Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/ZtanexAjnASLIyjImlPsjusJZ0Y.roa
File: ZtanexAjnASLIyjImlPsjusJZ0Y.roa (raw, json)
Hash identifier: lCmO2Je6tKQjaYjobZPZRUNxx0G62xuxkbA/4WCFa1Y=
Subject key identifier: 66:D6:A7:7B:10:23:9C:04:8B:23:28:C8:9A:53:EC:8E:EB:09:67:46
Certificate issuer: /CN=9b67c02de7fc8d11a1afe7ae62c5854d17767553
Certificate serial: 018F8240EEEB7C201AD6968A701AD88D999B
Authority key identifier: 9B:67:C0:2D:E7:FC:8D:11:A1:AF:E7:AE:62:C5:85:4D:17:76:75:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2fALef8jRGhr-euYsWFTRd2dVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/ZtanexAjnASLIyjImlPsjusJZ0Y.roa
Signing time: Thu 16 May 2024 16:34:04 +0000
ROA not before: Thu 16 May 2024 16:34:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 193.8.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/m2fALef8jRGhr-euYsWFTRd2dVM.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/m2fALef8jRGhr-euYsWFTRd2dVM.mft
rsync://rpki.ripe.net/repository/DEFAULT/m2fALef8jRGhr-euYsWFTRd2dVM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:82:40:ee:eb:7c:20:1a:d6:96:8a:70:1a:d8:8d:99:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b67c02de7fc8d11a1afe7ae62c5854d17767553
Validity
Not Before: May 16 16:34:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66d6a77b10239c048b2328c89a53ec8eeb096746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1f:7a:00:27:ad:1c:8e:3f:09:1e:a8:0e:d4:
8e:ea:0a:90:ff:e1:c1:af:34:88:0c:4c:b6:d0:ab:
af:fa:55:e6:96:85:4f:d2:45:de:f9:5f:d6:b4:3d:
d9:8f:45:60:36:98:44:d3:66:13:f2:6c:72:13:ce:
65:04:02:62:37:ed:d2:13:53:ff:a3:fe:2b:78:36:
5a:b1:5f:a8:b4:36:4f:46:2d:45:5d:e0:0a:c5:52:
76:01:a3:c4:4d:47:63:7a:60:07:2b:58:f0:73:1d:
d5:dc:53:0d:23:07:ec:24:7a:70:5c:f9:b0:02:b9:
8d:f3:e4:78:55:93:ed:eb:3f:04:db:aa:72:35:23:
75:35:c6:c3:bd:21:f3:83:2d:a1:cd:13:89:ac:e1:
58:0e:b2:80:fb:24:9c:97:98:14:fc:c7:a1:b3:dd:
f7:30:4d:a0:87:39:4d:4f:12:bb:9c:36:ae:dd:d3:
cb:c6:81:4e:c0:58:2f:bf:1f:87:f1:9b:1a:c9:64:
af:4b:e1:da:fb:54:a6:2c:bc:c0:03:9a:3a:3c:84:
0f:91:af:32:46:1c:ed:e2:b9:88:c0:1b:ed:dc:c3:
5b:53:e0:b8:08:50:5e:90:a4:4e:1c:f1:ac:ef:17:
92:e6:43:e2:52:c6:ec:25:14:20:62:47:2c:eb:14:
86:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D6:A7:7B:10:23:9C:04:8B:23:28:C8:9A:53:EC:8E:EB:09:67:46
X509v3 Authority Key Identifier:
keyid:9B:67:C0:2D:E7:FC:8D:11:A1:AF:E7:AE:62:C5:85:4D:17:76:75:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2fALef8jRGhr-euYsWFTRd2dVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/ZtanexAjnASLIyjImlPsjusJZ0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/m2fALef8jRGhr-euYsWFTRd2dVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.43.0/24
