Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/53NqsmzyQf_88gG9QeAaiy7bE04.roa
File: 53NqsmzyQf_88gG9QeAaiy7bE04.roa (raw, json)
Hash identifier: WS1blP18xRJm+pHN+kkJ6AdJBrrJz+2YZ5hBh103o48=
Subject key identifier: E7:73:6A:B2:6C:F2:41:FF:FC:F2:01:BD:41:E0:1A:8B:2E:DB:13:4E
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 01904A5AF996429BC03A731C4172A8192277
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/53NqsmzyQf_88gG9QeAaiy7bE04.roa
Signing time: Mon 24 Jun 2024 13:06:34 +0000
ROA not before: Mon 24 Jun 2024 13:06:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214639
IP address blocks: 2a03:5840:11c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:5a:f9:96:42:9b:c0:3a:73:1c:41:72:a8:19:22:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jun 24 13:06:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7736ab26cf241fffcf201bd41e01a8b2edb134e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:29:fc:f2:a6:23:f7:c3:5d:0b:6a:d1:bb:4d:
ee:08:d8:47:a4:f5:29:9b:29:64:69:31:51:23:cf:
3a:41:ce:fa:f0:f9:f5:fe:22:06:cd:3f:5a:d4:1a:
c3:d4:52:76:55:c5:69:ec:e4:31:72:32:ae:b6:51:
23:7d:b5:f2:eb:45:7c:e7:10:9c:c5:ce:28:a3:12:
5b:2b:30:59:57:1c:bc:5c:9c:2c:d7:fd:2f:d2:67:
01:28:03:08:cd:f1:78:f2:c7:46:64:99:3f:1f:22:
3c:fa:02:d2:e9:f4:82:16:6a:cb:41:62:ba:46:7c:
11:4d:87:4d:09:ba:07:6f:56:e6:67:46:db:b3:41:
2a:f3:07:01:7a:90:9a:dc:5d:f1:d0:0e:da:88:52:
60:da:ed:ae:d8:18:ec:70:5e:04:ef:42:a9:6e:8a:
c7:b5:68:f4:ba:1b:41:20:af:7d:e4:ee:b0:cb:20:
28:f1:3e:aa:67:00:2b:93:73:72:71:a7:88:f5:c1:
c4:d2:2c:da:f2:cb:08:24:67:59:f9:b7:a0:db:ff:
cc:44:5b:6b:ed:2f:d6:b8:5d:f9:20:4c:3b:25:4c:
19:80:69:29:ff:c1:d2:19:0a:b5:23:35:d7:49:6e:
a0:90:a5:49:15:6d:62:02:ce:25:8a:cf:b4:3f:c9:
ca:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:73:6A:B2:6C:F2:41:FF:FC:F2:01:BD:41:E0:1A:8B:2E:DB:13:4E
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/53NqsmzyQf_88gG9QeAaiy7bE04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:11c::/48
Signature Algorithm: sha256WithRSAEncryption
45:bb:78:29:0a:02:5c:ee:6b:bb:44:14:54:12:cc:57:b6:1b:
93:8b:30:65:8a:dd:9f:27:ba:ed:f2:63:b3:59:1c:97:37:8c:
27:86:a2:2a:63:56:f1:e5:89:db:67:4b:32:0d:89:a6:21:a7:
9e:cc:76:74:db:81:73:62:33:80:9a:13:ce:5c:e6:1f:a2:22:
d4:38:a5:04:45:26:b1:00:74:c5:22:83:4f:04:50:f6:b5:be:
3a:3a:98:13:c3:2b:2c:84:f5:66:02:b9:7b:f6:2b:fd:6b:28:
a6:ed:42:24:fa:6b:57:60:05:9f:ca:fa:d0:94:8a:a7:e3:e9:
cd:88:23:51:a4:06:0f:11:a4:9a:31:50:61:d0:cf:02:4c:b0:
df:2e:08:6c:31:ea:54:83:24:a5:5d:c4:4b:a4:43:9b:c7:cf:
82:b3:24:cd:1f:31:b8:de:31:1b:eb:64:32:0e:54:ae:76:19:
3c:90:ab:07:7c:a9:4e:c0:05:83:30:44:d5:d4:d0:b0:a5:16:
12:3d:8d:63:c5:53:49:1f:bb:a6:10:05:17:8f:11:43:86:64:
52:76:fe:8a:b2:3b:80:7d:d8:7f:20:96:61:2e:60:5d:58:c4:
2e:5b:1f:24:2d:38:a6:29:2b:56:e8:af:c9:b0:85:fb:76:01:
f9:96:da:b4
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZBKWvmWQpvAOnMcQXKoGSJ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1
ODYzNWEwHhcNMjQwNjI0MTMwNjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzczNmFiMjZjZjI0MWZmZmNmMjAxYmQ0MWUwMWE4YjJlZGIxMzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSn88qYj98NdC2rRu03uCNhHpPUp
mylkaTFRI886Qc768Pn1/iIGzT9a1BrD1FJ2VcVp7OQxcjKutlEjfbXy60V85xCc
xc4ooxJbKzBZVxy8XJws1/0v0mcBKAMIzfF48sdGZJk/HyI8+gLS6fSCFmrLQWK6
RnwRTYdNCboHb1bmZ0bbs0Eq8wcBepCa3F3x0A7aiFJg2u2u2BjscF4E70KpborH
tWj0uhtBIK995O6wyyAo8T6qZwArk3NycaeI9cHE0iza8ssIJGdZ+beg2//MRFtr
7S/WuF35IEw7JUwZgGkp/8HSGQq1IzXXSW6gkKVJFW1iAs4lis+0P8nKJwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOdzarJs8kH//PIBvUHgGosu2xNOMB8GA1UdIwQY
MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt
NmNiODk3OTFkN2ZkLzEvNTNOcXNtenlRZl84OGdHOVFlQWFpeTdiRTA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk
LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgNYQAEc
MA0GCSqGSIb3DQEBCwUAA4IBAQBFu3gpCgJc7mu7RBRUEsxXthuTizBlit2fJ7rt
8mOzWRyXN4wnhqIqY1bx5YnbZ0syDYmmIaeezHZ024FzYjOAmhPOXOYfoiLUOKUE
RSaxAHTFIoNPBFD2tb46OpgTwysshPVmArl79iv9ayim7UIk+mtXYAWfyvrQlIqn
4+nNiCNRpAYPEaSaMVBh0M8CTLDfLghsMepUgySlXcRLpEObx8+CsyTNHzG43jEb
62QyDlSudhk8kKsHfKlOwAWDMETV1NCwpRYSPY1jxVNJH7umEAUXjxFDhmRSdv6K
sjuAfdh/IJZhLmBdWMQuWx8kLTimKStW6K/JsIX7dgH5ltq0
-----END CERTIFICATE-----
Generated at Tue Nov 26 06:37:27 2024 by rpki-client on console-fra.rpki-client.org