Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/ypPIDFAPnGbSZOUy80qIqcciJKs.roa
File: ypPIDFAPnGbSZOUy80qIqcciJKs.roa (raw, json)
Hash identifier: dRP8KKIkyqRlc3uxQ8LwS1z5Ek/3ppkuiz0ls/r33jo=
Subject key identifier: CA:93:C8:0C:50:0F:9C:66:D2:64:E5:32:F3:4A:88:A9:C7:22:24:AB
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EF258714077F99047C3321A310C547AC3
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/ypPIDFAPnGbSZOUy80qIqcciJKs.roa
Signing time: Thu 18 Apr 2024 17:54:26 +0000
ROA not before: Thu 18 Apr 2024 17:54:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57549
IP address blocks: 194.104.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f2:58:71:40:77:f9:90:47:c3:32:1a:31:0c:54:7a:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 18 17:54:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca93c80c500f9c66d264e532f34a88a9c72224ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:a0:e1:85:97:b2:94:ae:a9:17:dd:ba:1c:
ac:9d:c8:0d:31:dd:10:78:ce:59:e3:02:56:dd:2e:
eb:9b:f3:7e:64:86:3f:81:f0:ca:07:a7:c9:81:90:
7c:72:02:ab:48:34:13:df:07:c6:73:17:f7:cf:bf:
1f:07:e1:2e:9c:1f:01:c5:f4:a7:3e:cf:ec:4a:73:
db:8d:66:ed:80:c1:79:15:7a:6f:7d:7e:c9:f5:4f:
e2:b5:b7:3e:5a:6c:b3:c1:e9:61:5c:b6:6f:f6:af:
7d:9c:9d:c3:6a:48:59:d3:9d:92:f0:03:8c:78:8f:
f8:34:c1:bf:7e:d1:b0:30:09:b4:1d:55:93:fe:d6:
8e:a0:95:d9:3d:4e:ac:bd:22:21:b4:eb:07:b2:f7:
3d:47:65:02:d1:26:12:19:32:a1:2e:3f:37:9f:c1:
36:67:16:1a:49:7a:c1:91:0c:8e:f8:1a:70:1b:af:
0b:f9:75:78:38:3d:44:ab:d8:e2:74:7d:f2:54:9d:
2f:9f:bb:15:db:9b:b3:a7:c0:62:b8:f4:0d:1f:2a:
b5:30:f5:9e:e7:f1:59:fc:5c:a7:b2:d2:56:9f:8d:
aa:fe:f7:5c:15:9c:fc:93:fc:24:29:59:5b:68:39:
bb:4e:70:20:c5:8e:c1:a3:71:9a:8b:58:79:6b:9d:
2e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:93:C8:0C:50:0F:9C:66:D2:64:E5:32:F3:4A:88:A9:C7:22:24:AB
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/ypPIDFAPnGbSZOUy80qIqcciJKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.233.0/24
Signature Algorithm: sha256WithRSAEncryption
40:5c:ab:b7:e2:e3:e3:bf:59:75:e5:5e:3c:67:68:20:3a:7a:
e6:f7:ad:f2:30:3a:5c:0a:c8:47:dd:ac:c0:4d:5e:79:b5:2e:
71:bd:9e:5c:01:eb:54:5e:4e:15:1f:e3:85:08:07:30:2c:57:
e1:3b:0c:02:fb:55:29:04:fc:df:92:1c:45:dd:35:9b:a4:58:
65:83:a3:2e:83:64:45:6c:46:74:5f:b2:90:ae:f2:63:a5:12:
67:b9:fe:53:96:c9:39:d3:dc:21:45:15:36:b3:25:b1:31:08:
0d:bc:25:bc:b1:49:f5:7a:5c:d8:f6:95:00:d8:12:99:9b:e0:
b0:b9:81:41:1d:a6:1f:48:59:83:a3:80:54:93:71:1f:0e:cd:
8f:00:7c:a5:55:f3:25:92:d9:0f:b9:9a:09:9a:40:4e:00:12:
b6:ee:f0:a4:31:86:e9:4f:ed:04:e2:1c:12:8a:bf:7d:24:7e:
61:67:b7:0d:04:08:3a:30:75:0b:bf:10:3a:19:b8:17:6f:f2:
4c:8d:12:cd:88:32:2f:e6:42:b1:33:48:d7:27:fa:ea:2d:a8:
c0:b3:04:a5:b0:81:25:c4:7d:b2:f7:e9:a8:e6:8d:73:4d:bb:
aa:cf:8f:a3:b0:fb:68:fc:88:81:b3:c1:d8:a5:53:0f:d0:d9:
0a:ed:01:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7yWHFAd/mQR8MyGjEMVHrDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwNDE4MTc1NDI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTkzYzgwYzUwMGY5YzY2ZDI2NGU1MzJmMzRhODhhOWM3MjIyNGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8yg4YWXspSuqRfduhysncgNMd0Q
eM5Z4wJW3S7rm/N+ZIY/gfDKB6fJgZB8cgKrSDQT3wfGcxf3z78fB+EunB8BxfSn
Ps/sSnPbjWbtgMF5FXpvfX7J9U/itbc+WmyzwelhXLZv9q99nJ3DakhZ052S8AOM
eI/4NMG/ftGwMAm0HVWT/taOoJXZPU6svSIhtOsHsvc9R2UC0SYSGTKhLj83n8E2
ZxYaSXrBkQyO+BpwG68L+XV4OD1Eq9jidH3yVJ0vn7sV25uzp8BiuPQNHyq1MPWe
5/FZ/FynstJWn42q/vdcFZz8k/wkKVlbaDm7TnAgxY7Bo3Gai1h5a50uEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMqTyAxQD5xm0mTlMvNKiKnHIiSrMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEveXBQSURGQVBuR2JTWk9VeTgwcUlxY2NpSktzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmjpMA0G
CSqGSIb3DQEBCwUAA4IBAQBAXKu34uPjv1l15V48Z2ggOnrm963yMDpcCshH3azA
TV55tS5xvZ5cAetUXk4VH+OFCAcwLFfhOwwC+1UpBPzfkhxF3TWbpFhlg6Mug2RF
bEZ0X7KQrvJjpRJnuf5Tlsk509whRRU2syWxMQgNvCW8sUn1elzY9pUA2BKZm+Cw
uYFBHaYfSFmDo4BUk3EfDs2PAHylVfMlktkPuZoJmkBOABK27vCkMYbpT+0E4hwS
ir99JH5hZ7cNBAg6MHULvxA6GbgXb/JMjRLNiDIv5kKxM0jXJ/rqLajAswSlsIEl
xH2y9+mo5o1zTbuqz4+jsPto/IiBs8HYpVMP0NkK7QF2
-----END CERTIFICATE-----
Generated at Mon Nov 25 19:31:32 2024 by rpki-client on console-ams.rpki-client.org