Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/EnVFaEsazyBHwo_7U-FST8HwJcA.roa
File: EnVFaEsazyBHwo_7U-FST8HwJcA.roa (raw, json)
Hash identifier: Bye3jeZd8cq7ulyoW1k5vaKbuosqfkw5mGlWG2570NQ=
Subject key identifier: 12:75:45:68:4B:1A:CF:20:47:C2:8F:FB:53:E1:52:4F:C1:F0:25:C0
Certificate issuer: /CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Certificate serial: 018CC492FD165C36A44D7874C22EB1ED1981
Authority key identifier: 61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/EnVFaEsazyBHwo_7U-FST8HwJcA.roa
Signing time: Mon 01 Jan 2024 10:30:16 +0000
ROA not before: Mon 01 Jan 2024 10:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 159.60.0.0/20 maxlen: 24
159.60.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:fd:16:5c:36:a4:4d:78:74:c2:2e:b1:ed:19:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Validity
Not Before: Jan 1 10:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=127545684b1acf2047c28ffb53e1524fc1f025c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:64:47:d0:de:af:39:52:9f:85:4c:07:e8:69:
dd:8d:d7:6f:2e:57:cb:68:97:94:c2:93:80:d4:24:
69:fb:b4:e4:a3:f6:83:25:d4:64:c4:c8:0e:7a:de:
02:ee:2a:39:02:80:dd:14:ad:d5:3f:e0:a1:44:3e:
96:0a:d1:10:ea:22:3c:db:d8:01:d3:8c:44:42:1e:
2b:df:f4:30:7f:28:46:16:0d:b3:51:6f:a5:0d:cf:
00:02:31:8d:9c:46:48:f2:a4:11:60:92:09:1e:2e:
49:aa:9e:75:fd:dc:68:4f:35:52:f1:55:e1:c6:54:
6c:cd:0e:4c:a5:f2:ae:13:fc:19:71:5d:68:bd:56:
51:6a:38:2b:50:10:25:8e:02:7f:0f:2b:61:8e:7e:
33:47:7d:12:e0:16:9b:f5:1e:3b:8f:c1:3d:dc:71:
10:da:27:74:17:33:d2:d8:1d:32:9b:2b:27:8e:ba:
db:59:45:45:6f:2c:1b:ae:12:5b:2d:9b:48:12:24:
9c:5e:d8:07:05:57:a8:57:9b:f4:a0:3a:a4:8a:47:
18:16:7d:6e:96:6b:b1:62:cc:41:0a:39:d5:84:d2:
dc:86:08:af:c0:75:bc:23:63:f4:5a:77:fd:1b:e9:
c4:f2:0a:8b:9a:ab:0f:4a:82:77:d6:3b:91:b3:82:
01:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:75:45:68:4B:1A:CF:20:47:C2:8F:FB:53:E1:52:4F:C1:F0:25:C0
X509v3 Authority Key Identifier:
keyid:61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/EnVFaEsazyBHwo_7U-FST8HwJcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.60.0.0/20
159.60.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:fc:28:10:c9:df:fa:86:8e:16:dc:a4:03:19:57:05:43:54:
1d:f3:87:3d:34:77:de:96:4c:12:51:ab:87:e1:6a:fb:7f:5c:
b1:f7:46:84:66:ec:25:de:0d:31:0e:9c:d1:2a:8f:ef:98:bb:
8b:98:9b:9a:d1:46:c3:34:3d:32:24:3d:6f:c4:a3:e8:24:f1:
2b:1a:51:51:22:2e:02:62:78:d4:df:e0:01:87:13:90:6e:b4:
e6:31:14:fd:e9:96:05:04:d8:23:ae:7c:5b:1d:6e:e5:79:a2:
10:ff:e5:37:d2:3d:46:97:64:6f:4b:7e:b2:93:be:81:47:3e:
e4:df:93:69:c5:c4:41:ae:bc:79:19:9e:7f:17:43:bb:b0:b6:
cb:6d:1d:68:43:ed:02:1b:c5:f6:ea:c2:d0:c9:01:52:e9:db:
fe:2d:df:56:a3:03:b3:98:e0:2c:59:39:b9:6a:a8:21:9e:ca:
6e:10:8a:87:8a:2d:b3:ed:6d:1e:cd:31:a3:4d:aa:35:3a:48:
f8:0a:af:93:b3:46:f1:bf:1e:fb:2c:07:9b:70:13:d3:f2:cb:
3f:49:f9:08:73:bf:b7:98:51:71:ca:ce:f6:b6:31:61:0f:16:
61:5e:84:80:db:12:48:c8:55:9a:ab:a9:36:8c:86:b3:9d:4b:
23:8b:b1:e3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzEkv0WXDakTXh0wi6x7RmBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjNlMWNhYjhjYmY1YjNjNmUwZmJiZTE0OTFmNDhkYTYw
Y2FlNmMwHhcNMjQwMTAxMTAzMDE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjc1NDU2ODRiMWFjZjIwNDdjMjhmZmI1M2UxNTI0ZmMxZjAyNWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmRH0N6vOVKfhUwH6GndjddvLlfL
aJeUwpOA1CRp+7Tko/aDJdRkxMgOet4C7io5AoDdFK3VP+ChRD6WCtEQ6iI829gB
04xEQh4r3/QwfyhGFg2zUW+lDc8AAjGNnEZI8qQRYJIJHi5Jqp51/dxoTzVS8VXh
xlRszQ5MpfKuE/wZcV1ovVZRajgrUBAljgJ/Dythjn4zR30S4Bab9R47j8E93HEQ
2id0FzPS2B0ymysnjrrbWUVFbywbrhJbLZtIEiScXtgHBVeoV5v0oDqkikcYFn1u
lmuxYsxBCjnVhNLchgivwHW8I2P0Wnf9G+nE8gqLmqsPSoJ31juRs4IB2QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBJ1RWhLGs8gR8KP+1PhUk/B8CXAMB8GA1UdIwQY
MBaAFGGz4cq4y/WzxuD7vhSR9I2mDK5sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJQaHlyakw5YlBHNFB1LUZKSDBqYVlNcm13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi85ZGVmODYtYjFhYy00MGU2LTgzYmQt
OTQ3Y2M1NGViZTAyLzEvRW5WRmFFc2F6eUJId29fN1UtRlNUOEh3SmNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi85ZGVmODYtYjFhYy00MGU2LTgzYmQtOTQ3Y2M1NGViZTAy
LzEvWWJQaHlyakw5YlBHNFB1LUZKSDBqYVlNcm13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEnzwAAwQG
nzzAMA0GCSqGSIb3DQEBCwUAA4IBAQCO/CgQyd/6ho4W3KQDGVcFQ1Qd84c9NHfe
lkwSUauH4Wr7f1yx90aEZuwl3g0xDpzRKo/vmLuLmJua0UbDND0yJD1vxKPoJPEr
GlFRIi4CYnjU3+ABhxOQbrTmMRT96ZYFBNgjrnxbHW7leaIQ/+U30j1Gl2RvS36y
k76BRz7k35NpxcRBrrx5GZ5/F0O7sLbLbR1oQ+0CG8X26sLQyQFS6dv+Ld9WowOz
mOAsWTm5aqghnspuEIqHii2z7W0ezTGjTao1Okj4Cq+Ts0bxvx77LAebcBPT8ss/
SfkIc7+3mFFxys72tjFhDxZhXoSA2xJIyFWaq6k2jIaznUsji7Hj
-----END CERTIFICATE-----
Generated at Thu May 2 10:36:35 2024 by rpki-client on console-ams.rpki-client.org