Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/UIyCL4LahqGkeGobLCNvnB6ZnEE.roa
File: UIyCL4LahqGkeGobLCNvnB6ZnEE.roa (raw, json)
Hash identifier: OvcGsmsnISgooyzWCU129Bboqg6dtkrFRlMPZLn2WwU=
Subject key identifier: 50:8C:82:2F:82:DA:86:A1:A4:78:6A:1B:2C:23:6F:9C:1E:99:9C:41
Certificate issuer: /CN=f86fe427cff6d85a695ec86528a4830cb408a818
Certificate serial: 018CC26D3201A4F1389E08A1397D5793964C
Authority key identifier: F8:6F:E4:27:CF:F6:D8:5A:69:5E:C8:65:28:A4:83:0C:B4:08:A8:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-G_kJ8_22FppXshlKKSDDLQIqBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/UIyCL4LahqGkeGobLCNvnB6ZnEE.roa
Signing time: Mon 01 Jan 2024 00:29:45 +0000
ROA not before: Mon 01 Jan 2024 00:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25193
IP address blocks: 193.41.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/1-G_kJ8_22FppXshlKKSDDLQIqBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/1-G_kJ8_22FppXshlKKSDDLQIqBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-G_kJ8_22FppXshlKKSDDLQIqBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:32:01:a4:f1:38:9e:08:a1:39:7d:57:93:96:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f86fe427cff6d85a695ec86528a4830cb408a818
Validity
Not Before: Jan 1 00:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=508c822f82da86a1a4786a1b2c236f9c1e999c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a9:98:13:49:31:83:48:3f:8f:da:6a:47:2c:
d9:e0:06:3d:4f:69:ef:e5:a0:f4:7a:a5:56:7c:05:
e8:ed:1f:08:29:97:aa:a1:77:f6:03:5d:8e:d4:dd:
6e:c5:91:fb:88:5d:3b:a5:c8:ac:7d:1b:72:0e:c8:
00:93:aa:df:28:9f:e8:f7:59:55:e7:be:1c:33:e5:
0d:18:1e:d7:7f:4b:59:e8:1c:e5:3a:6b:83:71:58:
e9:34:29:5b:e2:20:3e:42:89:d0:62:c1:a0:6d:86:
67:a1:85:7b:8c:7f:d0:64:85:01:11:03:b2:5b:8e:
73:b0:02:70:85:30:1b:28:25:18:9b:a7:f9:6a:8f:
83:2f:a7:55:98:d1:4b:ab:a0:07:54:b5:e2:9d:e1:
36:f7:05:cb:83:2f:c3:43:b9:15:b9:9f:f7:ea:09:
7f:7b:6d:0f:63:bf:71:f3:aa:be:b2:86:d7:89:a4:
be:41:6d:dd:bc:aa:43:c6:93:fc:2e:32:df:22:98:
c6:06:10:d2:69:00:38:97:e5:c7:9d:f6:d6:f3:d6:
43:4d:d2:d1:6c:92:b0:1e:50:1b:16:45:59:f9:b9:
52:ac:a8:4d:7e:f2:0b:d9:3d:98:b2:9f:8f:75:44:
29:3d:f8:88:69:9b:41:eb:cc:86:e5:d4:09:05:74:
d0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8C:82:2F:82:DA:86:A1:A4:78:6A:1B:2C:23:6F:9C:1E:99:9C:41
X509v3 Authority Key Identifier:
keyid:F8:6F:E4:27:CF:F6:D8:5A:69:5E:C8:65:28:A4:83:0C:B4:08:A8:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-G_kJ8_22FppXshlKKSDDLQIqBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/UIyCL4LahqGkeGobLCNvnB6ZnEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/905c88-9d3b-49de-89e8-4dbefd1f2bf0/1/1-G_kJ8_22FppXshlKKSDDLQIqBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.129.0/24
