Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/40eKQ4JJEjLGieuTPrhtiOzkupo.roa
File: 40eKQ4JJEjLGieuTPrhtiOzkupo.roa (raw, json)
Hash identifier: im6RkZYz30arlP7VndhpX0PvhrnxoIGRcl2NhizQJpU=
Subject key identifier: E3:47:8A:43:82:49:12:32:C6:89:EB:93:3E:B8:6D:88:EC:E4:BA:9A
Certificate issuer: /CN=7ec666772d79bd7bb21199a2abdafe2202511c70
Certificate serial: 018CC9BCF0C1AD9B7AA296BA104965808BBA
Authority key identifier: 7E:C6:66:77:2D:79:BD:7B:B2:11:99:A2:AB:DA:FE:22:02:51:1C:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsZmdy15vXuyEZmiq9r-IgJRHHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/40eKQ4JJEjLGieuTPrhtiOzkupo.roa
Signing time: Tue 02 Jan 2024 10:34:11 +0000
ROA not before: Tue 02 Jan 2024 10:34:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206072
IP address blocks: 2001:67c:9bc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/fsZmdy15vXuyEZmiq9r-IgJRHHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/fsZmdy15vXuyEZmiq9r-IgJRHHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fsZmdy15vXuyEZmiq9r-IgJRHHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:f0:c1:ad:9b:7a:a2:96:ba:10:49:65:80:8b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec666772d79bd7bb21199a2abdafe2202511c70
Validity
Not Before: Jan 2 10:34:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3478a4382491232c689eb933eb86d88ece4ba9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c6:b4:ad:35:2d:6f:5d:75:d1:3e:54:a2:8a:
b4:b9:a5:e3:79:83:76:a7:a0:55:e7:51:79:56:4f:
89:9d:8c:34:5e:78:54:55:08:f7:bc:ff:b4:e6:b9:
8f:99:2a:ba:5c:06:59:05:cf:a1:80:e9:aa:8a:59:
da:33:98:1c:a5:19:a5:9e:32:47:99:af:b9:eb:b1:
06:d9:03:13:c3:3a:ca:6f:f0:e7:15:d4:b8:bd:63:
a0:89:3e:6d:68:f7:4b:39:54:8d:c8:80:3f:ed:b6:
7c:91:75:61:41:83:b1:2b:e2:6d:53:c9:b2:34:7a:
e1:3c:55:d7:e9:f8:f6:29:f9:ed:23:60:cf:43:a7:
ec:6f:f7:3d:5d:fc:cf:63:62:8f:5e:2e:e7:40:2e:
c0:13:f3:de:59:80:5c:33:08:e7:4f:ea:0e:52:26:
46:12:d9:38:e3:e0:bb:f9:3a:0d:c1:80:b7:f2:1c:
d6:49:62:88:b2:80:cd:97:e6:06:9a:b8:6e:ee:9e:
a2:4f:36:2b:65:cc:32:af:30:59:87:e2:87:c1:fb:
4e:0e:b2:2b:68:d5:1f:5e:62:9c:ed:50:eb:a5:48:
d9:da:84:44:ca:c2:0f:12:8f:d3:a5:c9:2f:07:24:
44:2f:3e:85:4a:25:cc:34:a8:05:a2:9b:d9:8b:89:
01:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:47:8A:43:82:49:12:32:C6:89:EB:93:3E:B8:6D:88:EC:E4:BA:9A
X509v3 Authority Key Identifier:
keyid:7E:C6:66:77:2D:79:BD:7B:B2:11:99:A2:AB:DA:FE:22:02:51:1C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsZmdy15vXuyEZmiq9r-IgJRHHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/40eKQ4JJEjLGieuTPrhtiOzkupo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a6d660-b1b8-425e-bb82-91651d9b856a/1/fsZmdy15vXuyEZmiq9r-IgJRHHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:9bc::/48
