Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/K9OfU0RFLsF-GyWrV6vSU3hCxc4.roa
File: K9OfU0RFLsF-GyWrV6vSU3hCxc4.roa (raw, json)
Hash identifier: Bf5EB1Xf/T60iflYOS4CDvMC5+qyVRbSumq/Xopqnts=
Subject key identifier: 2B:D3:9F:53:44:45:2E:C1:7E:1B:25:AB:57:AB:D2:53:78:42:C5:CE
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01904115EF0564E9E242658E8B0C8795AB86
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/K9OfU0RFLsF-GyWrV6vSU3hCxc4.roa
Signing time: Sat 22 Jun 2024 17:54:34 +0000
ROA not before: Sat 22 Jun 2024 17:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 81.21.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:41:15:ef:05:64:e9:e2:42:65:8e:8b:0c:87:95:ab:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 22 17:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bd39f5344452ec17e1b25ab57abd2537842c5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8a:78:15:12:92:9c:80:a5:48:e1:19:4d:cb:
c2:b2:8b:0a:21:1c:c6:d9:aa:04:bb:27:26:1d:11:
d6:23:bf:69:b7:20:72:e8:3a:9d:24:b3:6c:ff:f3:
17:a4:3d:39:e8:fa:f1:e3:af:b4:50:78:b5:4d:38:
8d:e3:cf:1e:78:31:20:02:10:d8:16:c0:c8:6f:ca:
91:a0:a8:6f:45:ef:e4:30:ec:8a:6b:6a:8e:76:f4:
6e:5c:53:58:b0:c0:b2:2c:37:2f:86:74:54:db:71:
05:69:38:96:69:b4:7d:df:3b:cf:1a:77:15:c1:0e:
fa:54:07:aa:8d:bc:57:9b:22:5f:a5:e3:a9:32:d9:
97:67:2f:f2:3e:5b:0b:7d:17:1b:78:43:de:be:bf:
94:a9:f6:aa:05:c5:ae:73:5f:b4:0f:33:5e:8f:90:
fe:3c:7d:49:32:81:9a:db:7b:0e:b5:1e:8b:e1:d1:
4b:b7:9a:e1:da:27:bb:ef:91:1e:f6:ee:0e:b3:a0:
78:fc:3d:1f:ed:56:50:aa:32:30:1d:70:f9:6a:8a:
20:29:9d:8c:fd:16:16:ac:6c:25:d3:f4:73:b5:63:
d3:c5:49:cc:b7:3e:b8:27:d9:2c:ba:10:93:8d:9e:
5a:7e:9a:48:07:3f:22:f4:b1:29:8e:9b:47:34:23:
2c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D3:9F:53:44:45:2E:C1:7E:1B:25:AB:57:AB:D2:53:78:42:C5:CE
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/K9OfU0RFLsF-GyWrV6vSU3hCxc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.2.0/24
Signature Algorithm: sha256WithRSAEncryption
40:48:10:76:53:e5:31:58:31:c8:ea:7c:83:2a:1a:6a:84:7e:
c3:5f:56:fc:a4:fe:0d:1d:a3:a6:58:9f:ce:df:d2:f3:8b:58:
da:96:3b:4b:e5:48:07:eb:01:2a:e9:a3:c2:cc:9d:7b:a3:d3:
c1:f0:45:c8:65:6e:73:d3:17:48:cc:51:42:a5:b1:f6:64:5c:
55:f1:4b:bd:0c:01:7e:53:ac:59:0a:2a:3d:34:c0:16:b6:4c:
9c:4b:d7:8d:26:3c:c7:be:f5:50:82:3c:03:7e:da:c4:e9:5e:
1d:64:e8:29:66:ff:0f:5b:4b:87:09:09:5a:a2:b2:72:b9:23:
ac:e1:f0:c5:ab:84:31:96:57:a0:eb:96:c7:d3:a2:ca:d3:88:
64:3a:95:b2:ba:f4:0e:57:57:64:36:b6:73:34:f0:6c:f4:6d:
e3:5a:59:05:fc:c2:5f:e7:20:e6:51:c4:ab:24:50:67:9b:ac:
ce:c8:e7:af:d6:4c:1f:ad:33:d2:82:c1:f5:3c:d7:d1:e6:05:
cd:73:8d:48:9a:43:69:88:ae:59:94:cb:7c:07:b5:19:87:94:
bd:20:b1:fe:dc:48:85:55:23:dc:e9:c0:40:3f:39:91:d5:5f:
a2:ac:8a:7c:50:19:ad:38:e8:81:e0:9f:4e:7c:c5:ee:c2:58:
c6:3d:62:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBBFe8FZOniQmWOiwyHlauGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjQwNjIyMTc1NDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYmQzOWY1MzQ0NDUyZWMxN2UxYjI1YWI1N2FiZDI1Mzc4NDJjNWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4p4FRKSnIClSOEZTcvCsosKIRzG
2aoEuycmHRHWI79ptyBy6DqdJLNs//MXpD056Prx46+0UHi1TTiN488eeDEgAhDY
FsDIb8qRoKhvRe/kMOyKa2qOdvRuXFNYsMCyLDcvhnRU23EFaTiWabR93zvPGncV
wQ76VAeqjbxXmyJfpeOpMtmXZy/yPlsLfRcbeEPevr+UqfaqBcWuc1+0DzNej5D+
PH1JMoGa23sOtR6L4dFLt5rh2ie775Ee9u4Os6B4/D0f7VZQqjIwHXD5aoogKZ2M
/RYWrGwl0/RztWPTxUnMtz64J9ksuhCTjZ5afppIBz8i9LEpjptHNCMsRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCvTn1NERS7Bfhslq1er0lN4QsXOMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvSzlPZlUwUkZMc0YtR3lXclY2dlNVM2hDeGM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURUCMA0G
CSqGSIb3DQEBCwUAA4IBAQBASBB2U+UxWDHI6nyDKhpqhH7DX1b8pP4NHaOmWJ/O
39Lzi1jaljtL5UgH6wEq6aPCzJ17o9PB8EXIZW5z0xdIzFFCpbH2ZFxV8Uu9DAF+
U6xZCio9NMAWtkycS9eNJjzHvvVQgjwDftrE6V4dZOgpZv8PW0uHCQlaorJyuSOs
4fDFq4Qxlleg65bH06LK04hkOpWyuvQOV1dkNrZzNPBs9G3jWlkF/MJf5yDmUcSr
JFBnm6zOyOev1kwfrTPSgsH1PNfR5gXNc41ImkNpiK5ZlMt8B7UZh5S9ILH+3EiF
VSPc6cBAPzmR1V+irIp8UBmtOOiB4J9OfMXuwljGPWLt
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:34:26 2024 by rpki-client on console-fra.rpki-client.org