Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/1-6OkkXT7C4FLfpQRzLeEPIkuUNA.roa
File: 1-6OkkXT7C4FLfpQRzLeEPIkuUNA.roa (raw, json)
Hash identifier: D8MJaVpCwQ0fVODdot0Xw5y5hbPJWv55WnQMX0Z/dxE=
Subject key identifier: FB:A3:A4:91:74:FB:0B:81:4B:7E:94:11:CC:B7:84:3C:89:2E:50:D0
Certificate issuer: /CN=21e421a6d96e99d63f7cfb499ca7117c82304eaa
Certificate serial: 019426D97274BF8798177B78ECE7933AED4B
Authority key identifier: 21:E4:21:A6:D9:6E:99:D6:3F:7C:FB:49:9C:A7:11:7C:82:30:4E:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IeQhptlumdY_fPtJnKcRfIIwTqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/1-6OkkXT7C4FLfpQRzLeEPIkuUNA.roa
Signing time: Thu 02 Jan 2025 11:49:32 +0000
ROA not before: Thu 02 Jan 2025 11:49:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210178
IP address blocks: 194.61.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/IeQhptlumdY_fPtJnKcRfIIwTqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/IeQhptlumdY_fPtJnKcRfIIwTqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/IeQhptlumdY_fPtJnKcRfIIwTqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:72:74:bf:87:98:17:7b:78:ec:e7:93:3a:ed:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21e421a6d96e99d63f7cfb499ca7117c82304eaa
Validity
Not Before: Jan 2 11:49:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fba3a49174fb0b814b7e9411ccb7843c892e50d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fa:fc:ad:ae:ee:30:45:d5:29:7d:0a:b1:ff:
6e:3f:19:87:42:00:7f:b6:66:10:11:76:e2:77:fa:
cf:7e:4c:b6:cf:30:50:b4:1d:ba:00:94:7c:43:ee:
31:fe:73:06:04:65:09:17:66:1e:60:3a:16:e6:ae:
37:94:50:c9:68:15:1c:a1:9c:20:60:73:cf:de:da:
fb:7a:0e:bb:f2:c7:e8:bb:fd:93:08:0c:66:ba:8a:
ab:77:6e:2e:33:44:d4:da:ee:3e:ab:c1:60:cf:b1:
fc:1a:d4:50:f7:3a:29:c2:3b:75:06:97:e4:c6:56:
b1:95:6d:d7:8e:e4:b9:c3:63:35:63:f3:73:f3:97:
56:4c:2e:c7:59:7c:bb:a0:3e:92:92:c5:51:a0:d1:
de:51:18:44:c0:28:d5:31:e3:2e:47:fc:0c:83:24:
3d:43:b9:06:99:d6:7d:9d:91:54:85:b1:48:f8:ed:
09:2b:47:d6:53:4a:86:cf:02:b7:be:fb:8f:c5:4d:
e0:bb:fb:84:79:19:b5:00:10:4f:25:24:f7:80:a1:
c0:bc:f1:7c:6a:b3:78:5b:d5:76:0d:2d:b4:1a:5b:
9e:72:b5:e6:3d:7d:3f:f8:ef:b0:2c:8c:1d:6f:5b:
66:df:3b:bd:0f:41:9f:67:cd:f7:0b:31:0f:1f:c2:
97:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A3:A4:91:74:FB:0B:81:4B:7E:94:11:CC:B7:84:3C:89:2E:50:D0
X509v3 Authority Key Identifier:
keyid:21:E4:21:A6:D9:6E:99:D6:3F:7C:FB:49:9C:A7:11:7C:82:30:4E:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IeQhptlumdY_fPtJnKcRfIIwTqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/1-6OkkXT7C4FLfpQRzLeEPIkuUNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1d4b2c-945d-4f39-b233-3e6b7025b65e/1/IeQhptlumdY_fPtJnKcRfIIwTqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.140.0/22
