Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/vpcCujnAFcUo2pLB8foQLo4og-Q.roa
File: vpcCujnAFcUo2pLB8foQLo4og-Q.roa (raw, json)
Hash identifier: XcNgW9E0RFkBozZbGXhxgHLjwSL8SUDZbAXqYT0/mYI=
Subject key identifier: BE:97:02:BA:39:C0:15:C5:28:DA:92:C1:F1:FA:10:2E:8E:28:83:E4
Certificate issuer: /CN=463f917077f8f3d0e338c742ea21d64358d19d52
Certificate serial: 018DEA894B84415E4FD52D0920D128306EDF
Authority key identifier: 46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/vpcCujnAFcUo2pLB8foQLo4og-Q.roa
Signing time: Tue 27 Feb 2024 12:28:02 +0000
ROA not before: Tue 27 Feb 2024 12:28:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44196
IP address blocks: 195.2.202.0/23 maxlen: 23
195.2.202.0/24 maxlen: 24
195.2.203.0/24 maxlen: 24
195.93.132.0/23 maxlen: 23
195.93.132.0/24 maxlen: 24
195.93.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ea:89:4b:84:41:5e:4f:d5:2d:09:20:d1:28:30:6e:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463f917077f8f3d0e338c742ea21d64358d19d52
Validity
Not Before: Feb 27 12:28:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be9702ba39c015c528da92c1f1fa102e8e2883e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4b:7c:14:2e:32:8f:b7:df:e7:47:4a:8d:65:
f8:3b:f0:99:0a:ea:1f:c8:98:f8:a9:43:c0:43:6c:
37:ab:56:77:96:de:30:ff:91:68:1f:6f:73:e6:ec:
26:3b:95:98:ab:52:43:d2:60:66:be:62:bd:cc:d4:
a4:83:ff:f5:40:92:fd:bd:dc:3d:fe:83:80:b3:9c:
0e:cc:6b:a5:ed:e8:c2:93:b2:ba:80:79:87:f1:3e:
8f:fb:c9:4f:4f:ed:0a:f9:0f:22:f3:20:c5:a9:05:
d2:43:84:f0:94:dd:27:58:22:72:40:ef:12:e1:01:
0e:e1:b5:3d:d8:57:07:39:35:70:c9:21:16:6b:9b:
78:a4:20:d2:f4:58:4c:b0:cf:fe:09:17:ae:c6:ea:
a0:66:61:a2:0e:32:54:d4:3f:f8:3f:a0:c0:2a:80:
ee:92:c6:16:f0:95:28:bc:ca:96:63:69:26:5c:2d:
f4:a1:92:89:84:a4:7e:74:25:b8:a6:01:74:61:5d:
a8:f9:41:b1:13:b6:61:17:a8:2b:18:69:8e:05:16:
50:e8:61:48:4c:05:fd:96:bf:7d:b2:33:e0:9d:bc:
da:84:60:77:77:7c:1a:9d:42:3f:64:33:bd:e7:87:
0c:cc:80:28:45:75:af:9b:43:cf:0c:a5:17:d0:7f:
6b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:97:02:BA:39:C0:15:C5:28:DA:92:C1:F1:FA:10:2E:8E:28:83:E4
X509v3 Authority Key Identifier:
keyid:46:3F:91:70:77:F8:F3:D0:E3:38:C7:42:EA:21:D6:43:58:D1:9D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rj-RcHf489DjOMdC6iHWQ1jRnVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/vpcCujnAFcUo2pLB8foQLo4og-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8b5f7c-b3ae-4b58-81bb-25a40c075f12/1/Rj-RcHf489DjOMdC6iHWQ1jRnVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.202.0/23
195.93.132.0/23
