Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9f108a-7785-4d3f-9f0c-2ad2bb532613/1/ZW2qMuaRu08qZ_meHAa28f7DCvY.roa
File: ZW2qMuaRu08qZ_meHAa28f7DCvY.roa (raw, json)
Hash identifier: 3QUj/BQRMd/7tI8Ijbkpm8l4OnNsIkmqrSIedOyQrmc=
Subject key identifier: 65:6D:AA:32:E6:91:BB:4F:2A:67:F9:9E:1C:06:B6:F1:FE:C3:0A:F6
Certificate issuer: /CN=17a10234cfb5522aa29b3260a75f8a9f79933e7b
Certificate serial: 018E3D947C37B9355F0AB30C799FFA12C26C
Authority key identifier: 17:A1:02:34:CF:B5:52:2A:A2:9B:32:60:A7:5F:8A:9F:79:93:3E:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F6ECNM-1UiqimzJgp1-Kn3mTPns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9f108a-7785-4d3f-9f0c-2ad2bb532613/1/ZW2qMuaRu08qZ_meHAa28f7DCvY.roa
Signing time: Thu 14 Mar 2024 15:28:45 +0000
ROA not before: Thu 14 Mar 2024 15:28:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 91.201.100.0/22 maxlen: 24
194.76.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9f108a-7785-4d3f-9f0c-2ad2bb532613/1/F6ECNM-1UiqimzJgp1-Kn3mTPns.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9f108a-7785-4d3f-9f0c-2ad2bb532613/1/F6ECNM-1UiqimzJgp1-Kn3mTPns.mft
rsync://rpki.ripe.net/repository/DEFAULT/F6ECNM-1UiqimzJgp1-Kn3mTPns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 May 2024 21:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:94:7c:37:b9:35:5f:0a:b3:0c:79:9f:fa:12:c2:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17a10234cfb5522aa29b3260a75f8a9f79933e7b
Validity
Not Before: Mar 14 15:28:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=656daa32e691bb4f2a67f99e1c06b6f1fec30af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:41:aa:08:63:99:62:5e:6d:e1:9d:ad:61:27:
7a:8b:a5:e7:48:fb:4e:8d:00:25:64:b0:4d:14:f9:
fb:22:f9:3f:3a:b0:a3:e6:bf:de:ec:fb:51:8a:97:
73:6f:d2:6d:a6:69:ba:38:15:3d:fb:1b:58:90:76:
2a:21:68:c4:67:75:96:a3:5c:9b:bd:fe:21:e6:af:
0c:cd:ab:fd:a3:30:80:66:97:fe:aa:d4:68:da:4b:
93:a7:22:ea:67:51:69:55:02:41:d5:1a:69:b7:7a:
f9:73:cc:15:c9:de:3a:67:43:fc:e5:c5:be:d7:62:
1d:4f:22:6b:a5:4d:43:85:1b:7c:3a:50:87:2a:28:
1a:2d:52:3a:e7:0e:d1:52:24:07:8f:0b:7f:c7:41:
32:82:05:52:5c:7a:27:fa:4a:7c:6d:4b:47:3f:d7:
e3:fe:65:44:fe:18:a2:8f:3c:31:90:a5:55:8b:52:
a2:e7:5b:50:7b:7e:08:fa:a8:54:29:0e:7a:bc:76:
d7:c1:8b:88:15:2f:57:90:4a:28:ea:7e:8e:4a:89:
65:21:20:80:6c:34:48:f6:3d:d4:a0:1d:71:da:26:
66:ce:f8:e5:e5:11:64:7d:b2:78:2f:ac:df:30:44:
96:0f:87:6e:49:6c:94:5f:32:2b:df:14:7d:4e:7b:
d5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:6D:AA:32:E6:91:BB:4F:2A:67:F9:9E:1C:06:B6:F1:FE:C3:0A:F6
X509v3 Authority Key Identifier:
keyid:17:A1:02:34:CF:B5:52:2A:A2:9B:32:60:A7:5F:8A:9F:79:93:3E:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F6ECNM-1UiqimzJgp1-Kn3mTPns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9f108a-7785-4d3f-9f0c-2ad2bb532613/1/ZW2qMuaRu08qZ_meHAa28f7DCvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9f108a-7785-4d3f-9f0c-2ad2bb532613/1/F6ECNM-1UiqimzJgp1-Kn3mTPns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.100.0/22
