Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/eNgwZkgpVkJqTeRROvenEh0BXrI.roa
File: eNgwZkgpVkJqTeRROvenEh0BXrI.roa (raw, json)
Hash identifier: T19X1hvQ58aP7x+4wt5cx2urMfvacZqImuzToRRrG9c=
Subject key identifier: 78:D8:30:66:48:29:56:42:6A:4D:E4:51:3A:F7:A7:12:1D:01:5E:B2
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 018CC64B1E7C3597AC2143191F3C0C9D73B0
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/eNgwZkgpVkJqTeRROvenEh0BXrI.roa
Signing time: Mon 01 Jan 2024 18:31:00 +0000
ROA not before: Mon 01 Jan 2024 18:31:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2639
IP address blocks: 31.186.226.0/24 maxlen: 24
31.186.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:1e:7c:35:97:ac:21:43:19:1f:3c:0c:9d:73:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jan 1 18:31:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78d83066482956426a4de4513af7a7121d015eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3b:a1:ec:fd:fc:77:83:38:ee:f0:fe:c3:2a:
c3:8d:ff:06:e8:28:7a:0f:ae:85:c6:1b:4f:a6:fb:
cc:96:30:9d:53:47:70:ea:15:37:5c:ae:5b:cc:69:
3d:89:7d:26:1d:43:91:95:73:b0:c7:6c:79:a1:01:
76:7a:b9:cc:b0:15:14:9f:08:ee:73:ee:7b:79:d7:
f0:54:e4:95:c8:16:72:ca:43:18:73:0b:34:ac:0f:
d6:33:f2:3c:d0:f5:89:f1:b5:71:cf:d8:93:71:9e:
49:99:12:31:fa:e6:2e:a5:2c:35:1c:b2:78:1f:de:
f2:9a:08:2e:52:4c:61:73:ef:43:a0:15:0b:72:b1:
f9:bb:3b:26:d4:5c:4d:15:99:15:b3:1e:0e:08:11:
08:be:65:cf:ba:13:19:03:b1:38:4b:23:24:d6:38:
76:d7:71:5b:29:c0:f4:b0:d0:bf:6a:32:64:26:ed:
b8:13:91:11:26:32:7d:97:ec:40:b6:0d:3c:83:96:
01:06:30:a3:03:4d:58:79:97:a2:e7:99:6d:63:7d:
8f:29:62:0a:f7:43:d5:02:f7:3c:35:e7:a9:90:36:
9c:e9:73:1c:c5:57:a6:df:e3:48:aa:9b:aa:60:ed:
e5:68:fd:7d:a0:69:88:2d:8e:20:88:b6:58:36:8d:
24:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D8:30:66:48:29:56:42:6A:4D:E4:51:3A:F7:A7:12:1D:01:5E:B2
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/eNgwZkgpVkJqTeRROvenEh0BXrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.226.0/24
31.186.243.0/24
Signature Algorithm: sha256WithRSAEncryption
56:fc:de:3c:3e:d4:ae:a8:f0:9c:75:51:ca:f3:31:0c:d8:f6:
b8:06:33:b7:c8:ba:9e:a4:25:d2:29:7c:97:f5:3d:2a:97:34:
54:01:d5:71:2a:8d:fb:49:e7:97:22:9d:c9:15:94:51:5d:72:
b6:dc:77:b4:ec:60:5c:64:3a:85:d7:0b:e7:f2:cc:96:8b:7c:
65:b0:11:0f:1f:ca:9d:c8:e8:ed:f7:b8:af:ea:8c:83:b2:18:
88:3e:82:c3:40:02:d0:5f:9b:9e:1b:d4:af:35:bc:28:90:80:
98:e0:78:a4:1f:26:d7:f9:97:7b:d6:dd:f6:3c:94:4c:af:e3:
16:b8:cf:32:7a:83:6f:66:bd:d4:f4:01:ff:49:64:79:97:15:
09:05:7f:24:48:81:d9:79:23:b0:44:26:a9:f7:47:41:e3:33:
18:c0:77:81:40:12:69:c4:52:20:6d:e4:d5:33:ca:6d:ef:bb:
b7:e9:4b:43:30:0a:29:ae:61:88:1a:9d:72:e8:e0:20:06:83:
fb:16:48:a5:44:fd:73:70:37:66:66:77:2b:35:31:e7:a4:c3:
71:ed:8c:92:1d:cf:51:ea:65:c8:c4:5e:94:ae:9b:00:1b:76:
31:fb:8c:77:7e:3a:91:9b:12:2e:02:30:9a:cf:e2:97:02:b8:
61:2b:c9:9b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzGSx58NZesIUMZHzwMnXOwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZGFlZWE5MTE3YTFkNWNjYzMyMDIyMjk1NWEwOWZhYTA3
OThmZDkwHhcNMjQwMTAxMTgzMTAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OGQ4MzA2NjQ4Mjk1NjQyNmE0ZGU0NTEzYWY3YTcxMjFkMDE1ZWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzuh7P38d4M47vD+wyrDjf8G6Ch6
D66FxhtPpvvMljCdU0dw6hU3XK5bzGk9iX0mHUORlXOwx2x5oQF2ernMsBUUnwju
c+57edfwVOSVyBZyykMYcws0rA/WM/I80PWJ8bVxz9iTcZ5JmRIx+uYupSw1HLJ4
H97ymgguUkxhc+9DoBULcrH5uzsm1FxNFZkVsx4OCBEIvmXPuhMZA7E4SyMk1jh2
13FbKcD0sNC/ajJkJu24E5ERJjJ9l+xAtg08g5YBBjCjA01YeZei55ltY32PKWIK
90PVAvc8NeepkDac6XMcxVem3+NIqpuqYO3laP19oGmILY4giLZYNo0k7wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHjYMGZIKVZCak3kUTr3pxIdAV6yMB8GA1UdIwQY
MBaAFK7a7qkReh1czDICIpVaCfqgeY/ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEt
OTk4NjhjNTEzMjlhLzEvZU5nd1prZ3BWa0pxVGVSUk92ZW5FaDBCWHJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEtOTk4NjhjNTEzMjlh
LzEvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAH7riAwQA
H7rzMA0GCSqGSIb3DQEBCwUAA4IBAQBW/N48PtSuqPCcdVHK8zEM2Pa4BjO3yLqe
pCXSKXyX9T0qlzRUAdVxKo37SeeXIp3JFZRRXXK23He07GBcZDqF1wvn8syWi3xl
sBEPH8qdyOjt97iv6oyDshiIPoLDQALQX5ueG9SvNbwokICY4HikHybX+Zd71t32
PJRMr+MWuM8yeoNvZr3U9AH/SWR5lxUJBX8kSIHZeSOwRCap90dB4zMYwHeBQBJp
xFIgbeTVM8pt77u36UtDMAoprmGIGp1y6OAgBoP7FkilRP1zcDdmZncrNTHnpMNx
7YySHc9R6mXIxF6UrpsAG3Yx+4x3fjqRmxIuAjCaz+KXArhhK8mb
-----END CERTIFICATE-----
Generated at Sun May 19 07:06:59 2024 by rpki-client on console-ams.rpki-client.org