Signature Algorithm: sha256WithRSAEncryption
43:ab:61:15:12:50:68:27:97:c9:e8:49:df:68:93:f5:3d:d7:
7c:a9:fb:fa:24:20:4c:a4:0f:74:fe:6c:93:92:cf:ac:25:07:
2e:c2:75:4d:a6:7c:97:70:81:e4:37:c3:a4:9c:99:55:b5:71:
e1:ad:a3:b9:e9:1a:48:7e:a7:67:d4:a1:3d:2a:cd:7a:d2:70:
48:7e:b9:02:d9:5c:ad:9d:ec:d4:c3:29:0b:70:d1:7c:b1:a2:
72:b1:00:5c:93:d9:0c:28:ae:d0:fc:76:a3:2e:b9:80:b2:a7:
69:b4:93:db:e9:6f:09:c5:5d:ee:47:08:ea:59:30:7b:52:28:
44:9e:a4:9a:2b:cf:c3:75:5c:ff:06:d1:fa:4b:40:90:d0:2e:
a3:b7:e5:d0:55:7f:f3:75:62:04:bc:e7:ce:03:ea:89:4e:bc:
24:0e:0a:f3:de:9e:36:35:38:7a:51:75:05:2e:b9:8c:e8:14:
f6:70:ae:22:d9:a9:41:77:ab:3a:31:db:4d:ac:7d:79:6f:16:
1c:42:1c:52:8c:3c:bf:7b:e3:66:f6:e0:cb:b8:56:b9:e1:6d:
32:24:2b:59:41:dd:55:23:e5:5a:83:e8:46:0b:1d:0f:70:6b:
a1:4e:52:e4:2f:3a:d6:b9:83:7f:e9:24:fb:43:4e:b1:57:6e:
55:71:15:00
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzJvPDBrZt6opa6EEllgIu6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlYzY2Njc3MmQ3OWJkN2JiMjExOTlhMmFiZGFmZTIyMDI1
MTFjNzAwHhcNMjQwMTAyMTAzNDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzQ3OGE0MzgyNDkxMjMyYzY4OWViOTMzZWI4NmQ4OGVjZTRiYTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgca0rTUtb1110T5Uooq0uaXjeYN2
p6BV51F5Vk+JnYw0XnhUVQj3vP+05rmPmSq6XAZZBc+hgOmqilnaM5gcpRmlnjJH
ma+567EG2QMTwzrKb/DnFdS4vWOgiT5taPdLOVSNyIA/7bZ8kXVhQYOxK+JtU8my
NHrhPFXX6fj2KfntI2DPQ6fsb/c9XfzPY2KPXi7nQC7AE/PeWYBcMwjnT+oOUiZG
Etk44+C7+ToNwYC38hzWSWKIsoDNl+YGmrhu7p6iTzYrZcwyrzBZh+KHwftODrIr
aNUfXmKc7VDrpUjZ2oREysIPEo/TpckvByRELz6FSiXMNKgFopvZi4kBkwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFONHikOCSRIyxonrkz64bYjs5LqaMB8GA1UdIwQY
MBaAFH7GZncteb17shGZoqva/iICURxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnNabWR5MTV2WHV5RVptaXE5ci1JZ0pSSEhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9hNmQ2NjAtYjFiOC00MjVlLWJiODIt
OTE2NTFkOWI4NTZhLzEvNDBlS1E0SkpFakxHaWV1VFByaHRpT3prdXBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9hNmQ2NjAtYjFiOC00MjVlLWJiODItOTE2NTFkOWI4NTZh
LzEvZnNabWR5MTV2WHV5RVptaXE5ci1JZ0pSSEhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAm8
MA0GCSqGSIb3DQEBCwUAA4IBAQBDq2EVElBoJ5fJ6EnfaJP1Pdd8qfv6JCBMpA90
/myTks+sJQcuwnVNpnyXcIHkN8OknJlVtXHhraO56RpIfqdn1KE9Ks160nBIfrkC
2VytnezUwykLcNF8saJysQBck9kMKK7Q/HajLrmAsqdptJPb6W8JxV3uRwjqWTB7
UihEnqSaK8/DdVz/BtH6S0CQ0C6jt+XQVX/zdWIEvOfOA+qJTrwkDgrz3p42NTh6
UXUFLrmM6BT2cK4i2alBd6s6MdtNrH15bxYcQhxSjDy/e+Nm9uDLuFa54W0yJCtZ
Qd1VI+Vag+hGCx0PcGuhTlLkLzrWuYN/6ST7Q06xV25VcRUA
-----END CERTIFICATE-----
Generated at Sat Jun 1 08:46:50 2024 by rpki-client on console-ams.rpki-client.org