Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/_LhCE4mLOY99lBC271F7uF4kxLU.roa
File: _LhCE4mLOY99lBC271F7uF4kxLU.roa (raw, json)
Hash identifier: E86MM7pj24t6ut+DP5duqpmRSkSSqJIaMI79A8ABGe8=
Subject key identifier: FC:B8:42:13:89:8B:39:8F:7D:94:10:B6:EF:51:7B:B8:5E:24:C4:B5
Certificate issuer: /CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Certificate serial: 018CC7943889E530B053E1E8026236B75BF7
Authority key identifier: 24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/_LhCE4mLOY99lBC271F7uF4kxLU.roa
Signing time: Tue 02 Jan 2024 00:30:28 +0000
ROA not before: Tue 02 Jan 2024 00:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 193.16.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 03:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:38:89:e5:30:b0:53:e1:e8:02:62:36:b7:5b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Validity
Not Before: Jan 2 00:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcb84213898b398f7d9410b6ef517bb85e24c4b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f0:c7:f5:2b:c7:6c:4a:f4:1d:48:0b:2f:d0:
b9:e2:84:2a:dd:74:0e:a4:4c:21:a3:fa:42:6a:83:
1e:0e:5e:b9:a8:0b:11:78:64:5c:d5:bd:39:59:c3:
86:d9:3d:99:75:64:71:58:59:4a:92:6d:0a:b9:2e:
58:aa:db:9e:6d:a8:f0:6e:12:6a:45:17:e5:2f:b1:
d2:13:b0:fc:0c:3c:a6:ca:c9:e6:67:6a:23:65:47:
60:02:d7:d2:36:14:fd:9c:aa:a6:c3:3e:d4:ec:7a:
33:bb:6a:a5:fa:2b:9e:00:5f:f5:01:5d:86:55:59:
60:c6:20:41:e7:20:4e:1c:2c:dc:a5:8e:c2:df:ef:
c1:53:23:0a:c8:41:b9:b4:cc:96:f8:a3:fb:ce:91:
bc:f4:58:a2:cf:86:11:d5:91:43:02:d9:c1:e8:bd:
94:6c:00:01:62:7d:6d:5f:57:07:5b:24:e4:f9:6a:
6d:29:9a:58:2c:e3:42:23:4a:e4:33:12:99:13:ec:
06:8b:8d:a5:12:c9:24:64:d9:57:42:f6:97:85:fe:
c3:14:32:64:92:6b:72:da:15:2c:54:aa:30:4e:92:
80:56:c7:20:53:9c:a8:64:ed:fd:89:df:0b:a2:a4:
03:99:4e:b2:07:3c:87:e8:3c:30:35:9d:de:d7:c5:
0a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B8:42:13:89:8B:39:8F:7D:94:10:B6:EF:51:7B:B8:5E:24:C4:B5
X509v3 Authority Key Identifier:
keyid:24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/_LhCE4mLOY99lBC271F7uF4kxLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.22.0/24
Signature Algorithm: sha256WithRSAEncryption
94:57:ee:72:a3:8e:95:62:af:02:50:07:2e:91:60:44:2d:4c:
36:d0:58:ba:c0:b2:33:ae:57:ae:86:4e:e5:05:11:81:ac:39:
1f:3c:a6:aa:5f:ba:5d:9f:9e:41:31:4a:26:8f:01:cb:3b:0f:
3a:77:e3:22:64:12:be:7b:19:12:7c:36:93:36:ec:bc:ff:d2:
73:54:3f:c8:48:62:0d:82:3f:af:ee:35:e6:2f:7d:cc:2a:e3:
59:35:99:28:01:70:7a:99:38:66:18:28:bd:2a:11:a4:0e:d9:
d7:37:7e:45:fc:ce:6a:b4:2d:b0:d8:6e:92:7e:5b:64:62:8c:
2b:b4:6c:56:85:6b:2a:ce:d1:87:a2:6a:65:f6:98:92:e8:eb:
e1:8b:e4:66:2c:99:6e:c0:59:95:a2:7c:23:27:85:11:b9:9f:
0a:4d:38:64:bc:8e:d1:1b:f0:03:48:fa:d3:b9:f7:33:1a:b5:
9a:1c:3e:a3:bf:f5:68:99:a1:52:bf:d4:d6:3a:d7:ba:67:d2:
c7:84:d8:07:fd:5e:b9:7b:25:9e:e5:b6:a4:bf:8c:86:6e:cd:
a2:85:76:d8:18:80:27:fe:8c:ec:56:5e:de:10:1e:ed:b6:8f:
1f:30:24:6e:2f:ae:ec:ed:96:6f:97:eb:b1:f0:be:89:3e:a6:
6a:e4:ea:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlDiJ5TCwU+HoAmI2t1v3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0YTkxOGYxYjEwZWMxZDY2MGIxY2ZjYjFiZmUxOTZjMmZl
YjA2YmYwHhcNMjQwMTAyMDAzMDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmY2I4NDIxMzg5OGIzOThmN2Q5NDEwYjZlZjUxN2JiODVlMjRjNGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifDH9SvHbEr0HUgLL9C54oQq3XQO
pEwho/pCaoMeDl65qAsReGRc1b05WcOG2T2ZdWRxWFlKkm0KuS5YqtuebajwbhJq
RRflL7HSE7D8DDymysnmZ2ojZUdgAtfSNhT9nKqmwz7U7Hozu2ql+iueAF/1AV2G
VVlgxiBB5yBOHCzcpY7C3+/BUyMKyEG5tMyW+KP7zpG89Fiiz4YR1ZFDAtnB6L2U
bAABYn1tX1cHWyTk+WptKZpYLONCI0rkMxKZE+wGi42lEskkZNlXQvaXhf7DFDJk
kmty2hUsVKowTpKAVscgU5yoZO39id8LoqQDmU6yBzyH6DwwNZ3e18UKPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPy4QhOJizmPfZQQtu9Re7heJMS1MB8GA1UdIwQY
MBaAFCSpGPGxDsHWYLHPyxv+GWwv6wa/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSktrWThiRU93ZFpnc2NfTEdfNFpiQ19yQnI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8xZjVmZWItN2FjZi00YzFkLThlOWYt
MWYyNjJkOWM5YjA3LzEvX0xoQ0U0bUxPWTk5bEJDMjcxRjd1RjRreExVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8xZjVmZWItN2FjZi00YzFkLThlOWYtMWYyNjJkOWM5YjA3
LzEvSktrWThiRU93ZFpnc2NfTEdfNFpiQ19yQnI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRAWMA0G
CSqGSIb3DQEBCwUAA4IBAQCUV+5yo46VYq8CUAcukWBELUw20Fi6wLIzrleuhk7l
BRGBrDkfPKaqX7pdn55BMUomjwHLOw86d+MiZBK+exkSfDaTNuy8/9JzVD/ISGIN
gj+v7jXmL33MKuNZNZkoAXB6mThmGCi9KhGkDtnXN35F/M5qtC2w2G6SfltkYowr
tGxWhWsqztGHompl9piS6Ovhi+RmLJluwFmVonwjJ4URuZ8KTThkvI7RG/ADSPrT
ufczGrWaHD6jv/VomaFSv9TWOte6Z9LHhNgH/V65eyWe5bakv4yGbs2ihXbYGIAn
/ozsVl7eEB7tto8fMCRuL67s7ZZvl+ux8L6JPqZq5Oqr
-----END CERTIFICATE-----
Generated at Thu May 2 13:30:47 2024 by rpki-client on console-ams.rpki-client.org