Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/GVgRCiEsTrJzhnBt2qp_4LpOlus.roa
File: GVgRCiEsTrJzhnBt2qp_4LpOlus.roa (raw, json)
Hash identifier: P6qfnCTePa1ASR8wbRf69RixpsshbnaldqDKKFk4n94=
Subject key identifier: 19:58:11:0A:21:2C:4E:B2:73:86:70:6D:DA:AA:7F:E0:BA:4E:96:EB
Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Certificate serial: 01930741F2C65AAE174FF78ED9AF8187918F
Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/GVgRCiEsTrJzhnBt2qp_4LpOlus.roa
Signing time: Thu 07 Nov 2024 15:33:02 +0000
ROA not before: Thu 07 Nov 2024 15:33:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210335
IP address blocks: 2a12:7a40:990b::/48 maxlen: 48
2a12:7a40:991b::/48 maxlen: 48
2a12:7a40:992b::/48 maxlen: 48
2a12:7a40:993b::/48 maxlen: 48
2a12:7a40:994b::/48 maxlen: 48
2a12:7a40:995b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:07:41:f2:c6:5a:ae:17:4f:f7:8e:d9:af:81:87:91:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Validity
Not Before: Nov 7 15:33:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1958110a212c4eb27386706ddaaa7fe0ba4e96eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8a:9c:c4:8c:b6:08:42:4e:5a:3c:f9:e2:b0:
f1:a2:f8:42:4b:ba:90:fa:e8:c9:01:66:60:54:f2:
86:ce:0f:1b:94:3f:d9:f1:16:3c:aa:e7:20:0f:00:
68:3f:2e:57:6a:13:12:36:4a:03:09:a8:41:71:cf:
12:78:c1:cd:e5:a6:3c:cf:02:05:7c:1e:da:0e:2c:
ef:53:34:96:7b:b9:9e:5a:c1:da:fd:95:07:86:51:
89:73:0d:01:d5:5c:24:a6:56:53:27:24:9d:99:27:
0c:8a:76:09:0f:34:01:dd:91:6f:e4:9d:1b:ff:27:
f4:b0:02:2d:79:20:cb:8f:67:fa:ff:9d:40:15:2e:
cf:32:a2:ab:bd:fa:c0:90:c0:60:6c:cd:06:42:30:
68:80:96:e4:98:eb:44:03:1c:52:35:27:e8:c8:93:
40:2c:b4:f3:3d:dc:5e:c5:07:77:53:10:50:29:27:
6c:1c:3d:2c:72:4a:ad:b2:a3:57:b3:09:24:ba:ee:
60:1f:c9:16:53:a1:27:8a:85:8d:2a:77:03:70:1d:
a1:3d:69:71:50:d4:73:64:62:f1:80:b6:ef:75:3b:
fa:89:0b:18:55:64:7d:6d:38:3e:c0:b2:ab:3c:f2:
a7:d2:9c:5f:30:7d:89:84:f3:0a:36:be:66:19:a2:
7e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:58:11:0A:21:2C:4E:B2:73:86:70:6D:DA:AA:7F:E0:BA:4E:96:EB
X509v3 Authority Key Identifier:
keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/GVgRCiEsTrJzhnBt2qp_4LpOlus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:7a40:990b::/48
2a12:7a40:991b::/48
2a12:7a40:992b::/48
2a12:7a40:993b::/48
2a12:7a40:994b::/48
2a12:7a40:995b::/48
Signature Algorithm: sha256WithRSAEncryption
