Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/s0WeEK92ORkCET-AXMoI9oQXhC8.roa
File: s0WeEK92ORkCET-AXMoI9oQXhC8.roa (raw, json)
Hash identifier: snsFy2OmyIKexv+rU4aafii3fo+IzsViX1NbHPXbZmc=
Subject key identifier: B3:45:9E:10:AF:76:39:19:02:11:3F:80:5C:CA:08:F6:84:17:84:2F
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018CC26D3DB39A5BA8DDD465668A856F6D26
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/s0WeEK92ORkCET-AXMoI9oQXhC8.roa
Signing time: Mon 01 Jan 2024 00:29:48 +0000
ROA not before: Mon 01 Jan 2024 00:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210384
IP address blocks: 2a0e:aa07:e02b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 18:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:3d:b3:9a:5b:a8:dd:d4:65:66:8a:85:6f:6d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 00:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3459e10af76391902113f805cca08f68417842f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:40:e9:95:10:9c:72:9a:38:6b:80:55:1e:00:
09:fb:b5:d0:aa:f9:3f:8a:d9:fc:42:5a:9c:ce:66:
b0:cb:9a:8f:59:9a:dd:b1:39:67:9e:11:ab:fb:18:
e2:2e:bb:b5:d8:3c:64:ef:2a:6b:97:37:84:8b:56:
5b:6d:88:03:78:6f:29:8c:a1:9b:9b:9b:e4:54:84:
07:31:cc:5c:9a:03:4c:13:21:cb:f0:c5:fd:c0:96:
47:f3:de:c1:6b:fb:bb:53:5d:9a:04:ca:90:d2:50:
96:40:0c:06:fc:ed:ea:73:ae:03:da:55:cd:77:0c:
80:a4:83:e7:1b:ba:73:04:f9:d5:e0:c9:f2:f9:31:
eb:a7:47:f0:2a:97:ff:67:5c:d6:46:c7:dd:b5:87:
ea:e3:8c:d8:37:7c:f7:3a:72:ad:83:4b:f1:4a:c5:
56:2e:e6:8d:11:09:d8:5c:b8:4d:23:ef:f9:82:93:
47:81:4e:7c:34:1b:cb:58:f2:04:6c:12:fc:25:b1:
df:c7:9d:05:80:ca:82:eb:80:59:fe:fb:9f:26:e6:
be:78:40:d5:9d:fc:88:a8:3a:20:20:d6:db:70:b1:
5c:92:81:46:88:ef:ef:40:24:60:1d:b8:bf:12:82:
23:6f:8e:62:28:c6:bf:d3:f2:01:5b:c7:8c:28:3a:
09:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:45:9E:10:AF:76:39:19:02:11:3F:80:5C:CA:08:F6:84:17:84:2F
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/s0WeEK92ORkCET-AXMoI9oQXhC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e02b::/48
Signature Algorithm: sha256WithRSAEncryption
3f:5c:a3:2b:4d:e7:38:68:09:9d:e5:fc:d5:38:5e:50:71:99:
30:b3:de:3e:5c:d0:3d:b8:94:ef:07:2f:88:4b:d6:5e:89:3c:
7e:95:5d:76:ec:6a:f2:81:9b:2c:b6:04:43:02:01:4a:8c:6f:
11:4d:b2:2e:b7:a6:69:4d:d7:d6:13:86:28:18:8f:63:73:2d:
4d:f4:a5:d5:0d:cc:13:3c:fa:3f:e8:f2:34:5e:d0:77:c4:93:
3b:49:f8:71:3c:15:94:0a:60:85:5f:14:0a:23:70:32:bb:5b:
97:a9:93:cc:66:36:9b:a8:79:2f:3e:53:ac:41:5b:eb:dc:61:
87:78:bc:08:52:ef:e3:d9:70:6d:ab:07:8c:68:20:2d:a9:fc:
23:04:7b:31:4d:4a:8b:c8:df:c6:cc:97:23:e0:7d:3f:2d:38:
c4:ac:2c:89:15:00:16:59:a4:e9:59:24:86:74:5d:e0:08:9f:
61:69:c2:14:24:77:86:c9:ba:cb:1a:fe:ea:b1:c3:04:f8:a9:
87:55:67:b7:20:3c:94:9a:c1:d7:0c:64:91:85:10:57:21:aa:
93:09:16:45:c7:5b:fb:c5:4b:df:dc:81:64:e7:7c:d4:34:08:
17:bd:7b:46:cd:4d:5e:c5:21:b2:8c:84:da:08:5a:24:ae:72:
4d:c8:70:61
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzCbT2zmluo3dRlZoqFb20mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjQwMTAxMDAyOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzQ1OWUxMGFmNzYzOTE5MDIxMTNmODA1Y2NhMDhmNjg0MTc4NDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUDplRCccpo4a4BVHgAJ+7XQqvk/
itn8Qlqczmawy5qPWZrdsTlnnhGr+xjiLru12Dxk7yprlzeEi1ZbbYgDeG8pjKGb
m5vkVIQHMcxcmgNMEyHL8MX9wJZH897Ba/u7U12aBMqQ0lCWQAwG/O3qc64D2lXN
dwyApIPnG7pzBPnV4Mny+THrp0fwKpf/Z1zWRsfdtYfq44zYN3z3OnKtg0vxSsVW
LuaNEQnYXLhNI+/5gpNHgU58NBvLWPIEbBL8JbHfx50FgMqC64BZ/vufJua+eEDV
nfyIqDogINbbcLFckoFGiO/vQCRgHbi/EoIjb45iKMa/0/IBW8eMKDoJjwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLNFnhCvdjkZAhE/gFzKCPaEF4QvMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvczBXZUVLOTJPUmtDRVQtQVhNb0k5b1FYaEM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6qB+Ar
MA0GCSqGSIb3DQEBCwUAA4IBAQA/XKMrTec4aAmd5fzVOF5QcZkws94+XNA9uJTv
By+IS9ZeiTx+lV127GrygZsstgRDAgFKjG8RTbIut6ZpTdfWE4YoGI9jcy1N9KXV
DcwTPPo/6PI0XtB3xJM7SfhxPBWUCmCFXxQKI3Ayu1uXqZPMZjabqHkvPlOsQVvr
3GGHeLwIUu/j2XBtqweMaCAtqfwjBHsxTUqLyN/GzJcj4H0/LTjErCyJFQAWWaTp
WSSGdF3gCJ9hacIUJHeGybrLGv7qscME+KmHVWe3IDyUmsHXDGSRhRBXIaqTCRZF
x1v7xUvf3IFk53zUNAgXvXtGzU1exSGyjITaCFokrnJNyHBh
-----END CERTIFICATE-----
Generated at Sat May 4 00:34:50 2024 by rpki-client on console-fra.rpki-client.org