Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/6ArSrzmkWIZDmYIRBoxk-EjJq_k.roa
File: 6ArSrzmkWIZDmYIRBoxk-EjJq_k.roa (raw, json)
Hash identifier: S1AZ4YBXbed4CMbdXMK5lgtU/yrbUTPwd2+O2M1CSZk=
Subject key identifier: E8:0A:D2:AF:39:A4:58:86:43:99:82:11:06:8C:64:F8:48:C9:AB:F9
Certificate issuer: /CN=6b6e969fe8fb7b2a6b6e464426a4a703d37eb554
Certificate serial: 0194221F5E51DC5482EEAB05C2BAD1A09254
Authority key identifier: 6B:6E:96:9F:E8:FB:7B:2A:6B:6E:46:44:26:A4:A7:03:D3:7E:B5:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/6ArSrzmkWIZDmYIRBoxk-EjJq_k.roa
Signing time: Wed 01 Jan 2025 13:47:48 +0000
ROA not before: Wed 01 Jan 2025 13:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61978
IP address blocks: 193.203.116.0/23 maxlen: 23
2001:67c:a08::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/a26Wn-j7eyprbkZEJqSnA9N-tVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/a26Wn-j7eyprbkZEJqSnA9N-tVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:5e:51:dc:54:82:ee:ab:05:c2:ba:d1:a0:92:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b6e969fe8fb7b2a6b6e464426a4a703d37eb554
Validity
Not Before: Jan 1 13:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e80ad2af39a4588643998211068c64f848c9abf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:c7:2c:33:ee:89:bf:96:ad:42:99:40:d6:
30:4d:b2:b4:c7:5d:d9:05:1c:d9:c2:a1:d4:6e:40:
1c:4d:04:ad:6b:2d:b0:e6:65:1d:bb:0e:c3:76:27:
ca:8f:f0:59:e5:9e:3d:a3:af:fc:73:a3:67:ff:4a:
e4:bc:5a:f6:55:03:d2:33:12:ab:03:fb:a3:3d:78:
66:39:24:01:3d:48:c2:b5:db:11:09:d7:ad:b7:dd:
23:a5:8a:6e:67:42:e6:52:6a:7c:59:ab:ac:fd:70:
23:0c:77:67:87:57:04:10:10:03:a9:88:24:1e:cc:
e3:85:41:94:6d:e7:0b:06:e1:de:e5:e3:e4:69:ff:
1d:5a:a4:bb:88:1f:bf:64:e9:e7:1b:f4:59:87:a7:
f7:9c:bf:6b:5e:e2:e2:d0:ae:80:f9:a5:a4:57:45:
ae:37:be:89:89:26:40:36:bd:f4:8f:0b:7f:fc:07:
cc:11:79:cc:f0:59:2a:0d:e4:e1:89:70:b5:6c:79:
20:12:62:a2:9d:ea:f3:ba:2c:89:13:a4:e6:0c:7a:
e0:5b:93:cb:dd:97:53:44:d6:76:2b:8e:f3:8c:42:
85:61:10:17:91:4b:cd:ec:eb:b3:02:1a:e0:20:6b:
25:44:ef:64:62:9e:54:60:59:c6:0e:2c:2e:ae:1f:
5f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:0A:D2:AF:39:A4:58:86:43:99:82:11:06:8C:64:F8:48:C9:AB:F9
X509v3 Authority Key Identifier:
keyid:6B:6E:96:9F:E8:FB:7B:2A:6B:6E:46:44:26:A4:A7:03:D3:7E:B5:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/6ArSrzmkWIZDmYIRBoxk-EjJq_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/a26Wn-j7eyprbkZEJqSnA9N-tVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.116.0/23
IPv6:
2001:67c:a08::/48
