Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d07c07-b962-4f4b-a3a0-b51b35def6de/1/06ZTRcUUos6xWKJidzAN4oy0nkE.roa
File: 06ZTRcUUos6xWKJidzAN4oy0nkE.roa (raw, json)
Hash identifier: DUNawh6fZ9X1j86oHmC7DcXNiuw7SeuNE51iJg9dWUk=
Subject key identifier: D3:A6:53:45:C5:14:A2:CE:B1:58:A2:62:77:30:0D:E2:8C:B4:9E:41
Certificate issuer: /CN=fbed9439a4e4b2d32e4bee647f3b61055b169e3d
Certificate serial: 018CC4937AF953EEFAFE9FA437034CE3831A
Authority key identifier: FB:ED:94:39:A4:E4:B2:D3:2E:4B:EE:64:7F:3B:61:05:5B:16:9E:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1--2UOaTkstMuS-5kfzthBVsWnj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d07c07-b962-4f4b-a3a0-b51b35def6de/1/06ZTRcUUos6xWKJidzAN4oy0nkE.roa
Signing time: Mon 01 Jan 2024 10:30:48 +0000
ROA not before: Mon 01 Jan 2024 10:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205016
IP address blocks: 77.111.244.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/d07c07-b962-4f4b-a3a0-b51b35def6de/1/1--2UOaTkstMuS-5kfzthBVsWnj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/d07c07-b962-4f4b-a3a0-b51b35def6de/1/1--2UOaTkstMuS-5kfzthBVsWnj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1--2UOaTkstMuS-5kfzthBVsWnj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:7a:f9:53:ee:fa:fe:9f:a4:37:03:4c:e3:83:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbed9439a4e4b2d32e4bee647f3b61055b169e3d
Validity
Not Before: Jan 1 10:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3a65345c514a2ceb158a26277300de28cb49e41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ad:80:93:e4:c7:46:bc:08:56:d9:0a:79:11:
8d:de:e4:75:af:18:6a:7d:4d:dd:f6:b2:59:91:b5:
1f:20:48:fe:86:a4:97:03:03:98:e0:34:37:b8:8f:
a0:57:c0:3d:f8:5c:5a:c5:fc:bd:71:11:08:b3:d4:
ca:3e:23:d3:ce:0a:d5:90:6e:67:fa:90:43:d0:a3:
fc:eb:9d:93:bc:68:22:12:e5:55:8c:2a:9c:57:14:
83:1f:cd:e5:c0:d4:e7:53:87:76:8a:73:8a:c8:9d:
88:ec:81:f1:c5:e3:4f:2a:7a:80:f2:df:28:8d:95:
45:64:96:d9:ea:5b:b0:e2:a1:9c:0f:54:f8:b6:bf:
0a:96:a9:da:b7:10:18:3c:47:01:cc:b6:40:e8:e2:
fe:79:8a:5c:f6:08:69:0b:f0:2d:63:3b:e7:16:55:
19:bf:ca:42:5d:d2:9c:22:b5:21:af:f3:95:af:5b:
8e:55:c5:e1:0a:68:7e:d8:e5:27:d1:87:b0:59:3e:
41:f1:c1:a8:bf:95:f5:25:0e:3c:94:d5:ae:8c:3e:
27:43:80:d8:27:e1:68:4e:ad:f0:97:84:c7:17:f4:
6b:5b:58:6a:ac:5e:3f:52:04:c9:76:6e:c3:5e:0c:
e0:0a:96:36:7f:ff:fb:7c:f9:41:79:ec:54:cc:a3:
15:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A6:53:45:C5:14:A2:CE:B1:58:A2:62:77:30:0D:E2:8C:B4:9E:41
X509v3 Authority Key Identifier:
keyid:FB:ED:94:39:A4:E4:B2:D3:2E:4B:EE:64:7F:3B:61:05:5B:16:9E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1--2UOaTkstMuS-5kfzthBVsWnj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d07c07-b962-4f4b-a3a0-b51b35def6de/1/06ZTRcUUos6xWKJidzAN4oy0nkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d07c07-b962-4f4b-a3a0-b51b35def6de/1/1--2UOaTkstMuS-5kfzthBVsWnj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.244.0/22
