Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/G93x2FNs9iUi2iZ2m7oPVTqQA8Q.roa
File: G93x2FNs9iUi2iZ2m7oPVTqQA8Q.roa (raw, json)
Hash identifier: ORZNvGGPvocaR2Oh4bQYRgl2kOSwWWWVdeZpyZL85Ww=
Subject key identifier: 1B:DD:F1:D8:53:6C:F6:25:22:DA:26:76:9B:BA:0F:55:3A:90:03:C4
Certificate issuer: /CN=be8b15c237f34c5c5c5344b4079ebb3a589d0148
Certificate serial: 018CC2DAF51F7AFE256CF35CE7C638359B11
Authority key identifier: BE:8B:15:C2:37:F3:4C:5C:5C:53:44:B4:07:9E:BB:3A:58:9D:01:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vosVwjfzTFxcU0S0B567OlidAUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/G93x2FNs9iUi2iZ2m7oPVTqQA8Q.roa
Signing time: Mon 01 Jan 2024 02:29:38 +0000
ROA not before: Mon 01 Jan 2024 02:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34259
IP address blocks: 193.0.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/vosVwjfzTFxcU0S0B567OlidAUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/vosVwjfzTFxcU0S0B567OlidAUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vosVwjfzTFxcU0S0B567OlidAUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:f5:1f:7a:fe:25:6c:f3:5c:e7:c6:38:35:9b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be8b15c237f34c5c5c5344b4079ebb3a589d0148
Validity
Not Before: Jan 1 02:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bddf1d8536cf62522da26769bba0f553a9003c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c2:e3:68:f6:79:98:3e:54:df:05:34:a5:84:
c7:c5:00:56:1c:e2:65:d1:f8:0e:71:0b:0c:c6:5f:
0f:6e:b7:9f:45:da:91:60:8b:35:35:ec:a4:39:cc:
91:12:09:1a:53:ba:b8:1a:88:5a:a5:44:cc:f5:9f:
04:e0:0d:41:92:14:0e:6e:0e:bf:b6:b1:85:bb:a2:
91:e4:c9:07:c5:46:99:e5:4f:29:cc:24:ad:c3:af:
16:1a:9e:9b:50:bd:c6:ae:ef:2b:38:fb:1f:7a:bc:
a1:22:db:23:38:6e:b4:67:66:c5:90:c6:a7:e4:ec:
aa:fd:e0:1d:e7:e7:85:30:b2:62:de:74:65:40:33:
38:1c:1a:42:a3:41:bd:e4:78:27:ee:c3:3f:3c:19:
9a:e7:39:87:d1:33:5d:09:58:c4:45:8a:7b:6c:74:
22:0a:4f:de:15:41:4c:65:7d:03:2f:aa:3a:e2:37:
3b:09:7a:e5:50:36:1b:76:ff:15:e9:c7:69:3f:4f:
06:ec:82:30:74:de:24:d5:e0:d7:4a:93:a2:cb:c6:
31:5c:95:87:5e:8b:aa:37:0d:ed:c1:0d:18:85:fa:
2f:7f:ba:de:5e:c4:62:5c:c5:64:0a:ae:b5:fa:b7:
e2:43:6e:4a:82:dc:82:8d:5f:10:37:f7:f9:20:06:
e6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DD:F1:D8:53:6C:F6:25:22:DA:26:76:9B:BA:0F:55:3A:90:03:C4
X509v3 Authority Key Identifier:
keyid:BE:8B:15:C2:37:F3:4C:5C:5C:53:44:B4:07:9E:BB:3A:58:9D:01:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vosVwjfzTFxcU0S0B567OlidAUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/G93x2FNs9iUi2iZ2m7oPVTqQA8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/aa5972-3538-4361-a134-31de1769fd8a/1/vosVwjfzTFxcU0S0B567OlidAUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.223.0/24
