2e:32:9a:1d:1a:
5f:7c:bf:bc:15:66:15:d7:21:35:d3:f9:48:78:45:f8:66:08:
4e:77:99:2d:4a:85:2f:d4:4c:2d:b5:38:10:97:44:4f:ae:75:
1f:ed:bb:6f:fc:63:87:84:e3:89:1e:f3:d2:49:71:48:72:85:
d5:41:46:92:42:47:1c:f6:36:67:f4:21:54:eb:5d:ac:b0:a6:
fc:8a:3a:87:d2:46:e6:4b:0e:1e:7a:05:ca:5f:8d:61:ba:aa:
49:59:1c:43:6a:cf:1b:d2:a4:a7:45:88:b3:9c:00:ab:c7:6e:
c7:6e:90:73:f3:ab:ca:86:6f:8c:97:32:1d:2b:78:5e:c8:6f:
40:9b:47:66:7d:af:ea:11:4f:94:35:ff:34:83:71:29:13:82:
5b:00:63:16:b4:06:e5:0f:93:b2:52:8d:5d:dd:04:79:1f:30:
48:94:1e:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZLuyeXgqnE449xMmr7F8TAwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MDY3OTc3ZWZkMTRiYzg5ZmIwZGFiYTAzYmIwZjYwMGZi
YjAxODQwHhcNMjQxMTAyMjEzMTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDg2MThlYTljYTg2NzM4NjgxM2UzYTYwYWM3N2VlY2NiYmQxNDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4sAqP5TAv/uLsuaCKB+0POUIepT
dKqoQbcnK1oeiJg32acpFbOzXlbuU+dj36nHxeE/bY+sVE+UCuxyizPNVVTsXvlz
liuWPGOQFy9O1yid8yNSUKfR9elWnPf+3t1S/HiZ2fbl7iUtChbd0c0ja2VQPeyt
COXnfSac3oCu8N3ukuFWUkW6tq1Cq76VzGFtPzLi7fGBc9r9ZQOP6QlROY7UMDNf
CRAM1pc6pIWmDVsbjXCBtjxiVvHobbyTqujoM4j0yVfPjrojArtDiZkRa1pdhFYG
XVpdNdPv7Wz1EQmUQdSg/zgu8WXFdZjAA323IBMiXYbawVERZcYwKOIZXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBCGGOqcqGc4aBPjpgrHfuzLvRRVMB8GA1UdIwQY
MBaAFBcGeXfv0UvIn7DaugO7D2APuwGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRndaNWQtX1JTOGlmc05xNkE3c1BZQS03QVlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lMWFkN2EtMTJlNy00ZmQwLWI2MWUt
ZDFhNzc3MmRiMDc2LzEvRUlZWTZweW9aemhvRS1PbUNzZC03TXU5RkZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9lMWFkN2EtMTJlNy00ZmQwLWI2MWUtZDFhNzc3MmRiMDc2
LzEvRndaNWQtX1JTOGlmc05xNkE3c1BZQS03QVlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVm40MA0G
CSqGSIb3DQEBCwUAA4IBAQCcUO7W1dV1Ev5UP0zcWa3T1O7/cVztPdgpZlWdnoix
aIAgGKhOeatXVUjocnuWLm5j/wXVY5LzUKIHSvk3eE35M8rHMc8e/Dy3dwj194sY
U5aKwuo9LjKaHRpffL+8FWYV1yE10/lIeEX4ZghOd5ktSoUv1EwttTgQl0RPrnUf
7btv/GOHhOOJHvPSSXFIcoXVQUaSQkcc9jZn9CFU612ssKb8ijqH0kbmSw4eegXK
X41huqpJWRxDas8b0qSnRYiznACrx27HbpBz86vKhm+MlzIdK3heyG9Am0dmfa/q
EU+UNf80g3EpE4JbAGMWtAblD5OyUo1d3QR5HzBIlB5j
-----END CERTIFICATE-----
Generated at Mon Nov 25 16:40:33 2024 by rpki-client on console-ams.rpki-client.org