Signature Algorithm: sha256WithRSAEncryption
00:1c:f3:91:0e:ef:2d:a2:2c:04:ad:be:75:c0:f3:64:1d:30:
ef:ad:fa:4e:4c:2d:50:49:4e:73:4c:48:00:30:7f:25:e7:19:
99:12:47:f5:42:37:6c:01:a9:a7:3b:c5:ef:f5:f6:ba:f5:cd:
6b:fa:60:b3:10:ce:7b:47:38:b2:2a:a7:06:59:cb:91:96:75:
ed:c8:81:a6:b3:f8:34:3f:28:b9:71:ed:96:c8:cd:f9:8c:e2:
ec:82:5d:5d:24:02:e3:81:a9:6a:62:e4:67:5d:24:0d:0e:76:
66:71:ce:88:a3:22:13:66:e1:85:fb:df:07:92:e9:d0:22:7c:
91:e4:ce:77:f5:b0:be:b4:b1:96:62:50:ed:11:98:97:38:3e:
17:92:d7:05:13:e9:af:24:b1:ec:66:bf:c7:ba:10:4f:f0:38:
73:7d:d7:f3:6b:93:88:fe:9b:58:f4:c1:a0:b4:45:89:ea:5b:
0c:d6:20:83:6a:11:91:8d:6e:5b:ca:ce:77:6a:5f:29:e6:4e:
04:9a:16:39:e3:58:11:11:52:f3:ab:86:88:4d:b7:25:1b:b9:
6d:b5:2b:52:a0:eb:e1:94:d9:2c:dc:e0:3d:b1:a4:c7:bd:21:
2c:a7:15:a3:da:dc:68:a3:ca:8f:90:7d:67:47:5e:d5:76:b7:
e8:77:45:94
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzCbTIBpPE4ngihOX1Xk5ZMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NmZlNDI3Y2ZmNmQ4NWE2OTVlYzg2NTI4YTQ4MzBjYjQw
OGE4MTgwHhcNMjQwMTAxMDAyOTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDhjODIyZjgyZGE4NmExYTQ3ODZhMWIyYzIzNmY5YzFlOTk5YzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6mYE0kxg0g/j9pqRyzZ4AY9T2nv
5aD0eqVWfAXo7R8IKZeqoXf2A12O1N1uxZH7iF07pcisfRtyDsgAk6rfKJ/o91lV
574cM+UNGB7Xf0tZ6BzlOmuDcVjpNClb4iA+QonQYsGgbYZnoYV7jH/QZIUBEQOy
W45zsAJwhTAbKCUYm6f5ao+DL6dVmNFLq6AHVLXineE29wXLgy/DQ7kVuZ/36gl/
e20PY79x86q+sobXiaS+QW3dvKpDxpP8LjLfIpjGBhDSaQA4l+XHnfbW89ZDTdLR
bJKwHlAbFkVZ+blSrKhNfvIL2T2Ysp+PdUQpPfiIaZtB68yG5dQJBXTQZwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFFCMgi+C2oahpHhqGywjb5wemZxBMB8GA1UdIwQY
MBaAFPhv5CfP9thaaV7IZSikgwy0CKgYMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1HX2tKOF8yMkZwcFhzaGxLS1NERExRSXFCZy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvOTA1Yzg4LTlkM2ItNDlkZS04OWU4
LTRkYmVmZDFmMmJmMC8xL1VJeUNMNExhaHFHa2VHb2JMQ052bkI2Wm5FRS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOTkvOTA1Yzg4LTlkM2ItNDlkZS04OWU4LTRkYmVmZDFmMmJm
MC8xLzEtR19rSjhfMjJGcHBYc2hsS0tTRERMUUlxQmcuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADBKYEw
DQYJKoZIhvcNAQELBQADggEBAAAc85EO7y2iLAStvnXA82QdMO+t+k5MLVBJTnNM
SAAwfyXnGZkSR/VCN2wBqac7xe/19rr1zWv6YLMQzntHOLIqpwZZy5GWde3Igaaz
+DQ/KLlx7ZbIzfmM4uyCXV0kAuOBqWpi5GddJA0OdmZxzoijIhNm4YX73weS6dAi
fJHkznf1sL60sZZiUO0RmJc4PheS1wUT6a8ksexmv8e6EE/wOHN91/Nrk4j+m1j0
waC0RYnqWwzWIINqEZGNblvKzndqXynmTgSaFjnjWBERUvOrhohNtyUbuW21K1Kg
6+GU2Szc4D2xpMe9ISynFaPa3Gijyo+QfWdHXtV2t+h3RZQ=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:26:23 2024 by rpki-client on console-fra.rpki-client.org