Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/s0GWYedj4LRqG5AY_mIkgPcHpZk.roa
File: s0GWYedj4LRqG5AY_mIkgPcHpZk.roa (raw, json)
Hash identifier: I+9ttjPpmj7ZR2kU/xsMKFksaocs4HjDP0hwNOWXZp0=
Subject key identifier: B3:41:96:61:E7:63:E0:B4:6A:1B:90:18:FE:62:24:80:F7:07:A5:99
Certificate issuer: /CN=7415fec4ae76b24e4f02991649917b99b740044a
Certificate serial: 01915530AF10E03E09DCFA4C994AE341EA25
Authority key identifier: 74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/s0GWYedj4LRqG5AY_mIkgPcHpZk.roa
Signing time: Thu 15 Aug 2024 08:38:59 +0000
ROA not before: Thu 15 Aug 2024 08:38:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214417
IP address blocks: 92.42.102.0/24 maxlen: 24
185.225.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:55:30:af:10:e0:3e:09:dc:fa:4c:99:4a:e3:41:ea:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7415fec4ae76b24e4f02991649917b99b740044a
Validity
Not Before: Aug 15 08:38:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3419661e763e0b46a1b9018fe622480f707a599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a1:65:c1:bf:ab:01:0a:45:a8:77:db:71:58:
55:d5:71:2e:a1:99:cc:4a:4b:58:e3:af:1f:5a:e0:
af:a7:78:ff:33:bc:4a:98:97:23:c3:0a:1f:ea:9d:
94:39:56:b6:a1:d9:80:c2:e9:52:7a:ed:b3:2f:e8:
24:d4:0a:43:86:b5:42:a4:57:99:22:2b:28:f4:f0:
39:93:78:cf:5e:11:e2:44:67:11:ac:96:d1:22:c6:
6a:0a:ef:50:cc:4c:0e:85:de:10:e1:b4:28:93:e9:
c5:f7:0c:50:a9:55:e3:77:75:39:75:ae:dd:42:8e:
4c:c5:8d:2b:6c:0b:ff:3c:cb:a6:71:1c:be:68:91:
4b:29:3f:29:00:0f:c7:06:04:f3:ce:dc:a5:51:b2:
30:77:5c:ee:28:e4:13:e2:54:a5:74:2d:83:99:93:
f1:76:81:e5:c4:35:77:e7:cf:5e:0d:74:15:8c:c0:
42:b6:5b:90:15:dd:ef:af:b3:03:1b:07:cd:d4:d8:
e0:d6:73:b2:42:00:8d:32:74:47:38:49:3c:b3:6a:
9b:28:c2:d0:25:35:34:bb:d7:90:3e:2e:e7:76:a5:
d1:68:07:bb:19:98:df:2d:f8:be:36:c0:ba:cb:e2:
ce:b8:a3:49:e5:b6:15:c3:7e:dd:ad:55:52:f5:4a:
8c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:41:96:61:E7:63:E0:B4:6A:1B:90:18:FE:62:24:80:F7:07:A5:99
X509v3 Authority Key Identifier:
keyid:74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/s0GWYedj4LRqG5AY_mIkgPcHpZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.42.102.0/24
185.225.202.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:1a:3d:b9:7d:c1:53:26:29:1c:8d:d2:d0:50:9f:69:92:59:
e2:61:be:2c:01:16:89:32:05:d7:a7:e8:36:19:49:89:39:eb:
82:5b:4f:b6:de:07:72:35:01:5a:c8:02:39:08:f2:20:09:b2:
f1:3c:80:c4:8a:ae:23:6b:cc:83:79:fd:cb:96:5f:58:65:65:
d8:29:5e:d5:af:da:e3:98:fc:2c:09:ca:ea:0d:37:18:91:d6:
52:8a:73:ff:8f:bb:d4:04:53:c3:be:a6:8e:98:1f:38:4d:2c:
0e:8e:98:e4:4f:a2:ce:78:99:81:70:bf:a6:23:db:d5:8d:78:
7e:78:82:96:2a:03:95:51:e3:26:af:28:78:26:2d:17:70:d2:
61:81:d2:df:81:a6:17:fe:c9:9c:26:ba:4d:36:97:86:76:9b:
66:27:2d:e7:a7:be:8c:8b:30:48:70:f9:9e:00:32:6f:c5:d2:
bb:17:c8:9e:af:4d:40:ed:dc:42:b0:1f:31:9c:e3:ec:62:a7:
e3:05:77:e9:50:2d:8d:7b:62:9b:d2:49:4f:c9:9c:b2:27:d1:
4c:43:0b:b9:8d:4e:79:64:1b:7f:1b:9e:07:6b:84:cf:ba:89:
eb:7f:ee:15:c8:45:4a:17:5f:07:41:0f:64:fe:cc:f6:da:3a:
e0:22:9a:63
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFVMK8Q4D4J3PpMmUrjQeolMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MTVmZWM0YWU3NmIyNGU0ZjAyOTkxNjQ5OTE3Yjk5Yjc0
MDA0NGEwHhcNMjQwODE1MDgzODU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzQxOTY2MWU3NjNlMGI0NmExYjkwMThmZTYyMjQ4MGY3MDdhNTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKFlwb+rAQpFqHfbcVhV1XEuoZnM
SktY468fWuCvp3j/M7xKmJcjwwof6p2UOVa2odmAwulSeu2zL+gk1ApDhrVCpFeZ
Iiso9PA5k3jPXhHiRGcRrJbRIsZqCu9QzEwOhd4Q4bQok+nF9wxQqVXjd3U5da7d
Qo5MxY0rbAv/PMumcRy+aJFLKT8pAA/HBgTzztylUbIwd1zuKOQT4lSldC2DmZPx
doHlxDV3589eDXQVjMBCtluQFd3vr7MDGwfN1Njg1nOyQgCNMnRHOEk8s2qbKMLQ
JTU0u9eQPi7ndqXRaAe7GZjfLfi+NsC6y+LOuKNJ5bYVw37drVVS9UqMmwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLNBlmHnY+C0ahuQGP5iJID3B6WZMB8GA1UdIwQY
MBaAFHQV/sSudrJOTwKZFkmRe5m3QARKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEJYLXhLNTJzazVQQXBrV1NaRjdtYmRBQkVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy85ODc5NzktOTY5My00NWUzLTg1YmEt
ZWQ1MzU4YjZkYTMxLzEvczBHV1llZGo0TFJxRzVBWV9tSWtnUGNIcFprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy85ODc5NzktOTY5My00NWUzLTg1YmEtZWQ1MzU4YjZkYTMx
LzEvZEJYLXhLNTJzazVQQXBrV1NaRjdtYmRBQkVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXCpmAwQA
ueHKMA0GCSqGSIb3DQEBCwUAA4IBAQC7Gj25fcFTJikcjdLQUJ9pklniYb4sARaJ
MgXXp+g2GUmJOeuCW0+23gdyNQFayAI5CPIgCbLxPIDEiq4ja8yDef3Lll9YZWXY
KV7Vr9rjmPwsCcrqDTcYkdZSinP/j7vUBFPDvqaOmB84TSwOjpjkT6LOeJmBcL+m
I9vVjXh+eIKWKgOVUeMmryh4Ji0XcNJhgdLfgaYX/smcJrpNNpeGdptmJy3np76M
izBIcPmeADJvxdK7F8ier01A7dxCsB8xnOPsYqfjBXfpUC2Ne2Kb0klPyZyyJ9FM
Qwu5jU55ZBt/G54Ha4TPuonrf+4VyEVKF18HQQ9k/sz22jrgIppj
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:05:03 2024 by rpki-client on console-ams.rpki-client.org