Signature Algorithm: sha256WithRSAEncryption
77:9a:74:4f:03:af:0e:6e:bb:7d:37:ed:34:b8:dd:1e:c6:25:
21:f2:88:50:5f:24:69:ae:a0:9d:a9:9a:08:af:75:5c:41:67:
60:d3:2c:2c:27:d6:99:62:c4:7b:d8:f9:3d:db:92:0e:50:ea:
60:aa:98:df:2e:16:7a:f7:79:50:66:b4:5a:ae:30:94:b9:46:
ea:96:6c:67:bc:54:85:c3:21:17:76:97:49:16:17:9f:52:3e:
bc:0d:b4:ae:9f:e0:92:ff:16:cc:74:a7:59:e5:45:d0:39:26:
d1:87:e6:f5:d4:2c:d8:43:35:35:b8:72:de:c5:50:53:73:13:
35:0d:6d:36:d3:5f:e6:58:a1:a3:fe:1c:51:f1:2d:d1:01:fe:
30:27:52:e5:fb:ea:f4:e3:57:e6:54:a2:24:28:31:41:32:d1:
48:a7:ba:ea:ba:b2:62:2c:aa:28:29:d1:7c:9b:b4:a2:fc:d0:
77:a5:c1:25:e0:69:1f:6b:e4:ba:1b:ce:81:65:f5:bd:ac:c2:
47:75:7b:9f:80:91:c8:01:98:28:6c:45:60:e0:b6:25:7c:1c:
99:28:41:75:5d:62:65:08:48:7c:b2:52:eb:7a:28:74:c5:27:
38:ae:6d:98:ae:66:5d:36:ed:90:ff:6e:64:75:51:3f:7a:64:
da:9c:96:f4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQm2XJ0v4eYF3t47OeTOu1LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxZTQyMWE2ZDk2ZTk5ZDYzZjdjZmI0OTljYTcxMTdjODIz
MDRlYWEwHhcNMjUwMTAyMTE0OTMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYmEzYTQ5MTc0ZmIwYjgxNGI3ZTk0MTFjY2I3ODQzYzg5MmU1MGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Pr8ra7uMEXVKX0Ksf9uPxmHQgB/
tmYQEXbid/rPfky2zzBQtB26AJR8Q+4x/nMGBGUJF2YeYDoW5q43lFDJaBUcoZwg
YHPP3tr7eg678sfou/2TCAxmuoqrd24uM0TU2u4+q8Fgz7H8GtRQ9zopwjt1Bpfk
xlaxlW3XjuS5w2M1Y/Nz85dWTC7HWXy7oD6SksVRoNHeURhEwCjVMeMuR/wMgyQ9
Q7kGmdZ9nZFUhbFI+O0JK0fWU0qGzwK3vvuPxU3gu/uEeRm1ABBPJST3gKHAvPF8
arN4W9V2DS20GluecrXmPX0/+O+wLIwdb1tm3zu9D0GfZ833CzEPH8KX5wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPujpJF0+wuBS36UEcy3hDyJLlDQMB8GA1UdIwQY
MBaAFCHkIabZbpnWP3z7SZynEXyCME6qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWVRaHB0bHVtZFlfZlB0Sm5LY1JmSUl3VHFvLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8xZDRiMmMtOTQ1ZC00ZjM5LWIyMzMt
M2U2YjcwMjViNjVlLzEvMS02T2trWFQ3QzRGTGZwUVJ6TGVFUElrdVVOQS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzcvMWQ0YjJjLTk0NWQtNGYzOS1iMjMzLTNlNmI3MDI1YjY1
ZS8xL0llUWhwdGx1bWRZX2ZQdEpuS2NSZklJd1Rxby5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsI9jDAN
BgkqhkiG9w0BAQsFAAOCAQEAd5p0TwOvDm67fTftNLjdHsYlIfKIUF8kaa6gnama
CK91XEFnYNMsLCfWmWLEe9j5PduSDlDqYKqY3y4Wevd5UGa0Wq4wlLlG6pZsZ7xU
hcMhF3aXSRYXn1I+vA20rp/gkv8WzHSnWeVF0Dkm0Yfm9dQs2EM1Nbhy3sVQU3MT
NQ1tNtNf5liho/4cUfEt0QH+MCdS5fvq9ONX5lSiJCgxQTLRSKe66rqyYiyqKCnR
fJu0ovzQd6XBJeBpH2vkuhvOgWX1vazCR3V7n4CRyAGYKGxFYOC2JXwcmShBdV1i
ZQhIfLJS63oodMUnOK5tmK5mXTbtkP9uZHVRP3pk2pyW9A==
-----END CERTIFICATE-----
Generated at Sun Feb 2 10:00:25 2025 by rpki-client