Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/YpnmOw9MOo6PIkz2nTjspWkJeNo.roa
File: YpnmOw9MOo6PIkz2nTjspWkJeNo.roa (raw, json)
Hash identifier: 1hInVVZyI9IXhmPSbUPMrT/9yFwt97n3V8jhFRd6Fgk=
Subject key identifier: 62:99:E6:3B:0F:4C:3A:8E:8F:22:4C:F6:9D:38:EC:A5:69:09:78:DA
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018CC86FDC8A8BA7DA83FBB45D3AADCF3A42
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/YpnmOw9MOo6PIkz2nTjspWkJeNo.roa
Signing time: Tue 02 Jan 2024 04:30:23 +0000
ROA not before: Tue 02 Jan 2024 04:30:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209484
IP address blocks: 2a03:5840:f3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 May 2024 17:37:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:dc:8a:8b:a7:da:83:fb:b4:5d:3a:ad:cf:3a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 04:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6299e63b0f4c3a8e8f224cf69d38eca5690978da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d7:51:a9:2b:29:c4:8c:79:97:31:d7:e6:68:
55:79:c3:36:91:ea:ed:f5:1d:d3:26:23:a5:ae:a1:
e8:38:f7:49:7d:ad:06:ad:58:69:c7:25:bf:44:a2:
4f:19:da:9b:95:f4:88:45:a8:03:56:89:8a:be:25:
13:43:f5:14:3d:48:cb:87:cf:a3:ec:0b:65:62:0c:
91:d0:0c:27:a6:50:2c:0c:0f:8e:e7:7c:da:eb:a3:
8a:2a:5b:44:67:6b:59:28:b7:bd:00:98:ae:78:d0:
2c:26:0b:a1:2b:2a:58:6c:ea:97:aa:a4:4c:a1:b3:
64:47:e8:43:71:d0:0e:0d:61:cc:c7:d0:91:bd:4a:
aa:ef:b5:fd:b9:3e:ab:a8:9a:f8:65:a8:c4:8c:de:
aa:1c:17:53:3e:e2:96:b1:c2:dd:ae:56:97:c1:dd:
0f:75:f8:e0:ad:a7:e5:73:eb:e2:c1:39:42:2e:d9:
97:9d:79:08:1f:c3:a1:5d:25:c0:8c:93:44:b5:aa:
d0:73:fb:92:5f:06:97:f8:d9:33:ce:d8:48:43:14:
36:21:de:29:23:b9:0f:17:86:2e:48:6c:be:88:fd:
24:3d:8d:0f:7d:30:be:bd:91:cf:dd:7b:3e:67:02:
f2:02:52:4e:d5:6d:b8:64:dc:bc:42:ce:dd:7c:49:
f3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:99:E6:3B:0F:4C:3A:8E:8F:22:4C:F6:9D:38:EC:A5:69:09:78:DA
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/YpnmOw9MOo6PIkz2nTjspWkJeNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:f3::/48
Signature Algorithm: sha256WithRSAEncryption
26:7d:98:46:fa:fc:54:eb:e0:65:c0:0e:08:c4:f3:8e:55:bd:
a9:75:68:b2:72:12:10:61:a9:20:46:d8:87:62:c1:1b:52:0a:
2e:18:67:25:f1:d2:e5:77:3d:dd:30:f5:2e:1d:21:6c:9b:fd:
6d:e3:1e:6e:19:44:6b:10:8e:ea:6c:bd:de:d8:de:97:0c:a7:
df:9f:1d:f2:2b:3d:f8:bd:38:14:43:2e:31:d7:d7:fd:de:b3:
3f:ca:55:8b:fe:f2:57:d3:01:87:67:ce:12:ca:18:0e:2d:f6:
be:78:c7:ca:95:b1:5c:92:00:53:b3:de:02:8b:8e:f6:b7:bf:
2a:b8:c4:f6:3d:5e:28:db:d7:b8:10:f5:e4:03:1f:81:4e:a6:
9e:21:fa:54:9e:38:74:ac:27:20:3f:e2:df:72:b9:20:25:23:
2b:96:25:e9:29:c0:21:b8:8c:14:95:03:2a:08:79:f4:6f:05:
33:56:20:8f:73:80:b8:04:f0:45:cc:95:15:e6:6b:5e:1e:28:
eb:f0:12:56:08:bb:1d:ab:8a:9c:62:b0:d6:f2:6e:4f:55:31:
79:f1:d5:6c:b6:11:98:1c:78:e8:6d:3f:5c:1a:4b:b5:34:7f:
70:98:bf:51:71:0f:e5:5a:92:c6:61:9d:83:bf:18:2d:96:0d:
00:63:66:ec
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzIb9yKi6fag/u0XTqtzzpCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1
ODYzNWEwHhcNMjQwMTAyMDQzMDIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Mjk5ZTYzYjBmNGMzYThlOGYyMjRjZjY5ZDM4ZWNhNTY5MDk3OGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmddRqSspxIx5lzHX5mhVecM2kert
9R3TJiOlrqHoOPdJfa0GrVhpxyW/RKJPGdqblfSIRagDVomKviUTQ/UUPUjLh8+j
7AtlYgyR0AwnplAsDA+O53za66OKKltEZ2tZKLe9AJiueNAsJguhKypYbOqXqqRM
obNkR+hDcdAODWHMx9CRvUqq77X9uT6rqJr4ZajEjN6qHBdTPuKWscLdrlaXwd0P
dfjgraflc+viwTlCLtmXnXkIH8OhXSXAjJNEtarQc/uSXwaX+NkzzthIQxQ2Id4p
I7kPF4YuSGy+iP0kPY0PfTC+vZHP3Xs+ZwLyAlJO1W24ZNy8Qs7dfEnzxQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGKZ5jsPTDqOjyJM9p047KVpCXjaMB8GA1UdIwQY
MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt
NmNiODk3OTFkN2ZkLzEvWXBubU93OU1PbzZQSWt6Mm5UanNwV2tKZU5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk
LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgNYQADz
MA0GCSqGSIb3DQEBCwUAA4IBAQAmfZhG+vxU6+BlwA4IxPOOVb2pdWiychIQYakg
RtiHYsEbUgouGGcl8dLldz3dMPUuHSFsm/1t4x5uGURrEI7qbL3e2N6XDKffnx3y
Kz34vTgUQy4x19f93rM/ylWL/vJX0wGHZ84SyhgOLfa+eMfKlbFckgBTs94Ci472
t78quMT2PV4o29e4EPXkAx+BTqaeIfpUnjh0rCcgP+LfcrkgJSMrliXpKcAhuIwU
lQMqCHn0bwUzViCPc4C4BPBFzJUV5mteHijr8BJWCLsdq4qcYrDW8m5PVTF58dVs
thGYHHjobT9cGku1NH9wmL9RcQ/lWpLGYZ2Dvxgtlg0AY2bs
-----END CERTIFICATE-----
Generated at Tue Apr 30 23:44:28 2024 by rpki-client on console-fra.rpki-client.org