Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/bbee59-99f4-413c-b0d6-58081a16cbdb/1/Rq0weHdSz0ZE5A2IDGXPoTsJAOw.roa
File: Rq0weHdSz0ZE5A2IDGXPoTsJAOw.roa (raw, json)
Hash identifier: BNeEiYP4GcUhWQPWNx7tEqL1O1iUsp+lHqKsZ/E/ZSk=
Subject key identifier: 46:AD:30:78:77:52:CF:46:44:E4:0D:88:0C:65:CF:A1:3B:09:00:EC
Certificate issuer: /CN=1ba6f5d32474be86f63058944537629344d4f01a
Certificate serial: 0190CB24F9FBB71F0844F1A8852CCB8DA4C8
Authority key identifier: 1B:A6:F5:D3:24:74:BE:86:F6:30:58:94:45:37:62:93:44:D4:F0:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6b10yR0vob2MFiURTdik0TU8Bo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/bbee59-99f4-413c-b0d6-58081a16cbdb/1/Rq0weHdSz0ZE5A2IDGXPoTsJAOw.roa
Signing time: Fri 19 Jul 2024 13:18:36 +0000
ROA not before: Fri 19 Jul 2024 13:18:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207522
IP address blocks: 2001:67c:ec4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/bbee59-99f4-413c-b0d6-58081a16cbdb/1/G6b10yR0vob2MFiURTdik0TU8Bo.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/bbee59-99f4-413c-b0d6-58081a16cbdb/1/G6b10yR0vob2MFiURTdik0TU8Bo.mft
rsync://rpki.ripe.net/repository/DEFAULT/G6b10yR0vob2MFiURTdik0TU8Bo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 16:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cb:24:f9:fb:b7:1f:08:44:f1:a8:85:2c:cb:8d:a4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba6f5d32474be86f63058944537629344d4f01a
Validity
Not Before: Jul 19 13:18:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46ad30787752cf4644e40d880c65cfa13b0900ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f1:c5:09:c4:fd:4f:09:5c:d6:69:33:36:21:
c5:ed:f0:51:ac:67:96:83:08:e3:73:ed:2a:1f:ff:
5c:d3:53:3c:77:d2:ee:90:67:58:bc:eb:70:7e:2d:
fb:5c:06:87:c6:52:de:82:50:94:d4:f8:66:fb:e9:
86:c0:7b:fe:00:a0:e8:d0:0d:81:17:51:86:7e:ce:
eb:dd:73:73:60:22:7e:0e:38:9e:dd:77:46:4e:b9:
7e:2e:f4:95:63:a1:b6:7a:3d:8d:a0:46:7c:04:99:
7b:ec:18:d0:89:d2:34:d6:a8:fa:0a:2d:40:55:3c:
c1:6b:d9:0a:c2:11:7c:b9:60:db:9b:07:91:49:52:
3b:09:e8:e7:9a:19:0d:02:3c:c8:f4:2f:0f:7f:e3:
bf:a0:86:d6:84:96:e9:df:80:6a:93:b5:69:91:5b:
bb:a9:e9:23:cb:04:4a:dd:27:e7:3a:31:32:f3:5b:
84:42:fd:63:bc:1f:8d:71:42:d1:94:9c:7b:96:10:
cc:c3:fb:23:fc:5b:30:74:b7:99:21:59:5b:f3:2c:
96:f1:25:93:47:1f:73:99:45:8d:f8:ae:51:69:54:
38:1e:e3:66:e5:99:01:dd:02:ca:62:b6:23:ab:ed:
08:6b:d6:7f:a0:01:b6:dc:cd:a4:20:a2:e4:15:80:
68:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AD:30:78:77:52:CF:46:44:E4:0D:88:0C:65:CF:A1:3B:09:00:EC
X509v3 Authority Key Identifier:
keyid:1B:A6:F5:D3:24:74:BE:86:F6:30:58:94:45:37:62:93:44:D4:F0:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6b10yR0vob2MFiURTdik0TU8Bo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/bbee59-99f4-413c-b0d6-58081a16cbdb/1/Rq0weHdSz0ZE5A2IDGXPoTsJAOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/bbee59-99f4-413c-b0d6-58081a16cbdb/1/G6b10yR0vob2MFiURTdik0TU8Bo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:ec4::/48
