Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/6e4e68-87aa-478c-8e5f-e06176ab24fb/1/jI7ofPBkxfgBTJQMe4a3hpxR-Uw.roa
File: jI7ofPBkxfgBTJQMe4a3hpxR-Uw.roa (raw, json)
Hash identifier: Z53lHwF40kPkLKXLEQFDjc+QTV1haoOzfNCxm9V32/8=
Subject key identifier: 8C:8E:E8:7C:F0:64:C5:F8:01:4C:94:0C:7B:86:B7:86:9C:51:F9:4C
Certificate issuer: /CN=b6380000fb7e45f8976261a698d418f08e8d67c7
Certificate serial: 018CC424B6092D9E7211E23EB4A82CB96098
Authority key identifier: B6:38:00:00:FB:7E:45:F8:97:62:61:A6:98:D4:18:F0:8E:8D:67:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tjgAAPt-RfiXYmGmmNQY8I6NZ8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/6e4e68-87aa-478c-8e5f-e06176ab24fb/1/jI7ofPBkxfgBTJQMe4a3hpxR-Uw.roa
Signing time: Mon 01 Jan 2024 08:29:49 +0000
ROA not before: Mon 01 Jan 2024 08:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3356
IP address blocks: 212.57.192.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/6e4e68-87aa-478c-8e5f-e06176ab24fb/1/tjgAAPt-RfiXYmGmmNQY8I6NZ8c.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/6e4e68-87aa-478c-8e5f-e06176ab24fb/1/tjgAAPt-RfiXYmGmmNQY8I6NZ8c.mft
rsync://rpki.ripe.net/repository/DEFAULT/tjgAAPt-RfiXYmGmmNQY8I6NZ8c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:b6:09:2d:9e:72:11:e2:3e:b4:a8:2c:b9:60:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6380000fb7e45f8976261a698d418f08e8d67c7
Validity
Not Before: Jan 1 08:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c8ee87cf064c5f8014c940c7b86b7869c51f94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e4:5c:1f:b2:d8:8b:2a:8f:bc:33:f4:5e:dd:
78:3e:e0:7a:43:8a:48:1d:0d:f1:c7:54:e6:9d:5d:
76:ec:9d:5d:50:78:87:a0:9c:53:3f:34:0e:03:1e:
42:d9:12:ce:fd:ae:2f:74:03:b9:68:bd:ce:16:f3:
21:c6:ae:5c:9d:5e:6c:39:58:f7:ab:3a:bb:0f:2a:
5a:bc:02:a8:0f:12:ce:43:ea:49:bb:06:a0:5b:58:
ed:46:4a:b5:08:69:28:71:e4:33:bc:0e:96:a3:68:
c0:8a:6e:c0:29:2d:7f:56:8c:f6:2b:66:99:af:f3:
69:91:79:3c:89:74:80:e0:7d:ca:6f:c3:53:cc:30:
90:2d:5a:40:0c:25:c1:4f:8c:a4:b1:e3:78:5c:ef:
69:b3:42:4e:c3:d8:3c:54:1d:cc:de:f6:7d:d2:9a:
28:81:eb:c9:87:e1:c5:e1:70:29:6c:81:cd:69:d8:
65:e6:a6:3d:f7:65:d5:d3:25:ab:d1:cc:70:9f:41:
51:ec:20:78:b8:ed:3b:f7:2f:9c:9b:5d:06:5a:8b:
dd:7c:fd:7d:61:bb:f7:44:7e:64:d2:5f:f7:31:55:
b3:be:f0:ac:ac:ca:18:e5:0d:fd:ca:22:12:d1:b7:
eb:1b:3a:80:6c:92:ec:77:27:fb:4d:76:54:ac:cf:
6c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8E:E8:7C:F0:64:C5:F8:01:4C:94:0C:7B:86:B7:86:9C:51:F9:4C
X509v3 Authority Key Identifier:
keyid:B6:38:00:00:FB:7E:45:F8:97:62:61:A6:98:D4:18:F0:8E:8D:67:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tjgAAPt-RfiXYmGmmNQY8I6NZ8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/6e4e68-87aa-478c-8e5f-e06176ab24fb/1/jI7ofPBkxfgBTJQMe4a3hpxR-Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/6e4e68-87aa-478c-8e5f-e06176ab24fb/1/tjgAAPt-RfiXYmGmmNQY8I6NZ8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.57.192.0/19