Signature Algorithm: sha256WithRSAEncryption
22:f4:46:62:b8:74:13:cc:fc:f3:b2:c6:d2:88:13:3f:82:3f:
3e:76:ed:eb:44:b6:06:cd:2b:83:d0:e4:11:dd:61:45:fc:f0:
fb:a6:a7:22:ff:98:d0:77:30:a7:3c:4e:83:71:f2:34:12:01:
49:85:88:61:52:e1:b7:ef:62:ff:90:5d:45:05:f3:e0:9a:8c:
5f:cd:8b:9c:17:51:81:20:71:25:13:f2:43:c6:d0:1f:97:55:
22:69:f2:ff:fc:39:18:9f:31:4c:e5:54:3a:f7:4e:c2:bf:4b:
53:91:09:11:2d:79:17:6b:cc:a7:cd:d4:b2:9d:9d:68:95:45:
b5:ad:b0:aa:38:be:dc:b1:24:11:6a:e3:36:18:26:10:2c:eb:
37:e8:6e:3b:80:a3:c8:b4:a0:7d:a1:f4:d0:dc:bb:43:11:ad:
ed:f6:5c:f4:88:0b:fc:4c:cc:99:0e:80:6c:bf:8d:58:35:96:
0a:88:1b:bd:9b:9f:73:5d:ba:d6:4d:e1:13:a8:b0:15:a9:01:
36:ab:7f:4f:15:a1:c9:77:29:78:f0:56:00:70:39:1a:ab:22:
7a:4a:39:b6:ab:95:91:7f:c3:87:88:d7:c4:89:1b:66:b4:f7:
34:35:cc:d0:ae:c4:76:98:8e:f9:cf:75:8b:6a:eb:5c:6a:dd:
a0:9e:43:40
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY3qiUuEQV5P1S0JINEoMG7fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2M2Y5MTcwNzdmOGYzZDBlMzM4Yzc0MmVhMjFkNjQzNThk
MTlkNTIwHhcNMjQwMjI3MTIyODAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTk3MDJiYTM5YzAxNWM1MjhkYTkyYzFmMWZhMTAyZThlMjg4M2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEt8FC4yj7ff50dKjWX4O/CZCuof
yJj4qUPAQ2w3q1Z3lt4w/5FoH29z5uwmO5WYq1JD0mBmvmK9zNSkg//1QJL9vdw9
/oOAs5wOzGul7ejCk7K6gHmH8T6P+8lPT+0K+Q8i8yDFqQXSQ4TwlN0nWCJyQO8S
4QEO4bU92FcHOTVwySEWa5t4pCDS9FhMsM/+CReuxuqgZmGiDjJU1D/4P6DAKoDu
ksYW8JUovMqWY2kmXC30oZKJhKR+dCW4pgF0YV2o+UGxE7ZhF6grGGmOBRZQ6GFI
TAX9lr99sjPgnbzahGB3d3wanUI/ZDO954cMzIAoRXWvm0PPDKUX0H9rTQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFL6XAro5wBXFKNqSwfH6EC6OKIPkMB8GA1UdIwQY
MBaAFEY/kXB3+PPQ4zjHQuoh1kNY0Z1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmotUmNIZjQ4OURqT01kQzZpSFdRMWpSblZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84YjVmN2MtYjNhZS00YjU4LTgxYmIt
MjVhNDBjMDc1ZjEyLzEvdnBjQ3VqbkFGY1VvMnBMQjhmb1FMbzRvZy1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84YjVmN2MtYjNhZS00YjU4LTgxYmItMjVhNDBjMDc1ZjEy
LzEvUmotUmNIZjQ4OURqT01kQzZpSFdRMWpSblZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwwLKAwQB
w12EMA0GCSqGSIb3DQEBCwUAA4IBAQAi9EZiuHQTzPzzssbSiBM/gj8+du3rRLYG
zSuD0OQR3WFF/PD7pqci/5jQdzCnPE6DcfI0EgFJhYhhUuG372L/kF1FBfPgmoxf
zYucF1GBIHElE/JDxtAfl1UiafL//DkYnzFM5VQ6907Cv0tTkQkRLXkXa8ynzdSy
nZ1olUW1rbCqOL7csSQRauM2GCYQLOs36G47gKPItKB9ofTQ3LtDEa3t9lz0iAv8
TMyZDoBsv41YNZYKiBu9m59zXbrWTeETqLAVqQE2q39PFaHJdyl48FYAcDkaqyJ6
Sjm2q5WRf8OHiNfEiRtmtPc0NczQrsR2mI75z3WLautcat2gnkNA
-----END CERTIFICATE-----
Generated at Fri Jun 7 13:11:17 2024 by rpki-client on console-ams.rpki-client.org