Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/RuZQOt6dvto6E30zWVlByNgFd10.roa
File: RuZQOt6dvto6E30zWVlByNgFd10.roa (raw, json)
Hash identifier: +gHN5qaE4X8PsrOPZCyYoJFN+vluIUCxUxI9Ryg0eWQ=
Subject key identifier: 46:E6:50:3A:DE:9D:BE:DA:3A:13:7D:33:59:59:41:C8:D8:05:77:5D
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018CC2DADA39F479B8361BDC7DE951ED7677
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/RuZQOt6dvto6E30zWVlByNgFd10.roa
Signing time: Mon 01 Jan 2024 02:29:31 +0000
ROA not before: Mon 01 Jan 2024 02:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198595
IP address blocks: 195.136.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:da:39:f4:79:b8:36:1b:dc:7d:e9:51:ed:76:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 02:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46e6503ade9dbeda3a137d33595941c8d805775d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4b:d4:a5:e2:5a:73:69:e1:d1:83:91:dc:ca:
fa:45:f1:81:ff:75:fe:ce:ee:ac:13:98:49:20:18:
2e:88:6b:5f:6b:42:0e:a0:99:ee:df:e5:36:0c:eb:
1b:5f:5d:69:e0:08:4b:7b:f9:ee:58:55:6c:b4:80:
79:93:f4:9e:19:06:82:ff:8d:a2:a7:c1:d0:40:43:
8b:9f:8c:7b:1e:96:76:08:ba:6e:85:ff:fe:80:51:
a7:77:06:99:b2:50:4c:30:12:58:3e:54:49:24:1d:
f3:14:aa:9f:b9:0b:16:46:c4:86:eb:9d:a5:2c:c7:
1b:5a:4d:16:aa:9e:bf:1f:42:a5:6d:2e:c8:3d:b4:
85:a5:20:10:3e:6c:0e:dc:14:3f:fb:1d:2e:f7:53:
63:f5:45:8c:76:34:a8:7e:75:70:1b:21:9e:67:21:
2f:89:3a:4f:f6:f2:f8:3a:2e:47:33:ed:e6:a7:c9:
f4:0b:1d:96:b8:f1:8d:1a:42:72:32:57:8c:c5:8d:
0f:b5:70:76:47:67:ab:13:40:2d:3a:b0:63:99:94:
66:1b:0e:a1:02:54:89:a2:2a:c6:2b:59:33:5f:d1:
1c:f6:88:ab:f8:b8:8b:bd:40:73:65:fb:62:0a:d6:
52:ca:81:1c:4f:b2:60:cd:5e:c4:81:ae:42:48:a3:
3f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E6:50:3A:DE:9D:BE:DA:3A:13:7D:33:59:59:41:C8:D8:05:77:5D
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/RuZQOt6dvto6E30zWVlByNgFd10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.173.0/24
Signature Algorithm: sha256WithRSAEncryption
22:b7:54:3a:ff:df:ac:fc:4d:07:d5:be:2c:cd:f1:9a:37:42:
04:7e:fb:57:a2:6f:c4:3c:57:ba:2d:bc:29:ae:9f:cd:84:c0:
5d:0a:95:b1:21:50:46:a0:b4:7b:85:91:41:af:fb:b8:79:4e:
dc:88:7e:7d:8c:5d:89:86:7c:ff:90:7b:23:ff:f9:3a:31:dd:
35:3f:44:57:dd:9b:2c:6f:ec:58:58:e6:c7:fd:e2:53:75:e0:
86:42:ef:8a:bc:45:ec:c1:e9:32:75:1a:2d:4c:c1:24:e5:4a:
38:82:97:ab:fa:b3:8e:ea:1b:56:18:d9:86:6c:bd:0b:5a:fa:
a9:b8:6c:47:aa:51:b0:42:5b:75:86:a5:0a:54:04:b8:ec:e7:
bb:05:08:90:8b:2c:c2:9b:a4:38:9c:d3:42:8b:27:55:55:27:
51:7e:96:48:97:2e:87:49:d4:d8:a8:41:69:a8:15:ed:83:f4:
9b:c1:0c:2e:32:c3:45:4e:3c:ca:a7:ac:1b:d4:07:ed:8e:96:
97:fa:b1:39:76:79:98:dd:e1:ae:ff:02:e6:b6:3b:98:c7:7e:
c2:b1:9f:48:70:f7:a0:6d:b5:04:2a:23:6c:b2:c8:2b:e4:f9:
65:41:38:70:54:b7:36:1e:cc:81:50:46:dd:e6:ec:16:19:e3:
23:ae:5d:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC2to59Hm4NhvcfelR7XZ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj
MmQ3NmIwHhcNMjQwMTAxMDIyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NmU2NTAzYWRlOWRiZWRhM2ExMzdkMzM1OTU5NDFjOGQ4MDU3NzVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0vUpeJac2nh0YOR3Mr6RfGB/3X+
zu6sE5hJIBguiGtfa0IOoJnu3+U2DOsbX11p4AhLe/nuWFVstIB5k/SeGQaC/42i
p8HQQEOLn4x7HpZ2CLpuhf/+gFGndwaZslBMMBJYPlRJJB3zFKqfuQsWRsSG652l
LMcbWk0Wqp6/H0KlbS7IPbSFpSAQPmwO3BQ/+x0u91Nj9UWMdjSofnVwGyGeZyEv
iTpP9vL4Oi5HM+3mp8n0Cx2WuPGNGkJyMleMxY0PtXB2R2erE0AtOrBjmZRmGw6h
AlSJoirGK1kzX9Ec9oir+LiLvUBzZftiCtZSyoEcT7JgzV7Ega5CSKM/BwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEbmUDrenb7aOhN9M1lZQcjYBXddMB8GA1UdIwQY
MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt
NTI3NjZiMjRiYWE0LzEvUnVaUU90NmR2dG82RTMweldWbEJ5TmdGZDEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0
LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4itMA0G
CSqGSIb3DQEBCwUAA4IBAQAit1Q6/9+s/E0H1b4szfGaN0IEfvtXom/EPFe6Lbwp
rp/NhMBdCpWxIVBGoLR7hZFBr/u4eU7ciH59jF2Jhnz/kHsj//k6Md01P0RX3Zss
b+xYWObH/eJTdeCGQu+KvEXswekydRotTMEk5Uo4gper+rOO6htWGNmGbL0LWvqp
uGxHqlGwQlt1hqUKVAS47Oe7BQiQiyzCm6Q4nNNCiydVVSdRfpZIly6HSdTYqEFp
qBXtg/SbwQwuMsNFTjzKp6wb1AftjpaX+rE5dnmY3eGu/wLmtjuYx37CsZ9IcPeg
bbUEKiNsssgr5PllQThwVLc2HsyBUEbd5uwWGeMjrl2D
-----END CERTIFICATE-----
Generated at Fri Nov 22 13:47:44 2024 by rpki-client on console-fra.rpki-client.org