Signature Algorithm: sha256WithRSAEncryption
87:fc:b7:8d:35:5a:a1:66:13:dc:fc:67:72:3e:02:63:9f:2c:
60:73:e1:d6:d3:79:53:99:61:94:f0:11:b9:56:d4:89:24:25:
1e:43:1e:98:9e:35:64:dd:a2:21:61:bf:dd:7c:24:50:c1:ee:
e0:4e:4c:e8:39:8d:51:42:8a:a6:57:6b:89:ca:22:8f:a4:54:
6c:e7:aa:40:45:0c:19:e7:f3:db:32:27:e0:52:eb:4f:36:90:
d8:90:90:df:b5:43:bb:84:81:b9:01:bf:e1:83:64:0a:4f:2f:
a8:c6:ff:b3:91:1c:41:fe:fa:ab:fc:97:35:a8:a2:4c:4f:18:
ce:9d:39:b6:77:4c:4b:e6:0a:76:c2:71:8f:63:50:de:94:81:
89:70:3d:94:74:36:35:b8:86:a2:25:67:73:b3:8f:c8:80:74:
9f:d0:47:fe:4b:88:e7:13:5c:4f:df:83:e7:46:22:9e:43:24:
44:fd:cf:e4:fe:86:60:cf:8c:a8:36:be:42:72:6b:40:79:89:
80:85:77:b7:e2:40:09:e7:36:f8:53:ae:c4:42:d8:35:3d:ae:
0e:8e:a0:40:8a:01:85:12:87:15:65:b7:ca:41:b7:55:c9:7a:
e1:42:cf:7a:42:d6:97:93:81:89:d9:aa:d5:ea:e3:d0:e4:89:
3a:92:98:c4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQiH15R3FSC7qsFwrrRoJJUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNmU5NjlmZThmYjdiMmE2YjZlNDY0NDI2YTRhNzAzZDM3
ZWI1NTQwHhcNMjUwMTAxMTM0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlODBhZDJhZjM5YTQ1ODg2NDM5OTgyMTEwNjhjNjRmODQ4YzlhYmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCPHLDPuib+WrUKZQNYwTbK0x13Z
BRzZwqHUbkAcTQStay2w5mUduw7DdifKj/BZ5Z49o6/8c6Nn/0rkvFr2VQPSMxKr
A/ujPXhmOSQBPUjCtdsRCdett90jpYpuZ0LmUmp8Waus/XAjDHdnh1cEEBADqYgk
HszjhUGUbecLBuHe5ePkaf8dWqS7iB+/ZOnnG/RZh6f3nL9rXuLi0K6A+aWkV0Wu
N76JiSZANr30jwt//AfMEXnM8FkqDeThiXC1bHkgEmKinerzuiyJE6TmDHrgW5PL
3ZdTRNZ2K47zjEKFYRAXkUvN7OuzAhrgIGslRO9kYp5UYFnGDiwurh9fhwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOgK0q85pFiGQ5mCEQaMZPhIyav5MB8GA1UdIwQY
MBaAFGtulp/o+3sqa25GRCakpwPTfrVUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTI2V24tajdleXByYmtaRUpxU25BOU4tdFZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9hOTc5MjYtNDEwYy00NjZiLThiZjQt
YWIxNmI2OWU2YWQ1LzEvNkFyU3J6bWtXSVpEbVlJUkJveGstRWpKcV9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9hOTc5MjYtNDEwYy00NjZiLThiZjQtYWIxNmI2OWU2YWQ1
LzEvYTI2V24tajdleXByYmtaRUpxU25BOU4tdFZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBwct0MA8E
AgACMAkDBwAgAQZ8CggwDQYJKoZIhvcNAQELBQADggEBAIf8t401WqFmE9z8Z3I+
AmOfLGBz4dbTeVOZYZTwEblW1IkkJR5DHpieNWTdoiFhv918JFDB7uBOTOg5jVFC
iqZXa4nKIo+kVGznqkBFDBnn89syJ+BS6082kNiQkN+1Q7uEgbkBv+GDZApPL6jG
/7ORHEH++qv8lzWookxPGM6dObZ3TEvmCnbCcY9jUN6UgYlwPZR0NjW4hqIlZ3Oz
j8iAdJ/QR/5LiOcTXE/fg+dGIp5DJET9z+T+hmDPjKg2vkJya0B5iYCFd7fiQAnn
NvhTrsRC2DU9rg6OoECKAYUShxVlt8pBt1XJeuFCz3pC1peTgYnZqtXq49DkiTqS
mMQ=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:38 2025 by rpki-client