Signature Algorithm: sha256WithRSAEncryption
af:5e:e0:0e:78:d2:2c:7f:02:ac:33:3a:50:59:fe:6e:1d:11:
a7:a6:62:e5:e4:a5:b3:83:2c:24:aa:28:a8:80:6d:be:31:f8:
2c:0f:9f:f1:d2:fb:e9:be:0e:fb:e9:e2:22:4b:4b:58:33:3d:
f8:5b:7e:99:51:61:46:d1:ff:af:44:2d:6a:2d:ef:0c:09:84:
1a:b0:f8:88:2e:cd:7f:86:c0:36:9c:ac:d4:09:65:b8:c4:a8:
79:04:1d:7d:6e:de:7f:58:28:54:55:c7:25:32:f1:3d:1d:f5:
e3:38:8b:fc:4d:df:d0:e4:17:74:4c:dd:fd:e5:fe:b6:53:60:
95:66:1d:c3:dd:1f:e4:45:d7:1d:96:57:f9:15:e3:68:ad:23:
0d:17:29:2d:e9:e3:3e:45:15:1d:94:b6:6c:36:9a:50:cd:7f:
84:25:fa:33:96:b3:3f:29:84:21:00:20:6f:41:1d:e3:75:87:
30:a0:61:68:fd:d8:70:dc:bf:42:b0:6e:e3:bf:c8:41:fa:56:
ea:a5:07:c3:3b:6a:5a:a7:95:aa:8a:5a:3b:85:f8:44:1a:fd:
7e:d7:04:ed:ff:c2:49:81:60:b0:fe:e2:82:d4:4a:6a:52:84:
ed:26:47:24:00:3c:3c:56:da:9e:72:3d:2d:1c:50:bd:d7:9e:
80:19:f6:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC2vUfev4lbPNc58Y4NZsRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlOGIxNWMyMzdmMzRjNWM1YzUzNDRiNDA3OWViYjNhNTg5
ZDAxNDgwHhcNMjQwMTAxMDIyOTM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYmRkZjFkODUzNmNmNjI1MjJkYTI2NzY5YmJhMGY1NTNhOTAwM2M0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksLjaPZ5mD5U3wU0pYTHxQBWHOJl
0fgOcQsMxl8PbrefRdqRYIs1NeykOcyREgkaU7q4GohapUTM9Z8E4A1BkhQObg6/
trGFu6KR5MkHxUaZ5U8pzCStw68WGp6bUL3Gru8rOPsferyhItsjOG60Z2bFkMan
5Oyq/eAd5+eFMLJi3nRlQDM4HBpCo0G95Hgn7sM/PBma5zmH0TNdCVjERYp7bHQi
Ck/eFUFMZX0DL6o64jc7CXrlUDYbdv8V6cdpP08G7IIwdN4k1eDXSpOiy8YxXJWH
XouqNw3twQ0Yhfovf7reXsRiXMVkCq61+rfiQ25KgtyCjV8QN/f5IAbm+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBvd8dhTbPYlItomdpu6D1U6kAPEMB8GA1UdIwQY
MBaAFL6LFcI380xcXFNEtAeeuzpYnQFIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdm9zVndqZnpURnhjVTBTMEI1NjdPbGlkQVVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hYTU5NzItMzUzOC00MzYxLWExMzQt
MzFkZTE3NjlmZDhhLzEvRzkzeDJGTnM5aVVpMmlaMm03b1BWVHFRQThRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9hYTU5NzItMzUzOC00MzYxLWExMzQtMzFkZTE3NjlmZDhh
LzEvdm9zVndqZnpURnhjVTBTMEI1NjdPbGlkQVVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQDfMA0G
CSqGSIb3DQEBCwUAA4IBAQCvXuAOeNIsfwKsMzpQWf5uHRGnpmLl5KWzgywkqiio
gG2+MfgsD5/x0vvpvg776eIiS0tYMz34W36ZUWFG0f+vRC1qLe8MCYQasPiILs1/
hsA2nKzUCWW4xKh5BB19bt5/WChUVcclMvE9HfXjOIv8Td/Q5Bd0TN395f62U2CV
Zh3D3R/kRdcdllf5FeNorSMNFykt6eM+RRUdlLZsNppQzX+EJfozlrM/KYQhACBv
QR3jdYcwoGFo/dhw3L9CsG7jv8hB+lbqpQfDO2pap5Wqilo7hfhEGv1+1wTt/8JJ
gWCw/uKC1EpqUoTtJkckADw8Vtqecj0tHFC9156AGfZU
-----END CERTIFICATE-----
Generated at Sat Jun 8 03:15:01 2024 by rpki-client on console-ams.rpki-client.org