17:24:74:75:49:a9:ac:d0:a9:3a:ac:e6:4a:4e:ee:e8:07:f3:
7a:7c:e6:73:82:60:08:34:8f:3b:3a:bc:78:e1:ab:82:3e:d0:
6e:62:03:4d:d1:1a:62:4f:06:0c:d8:ea:69:f7:5e:ce:94:e8:
59:fd:fb:04:e8:19:03:03:32:2a:4b:41:7a:fd:a1:e7:0f:73:
ca:07:7c:ba:c3:ce:4e:72:d9:7c:04:b2:f1:74:7b:20:a3:5c:
a6:c3:34:06:82:5b:04:34:c3:3b:19:96:49:45:ac:8b:1e:04:
af:53:2e:db:31:b6:8d:c1:0f:60:8a:f6:be:42:8f:4a:99:67:
70:bd:62:c6:7d:9b:29:24:ca:ca:92:b1:7e:ae:49:6f:23:07:
21:58:74:b1:e6:77:10:33:c0:84:92:75:d6:db:cc:66:7f:d1:
91:d2:3d:b5:17:6b:ec:48:b4:41:41:7d:a6:45:fb:ba:84:6e:
5c:50:78:75:d2:b3:e9:f9:a8:fa:2e:a4:8d:b1:8b:7f:8a:bb:
40:50:89:0c:62:2a:b2:c7:4c:90:31:ac:96:28:c8:b4:d2:6c:
38:0f:3b:10:42:0f:77:33:f7:34:23:7c:55:f5:01:bd:76:b0:
73:e1:79:c9:a0:c9:1a:70:4b:47:2c:5f:02:a7:85:bb:f4:7c:
1b:d3:91:09
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZMHQfLGWq4XT/eO2a+Bh5GPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNTRhNDE5MjI1ZDVkNzlmNGExYWUxNTIwYTNiMWE1NmQ0
NTI2OGMwHhcNMjQxMTA3MTUzMzAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTU4MTEwYTIxMmM0ZWIyNzM4NjcwNmRkYWFhN2ZlMGJhNGU5NmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4qcxIy2CEJOWjz54rDxovhCS7qQ
+ujJAWZgVPKGzg8blD/Z8RY8qucgDwBoPy5XahMSNkoDCahBcc8SeMHN5aY8zwIF
fB7aDizvUzSWe7meWsHa/ZUHhlGJcw0B1VwkplZTJySdmScMinYJDzQB3ZFv5J0b
/yf0sAIteSDLj2f6/51AFS7PMqKrvfrAkMBgbM0GQjBogJbkmOtEAxxSNSfoyJNA
LLTzPdxexQd3UxBQKSdsHD0sckqtsqNXswkkuu5gH8kWU6EnioWNKncDcB2hPWlx
UNRzZGLxgLbvdTv6iQsYVWR9bTg+wLKrPPKn0pxfMH2JhPMKNr5mGaJ+lwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFBlYEQohLE6yc4Zwbdqqf+C6TpbrMB8GA1UdIwQY
MBaAFENUpBkiXV159KGuFSCjsaVtRSaMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEt
Njg4ZDUxYTQ0NDQ4LzEvR1ZnUkNpRXNUckp6aG5CdDJxcF80THBPbHVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEtNjg4ZDUxYTQ0NDQ4
LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAAjA2AwcAKhJ6QJkL
AwcAKhJ6QJkbAwcAKhJ6QJkrAwcAKhJ6QJk7AwcAKhJ6QJlLAwcAKhJ6QJlbMA0G
CSqGSIb3DQEBCwUAA4IBAQAXJHR1Sams0Kk6rOZKTu7oB/N6fOZzgmAINI87Orx4
4auCPtBuYgNN0RpiTwYM2Opp917OlOhZ/fsE6BkDAzIqS0F6/aHnD3PKB3y6w85O
ctl8BLLxdHsgo1ymwzQGglsENMM7GZZJRayLHgSvUy7bMbaNwQ9giva+Qo9KmWdw
vWLGfZspJMrKkrF+rklvIwchWHSx5ncQM8CEknXW28xmf9GR0j21F2vsSLRBQX2m
Rfu6hG5cUHh10rPp+aj6LqSNsYt/irtAUIkMYiqyx0yQMayWKMi00mw4DzsQQg93
M/c0I3xV9QG9drBz4XnJoMkacEtHLF8Cp4W79Hwb05EJ
-----END CERTIFICATE-----
Generated at Fri Nov 22 17:51:07 2024 by rpki-client on console-ams.rpki-client.org