Signature Algorithm: sha256WithRSAEncryption
46:9c:4f:df:61:2a:71:e2:6c:34:bc:48:2f:60:fd:55:e7:f3:
6c:39:49:6c:84:c0:14:af:c7:13:a1:24:f5:be:5f:7b:22:40:
89:86:55:60:45:fe:f1:73:d6:78:70:0d:be:9b:0c:af:3b:0f:
a7:93:35:6c:5a:37:5c:3f:22:f0:35:10:e0:3a:7e:86:e1:66:
66:d7:c7:5e:e0:39:5f:e6:ef:1c:fa:6d:c4:76:5a:56:5d:76:
52:45:b4:47:ae:7d:e9:0b:16:71:f5:fa:32:bd:e8:e1:71:3f:
bd:f9:d1:5c:9c:8f:a4:6b:42:e5:7e:ee:3c:63:80:8f:87:70:
9f:e3:db:7f:db:d9:3b:0a:10:36:06:e5:9c:0d:77:4d:20:3d:
96:e8:5c:02:3d:7a:b0:af:c4:b7:52:64:6c:f2:be:64:11:25:
28:fe:03:ab:5b:23:18:79:b2:09:2a:61:c0:e7:a0:10:51:0b:
ee:a5:ae:6a:8f:36:2f:bf:bd:ad:cd:07:da:b7:d4:ec:f7:d4:
5d:ae:3f:aa:73:3d:be:2f:55:e7:c0:ac:1c:10:ee:09:e0:14:
df:0f:bb:00:11:c6:32:ad:7b:3d:2d:c6:9c:1d:7a:44:ed:82:
10:9d:e9:a3:7c:07:c4:5a:a9:08:9e:1a:54:75:72:01:c7:3f:
a5:2e:82:2e
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzEk3r5U+76/p+kNwNM44MaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiZWQ5NDM5YTRlNGIyZDMyZTRiZWU2NDdmM2I2MTA1NWIx
NjllM2QwHhcNMjQwMTAxMTAzMDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkM2E2NTM0NWM1MTRhMmNlYjE1OGEyNjI3NzMwMGRlMjhjYjQ5ZTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgq2Ak+THRrwIVtkKeRGN3uR1rxhq
fU3d9rJZkbUfIEj+hqSXAwOY4DQ3uI+gV8A9+Fxaxfy9cREIs9TKPiPTzgrVkG5n
+pBD0KP8652TvGgiEuVVjCqcVxSDH83lwNTnU4d2inOKyJ2I7IHxxeNPKnqA8t8o
jZVFZJbZ6luw4qGcD1T4tr8KlqnatxAYPEcBzLZA6OL+eYpc9ghpC/AtYzvnFlUZ
v8pCXdKcIrUhr/OVr1uOVcXhCmh+2OUn0YewWT5B8cGov5X1JQ48lNWujD4nQ4DY
J+FoTq3wl4THF/RrW1hqrF4/UgTJdm7DXgzgCpY2f//7fPlBeexUzKMVdQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFNOmU0XFFKLOsViiYncwDeKMtJ5BMB8GA1UdIwQY
MBaAFPvtlDmk5LLTLkvuZH87YQVbFp49MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS0tMlVPYVRrc3RNdVMtNWtmenRoQlZzV25qMC5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAvZDA3YzA3LWI5NjItNGY0Yi1hM2Ew
LWI1MWIzNWRlZjZkZS8xLzA2WlRSY1VVb3M2eFdLSmlkekFONG95MG5rRS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOTAvZDA3YzA3LWI5NjItNGY0Yi1hM2EwLWI1MWIzNWRlZjZk
ZS8xLzEtLTJVT2FUa3N0TXVTLTVrZnp0aEJWc1duajAuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJNb/Qw
DQYJKoZIhvcNAQELBQADggEBAEacT99hKnHibDS8SC9g/VXn82w5SWyEwBSvxxOh
JPW+X3siQImGVWBF/vFz1nhwDb6bDK87D6eTNWxaN1w/IvA1EOA6fobhZmbXx17g
OV/m7xz6bcR2WlZddlJFtEeufekLFnH1+jK96OFxP7350Vycj6RrQuV+7jxjgI+H
cJ/j23/b2TsKEDYG5ZwNd00gPZboXAI9erCvxLdSZGzyvmQRJSj+A6tbIxh5sgkq
YcDnoBBRC+6lrmqPNi+/va3NB9q31Oz31F2uP6pzPb4vVefArBwQ7gngFN8PuwAR
xjKtez0txpwdekTtghCd6aN8B8RaqQieGlR1cgHHP6Uugi4=
-----END CERTIFICATE-----
Generated at Sat Nov 23 13:11:13 2024 by rpki-client on console-ams.rpki-client.org