Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/oHgWtXcce68Ofa6BXq8mHeuq3CA.roa
File: oHgWtXcce68Ofa6BXq8mHeuq3CA.roa (raw, json)
Hash identifier: y09wXntXLhbmqAK00yYJDsf3r00sSy9gSOjZlaVBCco=
Subject key identifier: A0:78:16:B5:77:1C:7B:AF:0E:7D:AE:81:5E:AF:26:1D:EB:AA:DC:20
Certificate issuer: /CN=50c4c24be8d5efbf0642fd18e3b6b7c8d22cc60f
Certificate serial: 018D988EDA90E1E7179AA9FD2EC8AA191779
Authority key identifier: 50:C4:C2:4B:E8:D5:EF:BF:06:42:FD:18:E3:B6:B7:C8:D2:2C:C6:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMTCS-jV778GQv0Y47a3yNIsxg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/oHgWtXcce68Ofa6BXq8mHeuq3CA.roa
Signing time: Sun 11 Feb 2024 14:25:15 +0000
ROA not before: Sun 11 Feb 2024 14:25:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215596
IP address blocks: 2a0e:4d40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/UMTCS-jV778GQv0Y47a3yNIsxg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/UMTCS-jV778GQv0Y47a3yNIsxg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UMTCS-jV778GQv0Y47a3yNIsxg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:98:8e:da:90:e1:e7:17:9a:a9:fd:2e:c8:aa:19:17:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c4c24be8d5efbf0642fd18e3b6b7c8d22cc60f
Validity
Not Before: Feb 11 14:25:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a07816b5771c7baf0e7dae815eaf261debaadc20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0d:42:ac:a9:c2:4a:65:5a:ae:99:ce:b0:c1:
88:a8:6a:81:f3:c1:5d:d8:f7:e2:55:27:3e:31:78:
1f:c7:65:dd:47:64:c8:98:87:8d:93:f9:93:af:2c:
10:75:75:cf:cd:e2:9c:ba:96:df:c0:5a:3c:f3:c9:
33:88:21:df:0d:3f:91:d7:02:98:c5:e2:d6:1c:de:
da:5e:50:f4:24:76:7f:cc:81:d0:29:e1:2c:41:48:
a4:50:1f:eb:bb:09:b0:b0:c7:36:1d:53:76:05:2b:
60:04:b9:35:e6:f0:08:be:ca:aa:cc:da:c1:17:73:
9c:21:be:e1:47:c1:3a:51:b4:b3:63:ce:dc:9c:67:
e5:cc:c1:8c:93:ea:90:af:51:c5:a9:1c:86:a2:e7:
46:9f:92:40:41:b5:40:38:b4:7c:44:7a:7d:3e:cb:
53:7c:c7:a4:73:77:36:28:43:22:4c:41:aa:8a:8d:
c2:26:41:b5:c3:bc:08:fa:89:43:03:5c:a9:b8:18:
3e:ec:a3:f5:9f:2c:63:f5:79:78:4e:c7:61:e0:b6:
a0:0e:e4:2b:55:40:89:73:05:12:f7:8c:87:99:8b:
8f:02:bc:39:4a:ca:1c:ea:ae:2d:dc:3e:ee:16:81:
52:db:fc:5e:4a:93:b0:49:a0:91:50:70:99:67:b4:
59:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:78:16:B5:77:1C:7B:AF:0E:7D:AE:81:5E:AF:26:1D:EB:AA:DC:20
X509v3 Authority Key Identifier:
keyid:50:C4:C2:4B:E8:D5:EF:BF:06:42:FD:18:E3:B6:B7:C8:D2:2C:C6:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMTCS-jV778GQv0Y47a3yNIsxg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/oHgWtXcce68Ofa6BXq8mHeuq3CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/4d6ae6-5ff5-4ebc-a39c-d10d592279c4/1/UMTCS-jV778GQv0Y47a3yNIsxg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4d40::/29
