Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/RWjNLF-wCBGYCD42KZXmBXcf5qE.roa
File: RWjNLF-wCBGYCD42KZXmBXcf5qE.roa (raw, json)
Hash identifier: 0L38OfTp23Gnu7loHlYCv97x9Fcpmb4ZoC8FgicukRA=
Subject key identifier: 45:68:CD:2C:5F:B0:08:11:98:08:3E:36:29:95:E6:05:77:1F:E6:A1
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018CC86F946F9E204D926DDD0BBC46D08063
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/RWjNLF-wCBGYCD42KZXmBXcf5qE.roa
Signing time: Tue 02 Jan 2024 04:30:04 +0000
ROA not before: Tue 02 Jan 2024 04:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58269
IP address blocks: 87.246.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 May 2024 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:94:6f:9e:20:4d:92:6d:dd:0b:bc:46:d0:80:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 04:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4568cd2c5fb0081198083e362995e605771fe6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1e:44:31:c0:05:ef:7d:48:41:c5:f6:ec:24:
6d:4e:b6:1c:12:ad:39:34:57:fa:e6:01:72:93:a6:
33:d8:69:ec:c6:ae:a5:2c:e5:42:81:53:06:88:08:
0a:05:e5:83:d0:5c:17:05:12:25:1d:8b:84:36:e3:
6c:50:e6:ad:4d:9d:0b:b6:6f:ad:24:1a:f5:9c:a4:
12:df:03:71:4f:90:8a:60:2b:b2:f2:8d:7d:ba:d7:
2c:f2:c4:bf:32:ad:e2:4b:3f:29:0b:0a:61:f4:97:
dc:92:bf:8c:ad:64:cf:2a:19:c7:4d:29:3c:11:ed:
69:e4:95:31:b0:9e:39:0b:1f:e3:1b:60:fb:91:42:
80:56:c8:6f:f4:3e:8e:19:ca:52:d1:f4:60:06:38:
25:20:8f:9f:d7:f3:0d:a7:26:00:a2:10:11:46:82:
07:ea:87:20:f0:c1:a9:7b:12:66:8c:3a:6f:32:53:
02:aa:4b:e3:ce:d3:90:1a:ef:ae:20:44:98:c5:a0:
96:f7:cc:e5:c9:a1:d0:45:6b:b9:7e:01:78:96:a3:
6f:c2:04:34:a1:42:2e:b9:91:37:52:d4:36:f3:34:
2c:86:aa:1b:a3:6b:fe:c1:20:43:a8:42:9e:77:89:
a5:10:8e:fd:d2:47:56:ab:2b:d0:90:ec:b0:e2:75:
ac:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:68:CD:2C:5F:B0:08:11:98:08:3E:36:29:95:E6:05:77:1F:E6:A1
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/RWjNLF-wCBGYCD42KZXmBXcf5qE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.183.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:43:50:cc:c9:1c:a8:79:5e:45:3c:cd:47:14:a7:87:b3:9c:
f1:36:ee:d7:21:f6:06:b5:01:ef:4c:04:13:c5:dc:9d:43:fc:
42:8b:78:f6:c2:08:04:9c:9f:d6:52:9f:dd:e3:b3:9c:20:13:
37:89:b0:4e:92:50:42:d4:ea:ee:5d:b3:8c:67:bd:8c:42:34:
da:d5:98:21:78:37:42:57:17:2e:d8:65:85:3b:ac:41:3f:b9:
f6:33:48:8e:0e:f1:15:5c:94:3b:16:fa:af:fa:f2:d5:34:37:
f9:10:3c:da:83:62:4a:88:ae:09:c1:47:79:09:0b:0d:5e:96:
b4:20:01:23:40:6e:04:e7:e0:1c:e6:64:d9:04:d3:16:9d:9b:
8a:67:f9:1e:df:c1:8f:b9:45:cc:44:46:31:16:9c:49:fb:b6:
03:0d:7c:8a:16:cf:e1:04:78:dc:16:20:fc:44:87:6e:e6:65:
68:1d:c0:8b:7e:c3:cb:73:31:d9:09:c1:fa:c1:c0:78:90:8b:
da:ca:d9:84:15:42:29:e9:c9:c9:fb:01:d7:4e:41:09:d6:db:
23:f0:e9:55:00:d8:b6:26:de:5e:a7:26:14:86:34:3e:40:8b:
4c:87:02:a1:1a:53:ca:c2:c1:0e:dd:31:1d:4c:c1:00:c8:a2:
12:78:e7:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIb5RvniBNkm3dC7xG0IBjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl
NjE0OTEwHhcNMjQwMTAyMDQzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTY4Y2QyYzVmYjAwODExOTgwODNlMzYyOTk1ZTYwNTc3MWZlNmExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlB5EMcAF731IQcX27CRtTrYcEq05
NFf65gFyk6Yz2Gnsxq6lLOVCgVMGiAgKBeWD0FwXBRIlHYuENuNsUOatTZ0Ltm+t
JBr1nKQS3wNxT5CKYCuy8o19utcs8sS/Mq3iSz8pCwph9Jfckr+MrWTPKhnHTSk8
Ee1p5JUxsJ45Cx/jG2D7kUKAVshv9D6OGcpS0fRgBjglII+f1/MNpyYAohARRoIH
6ocg8MGpexJmjDpvMlMCqkvjztOQGu+uIESYxaCW98zlyaHQRWu5fgF4lqNvwgQ0
oUIuuZE3UtQ28zQshqobo2v+wSBDqEKed4mlEI790kdWqyvQkOyw4nWspQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEVozSxfsAgRmAg+NimV5gV3H+ahMB8GA1UdIwQY
MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt
ZDRlZTFkMzg5ZTBkLzEvUldqTkxGLXdDQkdZQ0Q0MktaWG1CWGNmNXFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk
LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/a3MA0G
CSqGSIb3DQEBCwUAA4IBAQC7Q1DMyRyoeV5FPM1HFKeHs5zxNu7XIfYGtQHvTAQT
xdydQ/xCi3j2wggEnJ/WUp/d47OcIBM3ibBOklBC1OruXbOMZ72MQjTa1ZgheDdC
Vxcu2GWFO6xBP7n2M0iODvEVXJQ7Fvqv+vLVNDf5EDzag2JKiK4JwUd5CQsNXpa0
IAEjQG4E5+Ac5mTZBNMWnZuKZ/ke38GPuUXMREYxFpxJ+7YDDXyKFs/hBHjcFiD8
RIdu5mVoHcCLfsPLczHZCcH6wcB4kIvaytmEFUIp6cnJ+wHXTkEJ1tsj8OlVANi2
Jt5epyYUhjQ+QItMhwKhGlPKwsEO3TEdTMEAyKISeOeV
-----END CERTIFICATE-----
Generated at Sun May 26 15:18:19 2024 by rpki-client on console-fra.rpki-client.org