Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/AZM9zKcwm_TkuXGYuvqbpZY8jLU.roa
File: AZM9zKcwm_TkuXGYuvqbpZY8jLU.roa (raw, json)
Hash identifier: QRYQliD202ba1q6T11ky93UQWeDtCXqCxejgIjypWzE=
Subject key identifier: 01:93:3D:CC:A7:30:9B:F4:E4:B9:71:98:BA:FA:9B:A5:96:3C:8C:B5
Certificate issuer: /CN=5336a106cecdeba92e0b80e5e9a5c789ba74c62b
Certificate serial: 018CC64B5528DCA20C4C390D50E5DF88EF61
Authority key identifier: 53:36:A1:06:CE:CD:EB:A9:2E:0B:80:E5:E9:A5:C7:89:BA:74:C6:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzahBs7N66kuC4Dl6aXHibp0xis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/AZM9zKcwm_TkuXGYuvqbpZY8jLU.roa
Signing time: Mon 01 Jan 2024 18:31:14 +0000
ROA not before: Mon 01 Jan 2024 18:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209841
IP address blocks: 185.201.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/UzahBs7N66kuC4Dl6aXHibp0xis.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/UzahBs7N66kuC4Dl6aXHibp0xis.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzahBs7N66kuC4Dl6aXHibp0xis.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:55:28:dc:a2:0c:4c:39:0d:50:e5:df:88:ef:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336a106cecdeba92e0b80e5e9a5c789ba74c62b
Validity
Not Before: Jan 1 18:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01933dcca7309bf4e4b97198bafa9ba5963c8cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e4:50:52:2e:e5:fa:e2:b7:88:cc:eb:69:15:
bc:09:a0:c1:7f:3a:09:1a:a2:9f:8f:81:5b:8e:44:
02:1f:7d:9c:71:fc:2d:04:e1:d0:e6:9a:93:3b:34:
51:fc:51:08:65:f3:26:e0:39:4c:72:d1:86:10:ed:
50:0d:23:31:db:36:b7:e1:e8:3b:a1:9e:41:91:51:
53:35:5b:fd:c5:3f:d8:f3:6d:2e:20:87:8b:7b:d2:
16:48:d5:4a:f7:78:dc:5a:c6:1f:30:8e:85:27:32:
47:39:9b:41:f7:fa:28:40:0f:3b:a9:d8:47:bc:89:
09:d6:cd:a6:de:7c:5a:2d:d2:c9:6d:ae:97:be:d1:
dc:47:e7:77:9b:62:56:7b:67:c6:ff:f3:2a:4a:00:
b2:4f:ef:f2:3d:64:05:95:3f:6b:5d:c8:32:cc:25:
b1:40:80:90:61:83:9a:c8:39:ae:4a:0f:f6:21:71:
6d:fa:ec:c3:0c:66:68:64:4e:aa:3d:b5:2b:90:96:
36:cf:48:aa:62:3e:cd:36:91:05:8b:f9:e5:ae:d3:
5c:24:22:dc:de:c2:1d:ac:5c:a2:cb:5a:91:d6:b7:
53:dd:9c:8e:57:ba:05:a8:df:20:20:36:7f:5c:8f:
69:94:15:1a:eb:e4:07:de:1f:30:6e:f7:d0:c3:5a:
bd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:93:3D:CC:A7:30:9B:F4:E4:B9:71:98:BA:FA:9B:A5:96:3C:8C:B5
X509v3 Authority Key Identifier:
keyid:53:36:A1:06:CE:CD:EB:A9:2E:0B:80:E5:E9:A5:C7:89:BA:74:C6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzahBs7N66kuC4Dl6aXHibp0xis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/AZM9zKcwm_TkuXGYuvqbpZY8jLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2669ee-4ba7-4110-8370-dd803c5b85db/1/UzahBs7N66kuC4Dl6aXHibp0xis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.39.0/24