194.76.193.0/24
Signature Algorithm: sha256WithRSAEncryption
96:16:2f:1d:f8:e8:b3:19:b6:ca:5f:db:75:24:4b:5d:24:ef:
95:06:f9:e1:fb:de:65:f3:d5:50:ce:e4:1f:f6:42:e4:7f:53:
96:5d:ac:32:e0:d0:d9:4a:53:aa:28:60:bf:af:bb:9d:f6:8b:
22:38:0e:82:b1:49:a4:59:ae:09:1f:37:c7:41:a5:a4:f6:1d:
a9:db:82:e9:20:8b:cc:91:67:2e:6d:95:f8:05:13:9e:9b:c2:
81:74:a8:f5:6b:ed:e6:8e:a0:09:ea:de:8b:81:77:9b:81:7d:
fd:a5:16:44:e0:01:eb:e9:4c:64:ae:88:e2:54:60:ac:ed:78:
92:35:46:ea:59:68:24:2f:6a:53:e5:f2:1a:f8:88:9c:32:9d:
08:0d:68:68:18:86:0d:bd:dc:f6:c9:37:83:1a:b6:17:a7:81:
2b:5f:c3:3c:39:d9:f4:98:8a:2a:df:9a:57:3c:b5:47:26:8b:
d9:75:86:90:54:6a:1d:6c:85:f6:25:98:b6:76:2f:01:fe:77:
e2:80:49:9e:0f:d4:2a:ad:9b:71:f1:a6:40:ae:42:f4:05:33:
b2:24:56:69:8b:71:48:0f:9a:89:2d:d2:3f:12:a6:69:d1:dc:
ed:a1:8a:ae:ea:4f:3b:65:67:4e:59:b7:11:c2:c1:4d:0b:a2:
3a:93:6e:a9
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY49lHw3uTVfCrMMeZ/6EsJsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3YTEwMjM0Y2ZiNTUyMmFhMjliMzI2MGE3NWY4YTlmNzk5
MzNlN2IwHhcNMjQwMzE0MTUyODQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NTZkYWEzMmU2OTFiYjRmMmE2N2Y5OWUxYzA2YjZmMWZlYzMwYWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgUGqCGOZYl5t4Z2tYSd6i6XnSPtO
jQAlZLBNFPn7Ivk/OrCj5r/e7PtRipdzb9Jtpmm6OBU9+xtYkHYqIWjEZ3WWo1yb
vf4h5q8Mzav9ozCAZpf+qtRo2kuTpyLqZ1FpVQJB1Rppt3r5c8wVyd46Z0P85cW+
12IdTyJrpU1DhRt8OlCHKigaLVI65w7RUiQHjwt/x0EyggVSXHon+kp8bUtHP9fj
/mVE/hiijzwxkKVVi1Ki51tQe34I+qhUKQ56vHbXwYuIFS9XkEoo6n6OSollISCA
bDRI9j3UoB1x2iZmzvjl5RFkfbJ4L6zfMESWD4duSWyUXzIr3xR9TnvV3QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGVtqjLmkbtPKmf5nhwGtvH+wwr2MB8GA1UdIwQY
MBaAFBehAjTPtVIqopsyYKdfip95kz57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjZFQ05NLTFVaXFpbXpKZ3AxLUtuM21UUG5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi85ZjEwOGEtNzc4NS00ZDNmLTlmMGMt
MmFkMmJiNTMyNjEzLzEvWlcycU11YVJ1MDhxWl9tZUhBYTI4ZjdEQ3ZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi85ZjEwOGEtNzc4NS00ZDNmLTlmMGMtMmFkMmJiNTMyNjEz
LzEvRjZFQ05NLTFVaXFpbXpKZ3AxLUtuM21UUG5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW8lkAwQA
wkzBMA0GCSqGSIb3DQEBCwUAA4IBAQCWFi8d+OizGbbKX9t1JEtdJO+VBvnh+95l
89VQzuQf9kLkf1OWXawy4NDZSlOqKGC/r7ud9osiOA6CsUmkWa4JHzfHQaWk9h2p
24LpIIvMkWcubZX4BROem8KBdKj1a+3mjqAJ6t6LgXebgX39pRZE4AHr6Uxkroji
VGCs7XiSNUbqWWgkL2pT5fIa+IicMp0IDWhoGIYNvdz2yTeDGrYXp4ErX8M8Odn0
mIoq35pXPLVHJovZdYaQVGodbIX2JZi2di8B/nfigEmeD9QqrZtx8aZArkL0BTOy
JFZpi3FID5qJLdI/EqZp0dztoYqu6k87ZWdOWbcRwsFNC6I6k26p
-----END CERTIFICATE-----
Generated at Thu May 16 03:55:54 2024 by rpki-client on console-fra.rpki-client.org