Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/1-r0knuDj6p-n_dndpf8KWgRchMs.roa
File: 1-r0knuDj6p-n_dndpf8KWgRchMs.roa (raw, json)
Hash identifier: 9c1p/9uFVGi+eHJIPhv0+gkDnDUFVT/Tklf/k5OHPA4=
Subject key identifier: FA:BD:24:9E:E0:E3:EA:9F:A7:FD:D9:DD:A5:FF:0A:5A:04:5C:84:CB
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 01930C6849DBC62B5DB31E6831D389F998F2
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/1-r0knuDj6p-n_dndpf8KWgRchMs.roa
Signing time: Fri 08 Nov 2024 15:33:01 +0000
ROA not before: Fri 08 Nov 2024 15:33:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213893
IP address blocks: 194.59.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:68:49:db:c6:2b:5d:b3:1e:68:31:d3:89:f9:98:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Nov 8 15:33:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fabd249ee0e3ea9fa7fdd9dda5ff0a5a045c84cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8c:bc:d5:7a:a7:6c:1d:08:e3:ce:5f:b1:a6:
28:4a:1b:7c:35:44:cc:c1:66:ee:87:62:26:ef:3f:
94:2a:8c:b9:d8:a1:9c:14:aa:a8:e5:b4:7d:8b:87:
52:04:6e:35:24:6e:4a:1f:08:60:ac:78:1b:e4:1f:
29:4c:31:70:cc:be:40:05:93:e3:cd:7e:aa:38:1c:
be:e2:79:5a:fd:38:0f:63:6e:f7:52:13:f0:35:c0:
d3:3e:cd:22:ca:16:7d:d0:64:c7:21:dd:4e:e2:f9:
79:06:3f:c5:37:48:00:dc:21:61:68:19:76:d7:11:
d8:01:12:d8:a3:4b:5a:9c:7c:31:70:d9:3b:3e:6f:
31:ed:14:4d:81:07:40:44:8f:0f:c2:61:63:62:7c:
a5:39:df:03:1f:29:37:26:2e:39:ba:cf:a1:11:c9:
fe:b1:46:c1:60:bd:33:37:a0:e7:5f:6c:0c:fd:0f:
78:ce:b4:d2:f2:52:f8:24:ff:9c:07:d8:cf:ad:e5:
e8:aa:a8:47:c8:5e:33:3a:6c:8f:2d:66:4c:a7:83:
5c:05:4d:9b:61:89:f0:5f:2a:ac:b0:b0:5f:81:78:
bd:b8:4d:99:c1:dc:61:48:1d:74:f9:d2:15:2c:73:
56:04:a3:b8:66:20:f3:65:8c:1f:13:5e:14:b9:7b:
7e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BD:24:9E:E0:E3:EA:9F:A7:FD:D9:DD:A5:FF:0A:5A:04:5C:84:CB
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/1-r0knuDj6p-n_dndpf8KWgRchMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.186.0/24
Signature Algorithm: sha256WithRSAEncryption
18:bc:c4:0d:8d:9c:7b:8e:59:ca:1b:da:d4:3f:92:22:1e:80:
38:7a:43:b4:5f:74:b6:18:32:74:cf:4a:44:6e:ea:66:4a:76:
8d:b9:2b:af:c4:b3:4c:0f:35:bd:f9:c6:0b:0a:d3:88:7b:ef:
f6:38:b1:a5:12:4f:52:14:59:db:56:19:3e:9e:e8:b9:38:83:
5b:cb:5a:d0:26:a6:21:df:36:5c:6c:38:1c:69:39:4c:24:8c:
2f:80:23:24:a4:70:79:d9:66:6c:56:75:8b:15:4b:34:82:a5:
82:28:6c:f2:94:6f:5c:da:51:d0:1b:a0:48:99:a5:fe:f2:9e:
fd:27:5d:68:ec:ce:c8:dc:72:68:c0:1c:e5:1b:7c:1a:24:54:
69:a5:d6:39:76:83:c6:ab:ab:11:de:1f:4d:ec:c2:95:02:c6:
d5:18:ab:1e:53:b1:d1:2e:06:30:77:df:34:0c:99:c4:45:8d:
2f:90:1f:1f:da:b8:02:1f:f1:ba:b8:36:51:bc:79:9f:13:2f:
98:c6:25:2b:d0:ba:52:b9:8c:f8:c3:45:4a:19:5a:86:54:7e:
17:80:6d:63:ac:64:f5:8f:ab:92:3c:8f:85:ea:f2:3f:c8:73:
a2:5e:44:11:5d:63:1a:2a:e9:f6:bc:65:79:ce:05:ad:eb:99:
58:7e:0c:cd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZMMaEnbxitdsx5oMdOJ+ZjyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExN2Y5ZDU1ODI2YjQyNDg2ZGZjODRkMzVjMWE2M2E1Y2U4
NzUwN2MwHhcNMjQxMTA4MTUzMzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWJkMjQ5ZWUwZTNlYTlmYTdmZGQ5ZGRhNWZmMGE1YTA0NWM4NGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYy81XqnbB0I485fsaYoSht8NUTM
wWbuh2Im7z+UKoy52KGcFKqo5bR9i4dSBG41JG5KHwhgrHgb5B8pTDFwzL5ABZPj
zX6qOBy+4nla/TgPY273UhPwNcDTPs0iyhZ90GTHId1O4vl5Bj/FN0gA3CFhaBl2
1xHYARLYo0tanHwxcNk7Pm8x7RRNgQdARI8PwmFjYnylOd8DHyk3Ji45us+hEcn+
sUbBYL0zN6DnX2wM/Q94zrTS8lL4JP+cB9jPreXoqqhHyF4zOmyPLWZMp4NcBU2b
YYnwXyqssLBfgXi9uE2ZwdxhSB10+dIVLHNWBKO4ZiDzZYwfE14UuXt+gQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPq9JJ7g4+qfp/3Z3aX/CloEXITLMB8GA1UdIwQY
MBaAFBF/nVWCa0JIbfyE01waY6XOh1B8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVgtZFZZSnJRa2h0X0lUVFhCcGpwYzZIVUh3LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9lYWZjNDEtYzM1OC00YjUxLTliMWMt
M2ZiYmJhOTI0OWNkLzEvMS1yMGtudURqNnAtbl9kbmRwZjhLV2dSY2hNcy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvN2YvZWFmYzQxLWMzNTgtNGI1MS05YjFjLTNmYmJiYTkyNDlj
ZC8xL0VYLWRWWUpyUWtodF9JVFRYQnBqcGM2SFVIdy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMI7ujAN
BgkqhkiG9w0BAQsFAAOCAQEAGLzEDY2ce45Zyhva1D+SIh6AOHpDtF90thgydM9K
RG7qZkp2jbkrr8SzTA81vfnGCwrTiHvv9jixpRJPUhRZ21YZPp7ouTiDW8ta0Cam
Id82XGw4HGk5TCSML4AjJKRwedlmbFZ1ixVLNIKlgihs8pRvXNpR0BugSJml/vKe
/SddaOzOyNxyaMAc5Rt8GiRUaaXWOXaDxqurEd4fTezClQLG1RirHlOx0S4GMHff
NAyZxEWNL5AfH9q4Ah/xurg2Ubx5nxMvmMYlK9C6UrmM+MNFShlahlR+F4BtY6xk
9Y+rkjyPheryP8hzol5EEV1jGirp9rxlec4FreuZWH4MzQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:50:22 2024 by rpki-client on console-ams.rpki-client.org