Signature Algorithm: sha256WithRSAEncryption
42:8d:bb:53:ae:46:81:5c:e7:05:27:2b:63:61:69:e9:6b:a7:
cd:c4:59:74:81:92:b2:b9:41:2f:09:9c:9f:03:50:c5:0d:ed:
71:78:14:f9:21:3c:e1:ec:34:df:4b:0b:a8:cd:3f:95:21:0c:
66:63:30:c9:a5:64:39:c4:5b:2a:d6:57:f8:d0:de:35:54:26:
35:8f:f5:bc:fb:05:4f:c1:37:a7:bf:bf:5d:9b:bd:44:75:93:
2f:8b:2b:cf:2f:26:a6:bd:4c:23:5a:8e:e8:dd:67:72:2e:61:
34:c7:41:5d:03:16:e9:ab:47:6e:0c:51:ba:95:14:8d:a2:6d:
8c:75:c9:26:01:73:14:1f:3a:72:b9:04:d9:2b:f0:b0:78:51:
83:32:01:09:cc:be:46:14:2c:90:f2:3d:b8:d7:a0:bf:8b:1d:
96:15:7e:4b:33:7b:50:49:ef:47:fb:6e:0a:b5:81:a6:f2:be:
3c:a0:fc:14:af:9c:a2:1b:ea:0e:8f:cc:c1:59:7e:61:19:5c:
ca:46:3e:f1:47:e0:9e:1f:93:71:76:7e:13:e8:de:a7:b3:ce:
1e:96:ec:d0:a0:fe:ad:10:a2:d8:f0:e9:21:84:cb:ed:68:0a:
0a:8b:c8:ea:3c:57:88:93:3f:6b:db:b8:92:7e:19:0b:dd:f3:
1a:9b:08:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+CQO7rfCAa1paKcBrYjZmbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliNjdjMDJkZTdmYzhkMTFhMWFmZTdhZTYyYzU4NTRkMTc3
Njc1NTMwHhcNMjQwNTE2MTYzNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmQ2YTc3YjEwMjM5YzA0OGIyMzI4Yzg5YTUzZWM4ZWViMDk2NzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArx96ACetHI4/CR6oDtSO6gqQ/+HB
rzSIDEy20Kuv+lXmloVP0kXe+V/WtD3Zj0VgNphE02YT8mxyE85lBAJiN+3SE1P/
o/4reDZasV+otDZPRi1FXeAKxVJ2AaPETUdjemAHK1jwcx3V3FMNIwfsJHpwXPmw
ArmN8+R4VZPt6z8E26pyNSN1NcbDvSHzgy2hzROJrOFYDrKA+yScl5gU/Mehs933
ME2ghzlNTxK7nDau3dPLxoFOwFgvvx+H8ZsayWSvS+Ha+1SmLLzAA5o6PIQPka8y
Rhzt4rmIwBvt3MNbU+C4CFBekKROHPGs7xeS5kPiUsbsJRQgYkcs6xSGfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGbWp3sQI5wEiyMoyJpT7I7rCWdGMB8GA1UdIwQY
MBaAFJtnwC3n/I0Roa/nrmLFhU0XdnVTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTJmQUxlZjhqUkdoci1ldVlzV0ZUUmQyZFZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9kNTRlODEtMzMxNy00MjgzLWI0NWYt
YzgxNzQzYjJjYWU2LzEvWnRhbmV4QWpuQVNMSXlqSW1sUHNqdXNKWjBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9kNTRlODEtMzMxNy00MjgzLWI0NWYtYzgxNzQzYjJjYWU2
LzEvbTJmQUxlZjhqUkdoci1ldVlzV0ZUUmQyZFZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQgrMA0G
CSqGSIb3DQEBCwUAA4IBAQBCjbtTrkaBXOcFJytjYWnpa6fNxFl0gZKyuUEvCZyf
A1DFDe1xeBT5ITzh7DTfSwuozT+VIQxmYzDJpWQ5xFsq1lf40N41VCY1j/W8+wVP
wTenv79dm71EdZMviyvPLyamvUwjWo7o3WdyLmE0x0FdAxbpq0duDFG6lRSNom2M
dckmAXMUHzpyuQTZK/CweFGDMgEJzL5GFCyQ8j2416C/ix2WFX5LM3tQSe9H+24K
tYGm8r48oPwUr5yiG+oOj8zBWX5hGVzKRj7xR+CeH5Nxdn4T6N6ns84eluzQoP6t
EKLY8OkhhMvtaAoKi8jqPFeIkz9r27iSfhkL3fMamwgW
-----END CERTIFICATE-----
Generated at Sun Jun 16 12:10:36 2024 by rpki-client on console-ams.rpki-client.org