Signature Algorithm: sha256WithRSAEncryption
79:88:a0:c5:6a:0d:ba:1f:44:28:f9:ff:e6:9c:9c:79:00:4c:
8c:7d:f9:bb:3b:d4:81:9f:fa:1a:88:28:be:9c:74:28:4d:89:
b8:51:54:cf:7d:68:2f:0f:37:71:b8:87:32:4e:4a:47:1e:cf:
31:7b:42:be:07:1c:65:09:db:23:bd:4b:9d:59:a3:d8:27:bd:
67:1e:b5:f3:91:97:0e:43:94:22:b7:15:10:d1:f4:ab:2c:70:
cb:06:14:20:4a:6e:96:34:1d:33:c4:80:3b:e5:68:83:a1:61:
fc:b1:00:a4:e9:d3:eb:22:ab:0e:30:17:fd:12:6c:d0:93:98:
e6:ef:c5:e6:b0:a5:3e:d8:60:98:21:b4:2f:d2:26:72:17:13:
69:a5:75:9b:28:a0:88:45:e1:7b:d0:b8:6e:f0:77:b8:33:19:
4f:2b:d3:5f:f2:7c:e8:90:08:b9:5b:44:44:97:f2:d5:f5:8f:
db:93:2f:a4:d4:fa:a9:32:cc:14:99:bc:89:e8:0e:75:05:f4:
08:45:33:4e:1e:ad:24:22:03:cf:3a:bf:b6:58:fa:c2:ee:d3:
5b:d5:a0:43:56:54:09:99:4b:36:16:9c:8d:62:7f:1d:ff:bb:
ad:98:85:26:05:0f:91:92:4f:2e:a3:1d:3b:1f:03:71:3a:75:
77:5a:15:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS1Uo3KIMTDkNUOXfiO9hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMzZhMTA2Y2VjZGViYTkyZTBiODBlNWU5YTVjNzg5YmE3
NGM2MmIwHhcNMjQwMTAxMTgzMTE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTkzM2RjY2E3MzA5YmY0ZTRiOTcxOThiYWZhOWJhNTk2M2M4Y2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouRQUi7l+uK3iMzraRW8CaDBfzoJ
GqKfj4FbjkQCH32ccfwtBOHQ5pqTOzRR/FEIZfMm4DlMctGGEO1QDSMx2za34eg7
oZ5BkVFTNVv9xT/Y820uIIeLe9IWSNVK93jcWsYfMI6FJzJHOZtB9/ooQA87qdhH
vIkJ1s2m3nxaLdLJba6XvtHcR+d3m2JWe2fG//MqSgCyT+/yPWQFlT9rXcgyzCWx
QICQYYOayDmuSg/2IXFt+uzDDGZoZE6qPbUrkJY2z0iqYj7NNpEFi/nlrtNcJCLc
3sIdrFyiy1qR1rdT3ZyOV7oFqN8gIDZ/XI9plBUa6+QH3h8wbvfQw1q9owIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAGTPcynMJv05LlxmLr6m6WWPIy1MB8GA1UdIwQY
MBaAFFM2oQbOzeupLguA5emlx4m6dMYrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXphaEJzN042Nmt1QzREbDZhWEhpYnAweGlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yNjY5ZWUtNGJhNy00MTEwLTgzNzAt
ZGQ4MDNjNWI4NWRiLzEvQVpNOXpLY3dtX1RrdVhHWXV2cWJwWlk4akxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8yNjY5ZWUtNGJhNy00MTEwLTgzNzAtZGQ4MDNjNWI4NWRi
LzEvVXphaEJzN042Nmt1QzREbDZhWEhpYnAweGlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucknMA0G
CSqGSIb3DQEBCwUAA4IBAQB5iKDFag26H0Qo+f/mnJx5AEyMffm7O9SBn/oaiCi+
nHQoTYm4UVTPfWgvDzdxuIcyTkpHHs8xe0K+BxxlCdsjvUudWaPYJ71nHrXzkZcO
Q5QitxUQ0fSrLHDLBhQgSm6WNB0zxIA75WiDoWH8sQCk6dPrIqsOMBf9EmzQk5jm
78XmsKU+2GCYIbQv0iZyFxNppXWbKKCIReF70Lhu8He4MxlPK9Nf8nzokAi5W0RE
l/LV9Y/bky+k1PqpMswUmbyJ6A51BfQIRTNOHq0kIgPPOr+2WPrC7tNb1aBDVlQJ
mUs2FpyNYn8d/7utmIUmBQ+Rkk8uox07HwNxOnV3WhV2
-----END CERTIFICATE-----
Generated at Sat Jun 1 18:45:41 2024 by rpki-client on console-fra.rpki-client.org