Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/VKWqjO9xFWGampufsiz64vmIKP0.roa
File: VKWqjO9xFWGampufsiz64vmIKP0.roa (raw, json)
Hash identifier: 3t4K1I3YkLfDIMaAbNqK0tAitE5EwiQxJ82GdgjKa40=
Subject key identifier: 54:A5:AA:8C:EF:71:15:61:9A:9A:9B:9F:B2:2C:FA:E2:F9:88:28:FD
Certificate issuer: /CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Certificate serial: 018CC94E1510D0DD1620E1615F13FC60B937
Authority key identifier: 96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/VKWqjO9xFWGampufsiz64vmIKP0.roa
Signing time: Tue 02 Jan 2024 08:33:06 +0000
ROA not before: Tue 02 Jan 2024 08:33:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20773
IP address blocks: 134.97.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.mft
rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:15:10:d0:dd:16:20:e1:61:5f:13:fc:60:b9:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Validity
Not Before: Jan 2 08:33:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54a5aa8cef7115619a9a9b9fb22cfae2f98828fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ee:f6:1e:74:4d:23:25:27:fa:38:e3:5e:f9:
d3:53:13:9a:4d:b2:f4:ad:e0:cc:3c:29:a8:86:65:
89:5a:e1:57:93:01:8d:bf:7f:8f:bc:a3:7d:59:75:
e8:b1:11:3e:bb:f1:eb:92:5e:e1:a4:55:f7:b0:29:
19:eb:ca:22:06:cc:d6:72:e1:1f:ff:d4:5f:66:9b:
a3:bf:9f:2b:19:e9:9c:b9:a4:46:b8:fb:40:84:49:
8a:69:6d:9a:72:d2:bb:c2:39:b6:47:81:cc:bb:de:
07:5a:62:76:02:48:7f:65:b7:fb:29:09:2e:38:f0:
77:c9:83:aa:7b:5f:e9:4f:a2:c1:cc:86:c5:a1:89:
da:d8:b8:df:35:60:27:59:af:ef:20:27:e9:8c:ea:
81:26:46:b5:a4:47:70:3a:ca:6d:59:e6:49:0f:38:
e0:20:71:9e:bd:5e:fb:db:b9:b2:8d:c1:2c:16:66:
e1:d0:4c:a5:bd:17:53:23:53:1e:bd:bf:98:f1:e0:
bd:1b:92:8a:e6:7c:8e:9d:97:1a:56:cd:ce:bb:ce:
b7:ae:bc:16:e3:91:2d:8b:f9:11:12:71:57:f0:42:
57:46:ce:92:52:69:74:39:c4:27:49:b3:4e:a2:ee:
33:8e:fb:67:eb:48:e7:bc:b1:53:99:79:23:ae:48:
4b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A5:AA:8C:EF:71:15:61:9A:9A:9B:9F:B2:2C:FA:E2:F9:88:28:FD
X509v3 Authority Key Identifier:
keyid:96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/VKWqjO9xFWGampufsiz64vmIKP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.97.4.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:66:10:2b:22:25:94:99:98:f1:06:b6:00:b7:15:b1:55:72:
10:c7:75:47:ad:e3:a8:5a:b7:3a:a2:02:0c:69:60:c8:cd:bf:
71:b1:71:d3:84:fd:ba:2f:bc:cd:98:46:3c:8a:fc:ce:7e:45:
a5:f7:ac:b6:ff:d3:3c:10:f7:43:25:b4:47:70:ee:bf:b1:c1:
14:e2:bc:24:97:17:74:0e:5a:15:24:8a:6a:db:39:d5:94:0b:
08:13:66:86:2e:6d:a0:da:c4:60:d8:4e:6e:f4:55:8f:97:b9:
de:0e:b9:72:1a:a9:63:1f:93:3c:43:01:9e:bf:5c:df:ff:27:
b5:c9:3b:02:f2:10:93:a8:53:3b:2f:4b:a4:30:4b:37:1e:ce:
51:30:f5:8d:43:e1:49:ca:63:b3:87:65:cc:19:06:83:4f:c5:
53:5f:03:4a:71:3d:d3:9d:99:25:a5:26:b3:b6:15:33:44:dc:
78:9b:9f:66:db:70:dc:fb:98:4b:c1:34:01:90:3a:f2:47:7b:
ef:5e:c3:be:cd:7a:fc:2f:35:1a:8a:dd:4d:4a:77:c2:d0:20:
b4:fe:3a:a3:7d:8c:e8:97:c3:1b:24:02:58:ea:3a:ad:ab:e1:
3d:3c:f6:e0:a4:0d:a7:05:ad:ae:3a:7e:58:e2:df:19:42:d4:
1f:5e:bf:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJThUQ0N0WIOFhXxP8YLk3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2OTk0OGQwZmU0ZDdmOTlkNTRiYThiZmZjZDk5YTFhNjA4
YWUwZDMwHhcNMjQwMTAyMDgzMzA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NGE1YWE4Y2VmNzExNTYxOWE5YTliOWZiMjJjZmFlMmY5ODgyOGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3u72HnRNIyUn+jjjXvnTUxOaTbL0
reDMPCmohmWJWuFXkwGNv3+PvKN9WXXosRE+u/Hrkl7hpFX3sCkZ68oiBszWcuEf
/9RfZpujv58rGemcuaRGuPtAhEmKaW2actK7wjm2R4HMu94HWmJ2Akh/Zbf7KQku
OPB3yYOqe1/pT6LBzIbFoYna2LjfNWAnWa/vICfpjOqBJka1pEdwOsptWeZJDzjg
IHGevV7727myjcEsFmbh0EylvRdTI1Mevb+Y8eC9G5KK5nyOnZcaVs3Ou863rrwW
45Eti/kREnFX8EJXRs6SUml0OcQnSbNOou4zjvtn60jnvLFTmXkjrkhL7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFSlqozvcRVhmpqbn7Is+uL5iCj9MB8GA1UdIwQY
MBaAFJaZSND+TX+Z1Uuov/zZmhpgiuDTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHBsSTBQNU5mNW5WUzZpX19ObWFHbUNLNE5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xYTJmYTItZWViMy00MzEyLTkxMzAt
NTNjYzVkYWY1MmNmLzEvVktXcWpPOXhGV0dhbXB1ZnNpejY0dm1JS1AwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xYTJmYTItZWViMy00MzEyLTkxMzAtNTNjYzVkYWY1MmNm
LzEvbHBsSTBQNU5mNW5WUzZpX19ObWFHbUNLNE5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAhmEEMA0G
CSqGSIb3DQEBCwUAA4IBAQB+ZhArIiWUmZjxBrYAtxWxVXIQx3VHreOoWrc6ogIM
aWDIzb9xsXHThP26L7zNmEY8ivzOfkWl96y2/9M8EPdDJbRHcO6/scEU4rwklxd0
DloVJIpq2znVlAsIE2aGLm2g2sRg2E5u9FWPl7neDrlyGqljH5M8QwGev1zf/ye1
yTsC8hCTqFM7L0ukMEs3Hs5RMPWNQ+FJymOzh2XMGQaDT8VTXwNKcT3TnZklpSaz
thUzRNx4m59m23Dc+5hLwTQBkDryR3vvXsO+zXr8LzUait1NSnfC0CC0/jqjfYzo
l8MbJAJY6jqtq+E9PPbgpA2nBa2uOn5Y4t8ZQtQfXr8k
-----END CERTIFICATE-----
Generated at Sun May 19 14:52:14 2024 by rpki-client on console-ams.rpki-client.org