Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/727yh4oDcrrn_7pRHaOj7mjZTt4.roa
File: 727yh4oDcrrn_7pRHaOj7mjZTt4.roa (raw, json)
Hash identifier: KmkiGo+bLtQib5nTU6/FvbR/oXc1ChxrzHoF7rpovt8=
Subject key identifier: EF:6E:F2:87:8A:03:72:BA:E7:FF:BA:51:1D:A3:A3:EE:68:D9:4E:DE
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018CC9BCEC4BA606483B6AEE085A1F568863
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/727yh4oDcrrn_7pRHaOj7mjZTt4.roa
Signing time: Tue 02 Jan 2024 10:34:10 +0000
ROA not before: Tue 02 Jan 2024 10:34:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199177
IP address blocks: 2a0e:b107:2080::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 09:38:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ec:4b:a6:06:48:3b:6a:ee:08:5a:1f:56:88:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 10:34:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef6ef2878a0372bae7ffba511da3a3ee68d94ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5d:2c:26:dd:b2:e6:da:37:04:c4:47:bf:ed:
a6:ef:35:20:ce:12:b0:18:fe:b0:38:51:2c:72:bb:
ae:a0:b9:81:14:00:a7:a3:37:ff:04:d0:b4:bd:74:
97:be:d2:13:c2:fc:37:3a:00:94:dc:62:43:06:2f:
eb:94:cb:d8:56:ed:01:4a:e7:0d:d7:3f:7e:02:15:
8a:54:5d:f0:ff:f5:68:e5:24:ca:49:21:09:5a:50:
84:cf:32:94:73:72:26:21:bc:1c:dd:2d:1d:e4:13:
05:59:51:0b:2f:38:91:8b:25:03:17:35:42:2f:71:
06:53:13:49:7b:7e:b7:a2:2e:1a:7b:94:2c:4d:f5:
8a:32:28:83:95:2e:ab:93:6e:19:fc:8b:2d:f3:f5:
60:a6:71:ba:51:5c:c0:ca:ec:63:14:eb:d6:73:a2:
7a:cb:f8:08:15:e3:2a:f8:e7:e3:02:ab:9e:7e:2d:
e1:ba:77:e7:95:7b:96:f3:f6:f2:7d:b8:36:31:61:
c5:69:d1:68:d5:0c:19:c8:03:3f:43:9d:2a:49:dd:
e1:c4:dc:07:3f:2e:9c:04:67:67:44:6d:e1:fc:4a:
5f:b3:aa:d8:35:70:cd:1c:d3:45:43:1e:9d:00:46:
ca:74:b7:fb:a0:91:be:77:60:24:c5:04:24:a3:a2:
15:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:6E:F2:87:8A:03:72:BA:E7:FF:BA:51:1D:A3:A3:EE:68:D9:4E:DE
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/727yh4oDcrrn_7pRHaOj7mjZTt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:2080::/44
Signature Algorithm: sha256WithRSAEncryption
aa:09:08:81:74:70:b2:ff:65:d1:cb:2a:29:24:8a:47:72:3b:
02:2b:24:f1:6d:f1:0a:20:45:14:35:99:d2:e3:34:e1:8e:a0:
f5:16:72:e9:63:22:14:f8:d4:64:08:32:b0:c8:82:1d:97:f1:
fd:8d:02:b3:83:0e:98:1d:5f:e7:5e:8e:7f:91:4c:a6:3c:4a:
65:6e:4f:0c:83:43:4c:39:08:b1:21:a4:fe:30:9a:13:46:4a:
b5:f0:d6:44:5d:57:f9:e8:b2:85:68:40:3f:6c:b7:54:79:86:
33:17:1c:91:59:25:47:d5:25:aa:7c:09:56:15:d4:22:59:a8:
82:e4:ea:b5:1e:7f:9d:b0:ec:ab:06:f2:24:71:13:15:e5:8e:
83:ca:ff:01:d0:4a:a4:c9:4e:2d:b8:b3:22:cb:d7:ce:6f:b8:
76:48:3a:27:d4:1e:c5:9d:83:ea:21:00:95:27:69:cc:e0:2c:
fc:b6:3e:05:07:f9:61:7e:40:3a:29:1a:ab:e7:01:55:ad:6b:
49:de:fd:51:5f:9e:37:6e:4e:e1:71:8e:c6:55:9d:4f:42:74:
a8:c5:77:49:17:26:b6:a6:70:fb:17:15:75:75:80:36:45:ad:
42:68:9b:35:3b:79:79:2a:51:b2:7e:ce:a5:1d:ad:c9:a4:cf:
4c:e9:24:90
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzJvOxLpgZIO2ruCFofVohjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwMTAyMTAzNDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjZlZjI4NzhhMDM3MmJhZTdmZmJhNTExZGEzYTNlZTY4ZDk0ZWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt10sJt2y5to3BMRHv+2m7zUgzhKw
GP6wOFEscruuoLmBFACnozf/BNC0vXSXvtITwvw3OgCU3GJDBi/rlMvYVu0BSucN
1z9+AhWKVF3w//Vo5STKSSEJWlCEzzKUc3ImIbwc3S0d5BMFWVELLziRiyUDFzVC
L3EGUxNJe363oi4ae5QsTfWKMiiDlS6rk24Z/Ist8/VgpnG6UVzAyuxjFOvWc6J6
y/gIFeMq+OfjAquefi3hunfnlXuW8/byfbg2MWHFadFo1QwZyAM/Q50qSd3hxNwH
Py6cBGdnRG3h/Epfs6rYNXDNHNNFQx6dAEbKdLf7oJG+d2AkxQQko6IV5wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFO9u8oeKA3K65/+6UR2jo+5o2U7eMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvNzI3eWg0b0RjcnJuXzdwUkhhT2o3bWpaVHQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xByCA
MA0GCSqGSIb3DQEBCwUAA4IBAQCqCQiBdHCy/2XRyyopJIpHcjsCKyTxbfEKIEUU
NZnS4zThjqD1FnLpYyIU+NRkCDKwyIIdl/H9jQKzgw6YHV/nXo5/kUymPEplbk8M
g0NMOQixIaT+MJoTRkq18NZEXVf56LKFaEA/bLdUeYYzFxyRWSVH1SWqfAlWFdQi
WaiC5Oq1Hn+dsOyrBvIkcRMV5Y6Dyv8B0EqkyU4tuLMiy9fOb7h2SDon1B7FnYPq
IQCVJ2nM4Cz8tj4FB/lhfkA6KRqr5wFVrWtJ3v1RX543bk7hcY7GVZ1PQnSoxXdJ
Fya2pnD7FxV1dYA2Ra1CaJs1O3l5KlGyfs6lHa3JpM9M6SSQ
-----END CERTIFICATE-----
Generated at Fri May 3 13:17:50 2024 by rpki-client on console-ams.rpki-client.org