Signature Algorithm: sha256WithRSAEncryption
75:1a:3f:36:b4:31:30:00:02:9e:13:23:08:b7:e3:37:5a:11:
ff:b6:8d:a0:c7:4f:cf:ab:0e:10:07:ea:f7:59:40:06:c7:59:
ea:b3:fa:06:38:95:3d:fa:2e:4a:82:6c:80:7d:55:54:70:3c:
1e:02:38:1d:cb:f1:27:bd:28:84:a7:f2:ef:42:c0:5c:12:c8:
f5:6e:97:ba:df:0c:a7:b0:38:c2:03:a2:7e:70:5d:0d:72:ed:
30:3f:52:e5:ce:2b:36:be:33:9e:e3:14:ef:1b:8e:a6:8a:54:
10:31:df:92:5e:44:3f:87:26:5e:4d:bd:85:22:4d:ee:55:c4:
5b:4f:04:67:da:45:4f:04:26:65:64:3c:71:7c:25:63:24:83:
75:83:9c:b3:4e:88:67:84:1a:31:3c:43:0e:35:3b:35:3b:75:
27:6a:69:1b:e5:d4:8c:05:2c:60:08:94:3c:ff:3e:a2:91:3b:
c8:84:e9:c0:d1:34:41:40:63:26:0f:d8:0c:b4:a8:f9:e5:f3:
a1:66:ec:1c:db:93:66:0f:3f:bf:bf:ac:86:5b:76:76:1f:92:
ac:86:64:94:73:b9:91:ce:f0:b1:53:40:e8:b8:f3:8b:d2:7c:
e4:73:bd:0b:a4:20:47:9a:0a:10:98:ee:e3:98:c4:c1:b7:f9:
57:38:3c:c2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZDLJPn7tx8IRPGohSzLjaTIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiYTZmNWQzMjQ3NGJlODZmNjMwNTg5NDQ1Mzc2MjkzNDRk
NGYwMWEwHhcNMjQwNzE5MTMxODM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NmFkMzA3ODc3NTJjZjQ2NDRlNDBkODgwYzY1Y2ZhMTNiMDkwMGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvHFCcT9Twlc1mkzNiHF7fBRrGeW
gwjjc+0qH/9c01M8d9LukGdYvOtwfi37XAaHxlLeglCU1Phm++mGwHv+AKDo0A2B
F1GGfs7r3XNzYCJ+Djie3XdGTrl+LvSVY6G2ej2NoEZ8BJl77BjQidI01qj6Ci1A
VTzBa9kKwhF8uWDbmweRSVI7CejnmhkNAjzI9C8Pf+O/oIbWhJbp34Bqk7VpkVu7
qekjywRK3SfnOjEy81uEQv1jvB+NcULRlJx7lhDMw/sj/FswdLeZIVlb8yyW8SWT
Rx9zmUWN+K5RaVQ4HuNm5ZkB3QLKYrYjq+0Ia9Z/oAG23M2kIKLkFYBoMQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEatMHh3Us9GROQNiAxlz6E7CQDsMB8GA1UdIwQY
MBaAFBum9dMkdL6G9jBYlEU3YpNE1PAaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzZiMTB5UjB2b2IyTUZpVVJUZGlrMFRVOEJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9iYmVlNTktOTlmNC00MTNjLWIwZDYt
NTgwODFhMTZjYmRiLzEvUnEwd2VIZFN6MFpFNUEySURHWFBvVHNKQU93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9iYmVlNTktOTlmNC00MTNjLWIwZDYtNTgwODFhMTZjYmRi
LzEvRzZiMTB5UjB2b2IyTUZpVVJUZGlrMFRVOEJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA7E
MA0GCSqGSIb3DQEBCwUAA4IBAQB1Gj82tDEwAAKeEyMIt+M3WhH/to2gx0/Pqw4Q
B+r3WUAGx1nqs/oGOJU9+i5KgmyAfVVUcDweAjgdy/EnvSiEp/LvQsBcEsj1bpe6
3wynsDjCA6J+cF0Ncu0wP1Llzis2vjOe4xTvG46milQQMd+SXkQ/hyZeTb2FIk3u
VcRbTwRn2kVPBCZlZDxxfCVjJIN1g5yzTohnhBoxPEMONTs1O3Unamkb5dSMBSxg
CJQ8/z6ikTvIhOnA0TRBQGMmD9gMtKj55fOhZuwc25NmDz+/v6yGW3Z2H5KshmSU
c7mRzvCxU0DouPOL0nzkc70LpCBHmgoQmO7jmMTBt/lXODzC
-----END CERTIFICATE-----
Generated at Wed Sep 18 23:40:44 2024 by rpki-client on console-fra.rpki-client.org