Signature Algorithm: sha256WithRSAEncryption
40:bf:36:00:3e:b8:86:75:05:69:90:a0:47:29:47:92:7a:66:
3f:09:1a:31:9b:ff:73:b7:9a:1d:c4:a6:d0:c9:39:87:f5:57:
d5:18:65:42:98:3a:9e:f6:1b:db:48:df:13:c3:6e:6e:93:8a:
e3:dc:8d:7a:4b:5f:c5:ed:fd:8b:35:fa:6a:8b:bb:d3:0d:2f:
3b:82:bd:c0:8d:c3:fb:b1:86:c8:1b:f8:a6:c2:3c:90:90:01:
53:b7:c9:e2:ac:e0:30:e9:6d:fd:f8:12:08:2e:8a:58:e3:26:
b6:35:9d:32:3d:b7:54:18:e4:71:6e:00:83:fb:65:f0:db:9f:
3c:c5:b1:6a:1d:12:d4:6c:c8:58:89:e6:5a:f5:76:59:e5:c7:
82:66:7d:f3:3e:8f:f7:85:c4:77:fa:89:c3:a5:65:5e:83:8e:
e3:dc:1e:60:29:ab:f5:64:7d:24:d3:07:b0:5c:c7:8f:3f:80:
99:f5:71:0d:89:78:f7:e8:32:7c:7a:f8:3e:ca:c9:11:58:af:
42:22:21:1b:3f:44:00:b0:41:9a:46:e0:ce:c5:db:e2:9e:16:
c8:f1:ea:d0:23:14:1b:18:c1:e4:d9:ad:4d:23:c1:f1:6f:81:
97:aa:1f:91:94:27:d6:87:7b:0e:63:aa:f4:db:f1:c2:49:ca:
a0:53:02:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJLYJLZ5yEeI+tKgsuWCYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2MzgwMDAwZmI3ZTQ1Zjg5NzYyNjFhNjk4ZDQxOGYwOGU4
ZDY3YzcwHhcNMjQwMTAxMDgyOTQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzhlZTg3Y2YwNjRjNWY4MDE0Yzk0MGM3Yjg2Yjc4NjljNTFmOTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArORcH7LYiyqPvDP0Xt14PuB6Q4pI
HQ3xx1TmnV127J1dUHiHoJxTPzQOAx5C2RLO/a4vdAO5aL3OFvMhxq5cnV5sOVj3
qzq7DypavAKoDxLOQ+pJuwagW1jtRkq1CGkoceQzvA6Wo2jAim7AKS1/Voz2K2aZ
r/NpkXk8iXSA4H3Kb8NTzDCQLVpADCXBT4ykseN4XO9ps0JOw9g8VB3M3vZ90poo
gevJh+HF4XApbIHNadhl5qY992XV0yWr0cxwn0FR7CB4uO079y+cm10GWovdfP19
Ybv3RH5k0l/3MVWzvvCsrMoY5Q39yiIS0bfrGzqAbJLsdyf7TXZUrM9sawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIyO6HzwZMX4AUyUDHuGt4acUflMMB8GA1UdIwQY
MBaAFLY4AAD7fkX4l2JhppjUGPCOjWfHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGpnQUFQdC1SZmlYWW1HbW1OUVk4STZOWjhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi82ZTRlNjgtODdhYS00NzhjLThlNWYt
ZTA2MTc2YWIyNGZiLzEvakk3b2ZQQmt4ZmdCVEpRTWU0YTNocHhSLVV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi82ZTRlNjgtODdhYS00NzhjLThlNWYtZTA2MTc2YWIyNGZi
LzEvdGpnQUFQdC1SZmlYWW1HbW1OUVk4STZOWjhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF1DnAMA0G
CSqGSIb3DQEBCwUAA4IBAQBAvzYAPriGdQVpkKBHKUeSemY/CRoxm/9zt5odxKbQ
yTmH9VfVGGVCmDqe9hvbSN8Tw25uk4rj3I16S1/F7f2LNfpqi7vTDS87gr3AjcP7
sYbIG/imwjyQkAFTt8nirOAw6W39+BIILopY4ya2NZ0yPbdUGORxbgCD+2Xw2588
xbFqHRLUbMhYieZa9XZZ5ceCZn3zPo/3hcR3+onDpWVeg47j3B5gKav1ZH0k0wew
XMePP4CZ9XENiXj36DJ8evg+yskRWK9CIiEbP0QAsEGaRuDOxdvinhbI8erQIxQb
GMHk2a1NI8Hxb4GXqh+RlCfWh3sOY6r02/HCScqgUwKV
-----END CERTIFICATE-----
Generated at Thu May 2 15:45:05 2024 by rpki-client on console-fra.rpki-client.org