Signature Algorithm: sha256WithRSAEncryption
52:75:0f:dc:d9:a4:70:25:fc:24:c5:42:96:9c:ef:a8:7f:15:
ed:76:c7:85:2f:a8:22:c7:ce:3e:38:48:52:45:9e:0c:62:19:
e6:b4:d9:49:f8:56:48:83:0a:21:33:02:cb:7f:c7:9a:bf:a6:
74:5b:b7:bb:e4:c2:67:08:22:eb:69:89:b0:40:82:d0:4b:1a:
51:50:5b:58:d1:0a:ea:f6:3a:2d:b0:33:ca:57:86:30:83:ca:
c1:b2:61:d0:9b:3a:20:fd:f9:74:72:17:e6:da:8b:60:91:4e:
89:d0:97:6c:76:d7:1b:4b:19:5f:0c:52:8d:0b:9e:15:ee:56:
bc:1e:9b:d8:2a:ea:db:c0:88:ed:ca:61:a3:61:b5:b8:11:fd:
a7:55:0b:5b:91:c6:0c:d2:15:b2:ba:3c:3b:82:ea:cb:b2:24:
ab:29:6e:74:d1:56:31:5f:19:92:f6:0e:46:37:0d:e5:38:ee:
6f:98:79:b0:ca:1a:26:0e:d5:54:1b:96:cd:93:eb:39:c5:71:
10:1d:35:b7:e7:e5:1a:59:5e:2b:8a:47:b7:b2:a1:5e:e6:20:
41:25:ca:bd:f4:73:60:fe:87:ac:8d:f2:29:ac:a9:65:e4:0b:
bc:56:61:71:37:2f:2e:3f:2e:cc:23:46:45:ff:7c:4c:0e:8c:
43:60:e0:5d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY2YjtqQ4ecXmqn9LsiqGRd5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwYzRjMjRiZThkNWVmYmYwNjQyZmQxOGUzYjZiN2M4ZDIy
Y2M2MGYwHhcNMjQwMjExMTQyNTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDc4MTZiNTc3MWM3YmFmMGU3ZGFlODE1ZWFmMjYxZGViYWFkYzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkw1CrKnCSmVarpnOsMGIqGqB88Fd
2PfiVSc+MXgfx2XdR2TImIeNk/mTrywQdXXPzeKcupbfwFo888kziCHfDT+R1wKY
xeLWHN7aXlD0JHZ/zIHQKeEsQUikUB/ruwmwsMc2HVN2BStgBLk15vAIvsqqzNrB
F3OcIb7hR8E6UbSzY87cnGflzMGMk+qQr1HFqRyGoudGn5JAQbVAOLR8RHp9PstT
fMekc3c2KEMiTEGqio3CJkG1w7wI+olDA1ypuBg+7KP1nyxj9Xl4Tsdh4LagDuQr
VUCJcwUS94yHmYuPArw5Ssoc6q4t3D7uFoFS2/xeSpOwSaCRUHCZZ7RZOQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFKB4FrV3HHuvDn2ugV6vJh3rqtwgMB8GA1UdIwQY
MBaAFFDEwkvo1e+/BkL9GOO2t8jSLMYPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU1UQ1MtalY3NzhHUXYwWTQ3YTN5TklzeGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS80ZDZhZTYtNWZmNS00ZWJjLWEzOWMt
ZDEwZDU5MjI3OWM0LzEvb0hnV3RYY2NlNjhPZmE2QlhxOG1IZXVxM0NBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS80ZDZhZTYtNWZmNS00ZWJjLWEzOWMtZDEwZDU5MjI3OWM0
LzEvVU1UQ1MtalY3NzhHUXYwWTQ3YTN5TklzeGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg5NQDAN
BgkqhkiG9w0BAQsFAAOCAQEAUnUP3NmkcCX8JMVClpzvqH8V7XbHhS+oIsfOPjhI
UkWeDGIZ5rTZSfhWSIMKITMCy3/Hmr+mdFu3u+TCZwgi62mJsECC0EsaUVBbWNEK
6vY6LbAzyleGMIPKwbJh0Js6IP35dHIX5tqLYJFOidCXbHbXG0sZXwxSjQueFe5W
vB6b2Crq28CI7cpho2G1uBH9p1ULW5HGDNIVsro8O4Lqy7IkqyludNFWMV8ZkvYO
RjcN5Tjub5h5sMoaJg7VVBuWzZPrOcVxEB01t+flGlleK4pHt7KhXuYgQSXKvfRz
YP6HrI3yKaypZeQLvFZhcTcvLj8uzCNGRf98TA6MQ2DgXQ==
-----END CERTIFICATE-----
Generated at Sat Jun 8 03:29:00 2024 by rpki-client on console-ams.rpki-client.org