Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/YoiPJV6CzqYWvs6KOyKW24dpnaA.roa
File: YoiPJV6CzqYWvs6KOyKW24dpnaA.roa (raw, json)
Hash identifier: mupBGT0/dWEcWKL6lX1DGq82PAP0H6WwufZO3z3yHD0=
Subject key identifier: 62:88:8F:25:5E:82:CE:A6:16:BE:CE:8A:3B:22:96:DB:87:69:9D:A0
Certificate issuer: /CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c
Certificate serial: 018CC79521BA1F7694AB408F92557BAFE503
Authority key identifier: 0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/YoiPJV6CzqYWvs6KOyKW24dpnaA.roa
Signing time: Tue 02 Jan 2024 00:31:28 +0000
ROA not before: Tue 02 Jan 2024 00:31:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8560
IP address blocks: 185.127.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:21:ba:1f:76:94:ab:40:8f:92:55:7b:af:e5:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c
Validity
Not Before: Jan 2 00:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62888f255e82cea616bece8a3b2296db87699da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:97:01:58:40:98:b0:5c:8a:c8:cd:84:13:32:
0f:85:93:40:b8:76:1a:bd:f6:50:bf:34:ea:de:fe:
99:1f:a0:25:27:b6:f0:e1:c0:4a:5d:13:3b:b2:bc:
ce:d6:ed:4d:14:20:a1:e7:40:1b:41:ef:4b:8c:0a:
ac:5a:e3:6e:62:c2:12:a3:7d:44:08:9c:ef:90:34:
8d:bf:df:c6:fc:ab:6d:f5:66:78:27:22:8b:af:7c:
b0:05:f6:49:7e:fd:a6:7e:f7:81:78:eb:9d:64:22:
8b:b9:36:5d:90:08:4d:05:4f:66:29:85:08:bc:b7:
7c:5d:0c:ac:1e:e4:1f:1f:0a:8b:4e:70:65:c6:8c:
e8:ad:69:1c:22:48:2d:8d:52:76:ce:4d:82:7d:7e:
d5:b3:af:45:5e:4e:2a:84:73:66:8b:a1:87:14:2c:
22:3a:27:e3:db:f8:b4:f2:30:c3:1a:c1:7b:5c:92:
4e:a7:f2:69:54:21:86:78:48:79:79:bb:30:bc:18:
cd:1a:53:20:b6:b7:64:d1:80:00:c9:2b:66:ef:d1:
33:b6:ee:ab:d8:6f:be:38:34:d1:56:2d:c6:88:21:
c8:e6:e7:ca:6d:11:69:b8:1b:bc:15:16:6e:30:a6:
d8:ee:20:08:28:ef:f8:75:37:c9:04:81:7f:6a:28:
13:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:88:8F:25:5E:82:CE:A6:16:BE:CE:8A:3B:22:96:DB:87:69:9D:A0
X509v3 Authority Key Identifier:
keyid:0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/YoiPJV6CzqYWvs6KOyKW24dpnaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.30.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:1c:dd:19:e5:8f:87:7f:1c:b4:72:83:ce:3b:c6:40:ae:10:
a2:47:d4:69:f0:de:06:2c:db:61:1e:69:1c:46:34:84:71:c6:
7a:77:6c:e1:51:06:b3:4e:01:95:da:aa:e4:8f:af:82:fe:ad:
56:e1:3b:02:7b:c5:44:e2:f9:13:0c:a5:47:ae:d9:9a:24:96:
c0:c1:f8:f0:6e:1a:1e:ce:41:7b:6b:78:ba:4b:e1:5f:cd:21:
82:51:a1:d5:a2:00:dd:5b:c7:c4:69:c7:00:9d:aa:6c:73:d1:
2f:27:17:b0:40:ab:ba:47:e7:f5:b7:c4:ff:01:75:aa:ee:09:
72:d0:ef:04:3e:a6:25:4b:4e:26:56:ee:f1:6d:2c:07:12:97:
93:34:0e:2c:08:f0:5e:fb:f6:ea:e8:49:37:f6:1b:db:f3:60:
7b:de:fc:7c:9e:97:7f:93:e7:2e:c5:51:7a:a3:0e:f5:9b:ee:
e5:50:e1:5c:cf:f3:e4:b8:56:5b:9b:20:c4:2f:00:0b:4c:88:
be:70:64:fe:cd:a7:c0:40:e3:30:3c:e1:da:d6:e7:28:7e:5e:
09:db:27:b5:7d:4b:59:54:8c:9f:9e:f0:f2:77:17:c7:57:34:
e4:23:fe:5e:94:1e:70:07:67:af:6d:b5:21:6d:1a:e2:81:14:
87:ba:04:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlSG6H3aUq0CPklV7r+UDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlMGIwZGNiNmFkMGNhODE2ZDJiZDIwNGUxM2YxZWFmMTEw
NDI3NGMwHhcNMjQwMTAyMDAzMTI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Mjg4OGYyNTVlODJjZWE2MTZiZWNlOGEzYjIyOTZkYjg3Njk5ZGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZcBWECYsFyKyM2EEzIPhZNAuHYa
vfZQvzTq3v6ZH6AlJ7bw4cBKXRM7srzO1u1NFCCh50AbQe9LjAqsWuNuYsISo31E
CJzvkDSNv9/G/Ktt9WZ4JyKLr3ywBfZJfv2mfveBeOudZCKLuTZdkAhNBU9mKYUI
vLd8XQysHuQfHwqLTnBlxozorWkcIkgtjVJ2zk2CfX7Vs69FXk4qhHNmi6GHFCwi
Oifj2/i08jDDGsF7XJJOp/JpVCGGeEh5ebswvBjNGlMgtrdk0YAAyStm79Eztu6r
2G++ODTRVi3GiCHI5ufKbRFpuBu8FRZuMKbY7iAIKO/4dTfJBIF/aigTqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGKIjyVegs6mFr7OijsiltuHaZ2gMB8GA1UdIwQY
MBaAFA4LDctq0MqBbSvSBOE/Hq8RBCdMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGdzTnkyclF5b0Z0SzlJRTRUOGVyeEVFSjB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mMTlkMDYtYzdmYS00MGU1LWI4MTMt
N2ZlMzk1MWE3MzViLzEvWW9pUEpWNkN6cVlXdnM2S095S1cyNGRwbmFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9mMTlkMDYtYzdmYS00MGU1LWI4MTMtN2ZlMzk1MWE3MzVi
LzEvRGdzTnkyclF5b0Z0SzlJRTRUOGVyeEVFSjB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuX8eMA0G
CSqGSIb3DQEBCwUAA4IBAQDjHN0Z5Y+Hfxy0coPOO8ZArhCiR9Rp8N4GLNthHmkc
RjSEccZ6d2zhUQazTgGV2qrkj6+C/q1W4TsCe8VE4vkTDKVHrtmaJJbAwfjwbhoe
zkF7a3i6S+FfzSGCUaHVogDdW8fEaccAnapsc9EvJxewQKu6R+f1t8T/AXWq7gly
0O8EPqYlS04mVu7xbSwHEpeTNA4sCPBe+/bq6Ek39hvb82B73vx8npd/k+cuxVF6
ow71m+7lUOFcz/PkuFZbmyDELwALTIi+cGT+zafAQOMwPOHa1ucofl4J2ye1fUtZ
VIyfnvDydxfHVzTkI/5elB5wB2evbbUhbRrigRSHugRd
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:24:17 2024 by rpki-client on console-ams.rpki-client.org