Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/e3oMbfxRtnsgTHaHb6BwMfPWGgY.roa
File: e3oMbfxRtnsgTHaHb6BwMfPWGgY.roa (raw, json)
Hash identifier: 5itTWv5v/t4DFeynh/S7n9HrOj4Sp0PpJy5KZkyz5Ek=
Subject key identifier: 7B:7A:0C:6D:FC:51:B6:7B:20:4C:76:87:6F:A0:70:31:F3:D6:1A:06
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018CC5004A6E28EA132E797959F93878AFAB
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/e3oMbfxRtnsgTHaHb6BwMfPWGgY.roa
Signing time: Mon 01 Jan 2024 12:29:39 +0000
ROA not before: Mon 01 Jan 2024 12:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203726
IP address blocks: 217.113.26.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:4a:6e:28:ea:13:2e:79:79:59:f9:38:78:af:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 1 12:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b7a0c6dfc51b67b204c76876fa07031f3d61a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:53:60:2a:4b:6a:cc:f4:34:8b:bd:6a:f9:a9:
9e:2e:92:18:27:57:12:15:4d:37:67:03:a8:2b:05:
d4:30:68:87:eb:54:77:88:28:cf:b1:c7:4b:36:b3:
cb:c3:5d:64:f8:86:d8:9d:b0:02:4f:c8:e1:ad:8f:
2f:5e:05:e3:cd:bb:3e:bc:e2:54:e8:8b:1e:56:1e:
ae:1c:e1:60:d3:77:8a:cc:ba:8d:7e:c5:f1:86:b3:
a8:c0:c9:0f:02:75:af:a5:e8:cb:62:e9:81:17:d0:
54:43:14:00:ce:35:d9:7e:0a:1a:fc:92:42:75:8f:
5e:fc:9b:8d:ac:e7:0d:da:72:58:38:7f:d8:d3:d9:
96:39:64:db:e7:0b:04:b0:ed:ca:c9:36:f4:da:dc:
7c:4e:fb:20:24:5c:db:06:66:46:d7:12:2c:15:fa:
f6:a1:a1:d4:a1:88:17:fc:89:cc:74:72:a1:a5:51:
07:0c:98:ce:af:66:6b:45:9f:b7:6d:b2:f7:6c:46:
ab:7d:77:9b:77:f6:e3:6e:6e:16:ef:e8:1a:8e:d4:
5e:18:f1:14:97:a8:76:72:a6:f0:fd:ed:51:e3:53:
e9:29:0a:1b:00:c8:70:69:9d:d0:4b:bc:91:7d:b0:
61:5a:10:7c:08:89:ef:f4:4e:84:77:25:c8:95:12:
84:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7A:0C:6D:FC:51:B6:7B:20:4C:76:87:6F:A0:70:31:F3:D6:1A:06
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/e3oMbfxRtnsgTHaHb6BwMfPWGgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.26.0/23
Signature Algorithm: sha256WithRSAEncryption
63:68:df:5e:b7:00:52:98:93:c9:3d:4f:54:d7:89:48:76:0b:
ad:e6:fa:35:9f:b0:fd:96:fd:47:2d:8c:24:36:4c:2a:aa:4d:
ad:75:f7:79:62:ad:61:c6:05:90:35:c4:33:28:bb:de:be:bd:
36:6d:96:d3:9d:26:f2:ed:d3:ed:3f:be:bc:d7:ac:79:10:08:
4b:13:e5:b2:18:90:13:a6:06:6e:62:ce:b9:e4:1e:c9:63:a1:
0f:0b:e4:fa:73:ac:6b:5b:54:5c:58:9b:9e:3d:18:53:5f:3c:
f4:af:30:bb:db:4f:b9:61:09:20:b6:15:26:93:73:86:2d:06:
57:79:fd:d9:dd:1a:45:e4:fc:2e:2e:37:f0:21:6f:d5:27:1b:
58:83:47:be:68:7d:f4:60:54:13:ee:bd:d7:8d:45:89:17:ef:
44:ca:9a:6c:ec:4a:54:29:ee:a1:a9:a1:3c:a4:a2:21:de:0e:
4b:3b:b6:f7:27:41:05:ae:05:c3:05:47:37:60:03:09:72:3b:
98:12:ae:d8:77:e7:ab:83:a4:57:6e:0f:b0:e6:fd:a9:fb:0b:
a9:fc:4b:81:d2:8b:e8:7f:85:7a:68:df:1b:42:c2:a5:91:7b:
2a:99:e4:5b:90:f4:9e:25:93:a8:18:52:c2:8e:9a:a5:9a:a5:
50:12:c2:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFAEpuKOoTLnl5Wfk4eK+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjQwMTAxMTIyOTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjdhMGM2ZGZjNTFiNjdiMjA0Yzc2ODc2ZmEwNzAzMWYzZDYxYTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFNgKktqzPQ0i71q+ameLpIYJ1cS
FU03ZwOoKwXUMGiH61R3iCjPscdLNrPLw11k+IbYnbACT8jhrY8vXgXjzbs+vOJU
6IseVh6uHOFg03eKzLqNfsXxhrOowMkPAnWvpejLYumBF9BUQxQAzjXZfgoa/JJC
dY9e/JuNrOcN2nJYOH/Y09mWOWTb5wsEsO3KyTb02tx8TvsgJFzbBmZG1xIsFfr2
oaHUoYgX/InMdHKhpVEHDJjOr2ZrRZ+3bbL3bEarfXebd/bjbm4W7+gajtReGPEU
l6h2cqbw/e1R41PpKQobAMhwaZ3QS7yRfbBhWhB8CInv9E6EdyXIlRKE+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHt6DG38UbZ7IEx2h2+gcDHz1hoGMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvZTNvTWJmeFJ0bnNnVEhhSGI2QndNZlBXR2dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2XEaMA0G
CSqGSIb3DQEBCwUAA4IBAQBjaN9etwBSmJPJPU9U14lIdgut5vo1n7D9lv1HLYwk
Nkwqqk2tdfd5Yq1hxgWQNcQzKLvevr02bZbTnSby7dPtP76816x5EAhLE+WyGJAT
pgZuYs655B7JY6EPC+T6c6xrW1RcWJuePRhTXzz0rzC720+5YQkgthUmk3OGLQZX
ef3Z3RpF5PwuLjfwIW/VJxtYg0e+aH30YFQT7r3XjUWJF+9Eypps7EpUKe6hqaE8
pKIh3g5LO7b3J0EFrgXDBUc3YAMJcjuYEq7Yd+erg6RXbg+w5v2p+wup/EuB0ovo
f4V6aN8bQsKlkXsqmeRbkPSeJZOoGFLCjpqlmqVQEsIJ
-----END CERTIFICATE-----
Generated at Thu May 2 06:13:53 2024 by rpki-client on console-ams.rpki-client.org