Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/vD4d6-Ufm0fFISjlc8rxFlQwwWc.roa
File: vD4d6-Ufm0fFISjlc8rxFlQwwWc.roa (raw, json)
Hash identifier: Uumg8s4o+wVYm27hvDEXKDjNoX6wIGo/XZKnaH3fl/4=
Subject key identifier: BC:3E:1D:EB:E5:1F:9B:47:C5:21:28:E5:73:CA:F1:16:54:30:C1:67
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 0194221F4EA854B6347D1D1E0B955E884B56
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/vD4d6-Ufm0fFISjlc8rxFlQwwWc.roa
Signing time: Wed 01 Jan 2025 13:47:44 +0000
ROA not before: Wed 01 Jan 2025 13:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206092
IP address blocks: 193.39.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:4e:a8:54:b6:34:7d:1d:1e:0b:95:5e:88:4b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 1 13:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bc3e1debe51f9b47c52128e573caf1165430c167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:63:8f:cd:e0:a1:c9:62:c0:46:e1:7f:f7:9b:
e7:8d:55:a0:60:91:3f:91:4b:cd:ee:51:ce:04:f9:
9e:21:a8:d6:9c:71:59:37:83:54:ef:aa:1a:9a:b7:
7c:e6:cc:8c:95:b4:50:a0:8d:b8:b5:e9:53:d0:b9:
54:ed:e4:77:b5:75:d5:64:67:62:cc:0f:a1:13:3c:
b8:85:7c:5b:db:4d:c7:d4:f6:7f:fd:65:7d:3c:18:
97:3d:2e:73:2d:4d:b7:18:c3:c4:91:52:7b:8a:38:
7f:90:a4:4b:c5:b8:ee:ef:63:6e:70:8f:40:6f:e5:
1f:45:86:01:28:94:aa:dd:1d:74:b1:1a:f6:96:a7:
62:c9:fc:f8:83:fb:93:4f:20:f8:48:03:18:19:1a:
b8:34:6d:c1:8e:54:af:3c:98:f2:05:5a:f3:e8:a3:
85:4b:e0:f8:cd:7f:16:43:c5:54:86:26:ef:b4:14:
a1:dd:94:2c:01:72:1a:55:bc:c6:bc:83:6b:82:a3:
cf:3f:d5:b2:f6:f5:b8:9b:dc:ee:b6:65:29:bf:e7:
c9:41:29:15:d6:a8:a7:84:9a:1f:0e:69:77:7a:7a:
f4:96:95:25:fa:4f:d4:13:39:1c:dc:0e:78:37:09:
12:12:3d:91:da:57:09:25:d0:ba:29:e5:ea:3b:d7:
70:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3E:1D:EB:E5:1F:9B:47:C5:21:28:E5:73:CA:F1:16:54:30:C1:67
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/vD4d6-Ufm0fFISjlc8rxFlQwwWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.215.0/24
Signature Algorithm: sha256WithRSAEncryption
39:7e:01:64:46:8f:b1:ea:38:93:bd:fa:9e:ed:c3:7d:d7:e3:
2e:91:1f:a8:9f:63:9b:22:6f:85:08:7b:8c:05:86:12:94:7b:
ef:91:d2:c0:2d:93:1a:ae:49:56:b5:2e:28:1a:ae:4d:6c:39:
0d:4f:c2:17:a2:c1:00:e5:bb:e1:02:ae:5c:a5:fe:31:54:05:
85:65:7e:2a:12:be:d9:38:11:c9:ea:08:c5:da:d8:c2:b2:0c:
a4:d7:21:fb:ca:71:13:9b:6f:34:4a:18:7e:81:80:89:2a:d6:
ce:43:80:06:53:10:62:ce:9a:e2:72:a6:af:98:2e:a9:09:9b:
55:b8:10:42:0d:aa:4c:33:c7:de:bd:f9:82:03:63:db:c0:14:
03:1a:f1:83:19:38:e4:65:81:56:9f:c4:15:fc:04:04:45:25:
cc:ea:81:6d:f5:41:4d:6f:2f:69:1a:1a:02:1a:5e:b3:f2:4e:
43:42:99:bb:c4:7a:0a:3e:76:6e:73:89:f3:87:a1:3b:11:be:
2b:e1:4d:1e:51:10:b8:c0:3f:39:2f:5f:c6:49:29:1d:ba:8b:
1d:f8:9b:ea:f9:b8:78:29:3e:fe:f7:87:5d:eb:81:b1:f5:67:
55:9a:0d:b5:db:84:c1:e0:5d:70:5a:ce:ea:06:66:71:22:28:
6e:03:3d:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH06oVLY0fR0eC5VeiEtWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMWMxMTY1OGQyMDQxZWFmMjUwMmZlNTQwOGVkNDkzYmJk
NGYzMTgwHhcNMjUwMTAxMTM0NzQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzNlMWRlYmU1MWY5YjQ3YzUyMTI4ZTU3M2NhZjExNjU0MzBjMTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32OPzeChyWLARuF/95vnjVWgYJE/
kUvN7lHOBPmeIajWnHFZN4NU76oamrd85syMlbRQoI24telT0LlU7eR3tXXVZGdi
zA+hEzy4hXxb203H1PZ//WV9PBiXPS5zLU23GMPEkVJ7ijh/kKRLxbju72NucI9A
b+UfRYYBKJSq3R10sRr2lqdiyfz4g/uTTyD4SAMYGRq4NG3BjlSvPJjyBVrz6KOF
S+D4zX8WQ8VUhibvtBSh3ZQsAXIaVbzGvINrgqPPP9Wy9vW4m9zutmUpv+fJQSkV
1qinhJofDml3enr0lpUl+k/UEzkc3A54NwkSEj2R2lcJJdC6KeXqO9dwFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLw+HevlH5tHxSEo5XPK8RZUMMFnMB8GA1UdIwQY
MBaAFI4cEWWNIEHq8lAv5UCO1JO71PMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjIt
NjMzNDhjZGJmMDI0LzEvdkQ0ZDYtVWZtMGZGSVNqbGM4cnhGbFF3d1djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjItNjMzNDhjZGJmMDI0
LzEvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSfXMA0G
CSqGSIb3DQEBCwUAA4IBAQA5fgFkRo+x6jiTvfqe7cN91+MukR+on2ObIm+FCHuM
BYYSlHvvkdLALZMarklWtS4oGq5NbDkNT8IXosEA5bvhAq5cpf4xVAWFZX4qEr7Z
OBHJ6gjF2tjCsgyk1yH7ynETm280Shh+gYCJKtbOQ4AGUxBizpricqavmC6pCZtV
uBBCDapMM8fevfmCA2PbwBQDGvGDGTjkZYFWn8QV/AQERSXM6oFt9UFNby9pGhoC
Gl6z8k5DQpm7xHoKPnZuc4nzh6E7Eb4r4U0eURC4wD85L1/GSSkduosd+Jvq+bh4
KT7+94dd64Gx9WdVmg2124TB4F1wWs7qBmZxIihuAz0w
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:16 2025 by rpki-client