Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1ZiksIKiA_IaCo4Z7-zTrOhcfaY.roa
File: 1ZiksIKiA_IaCo4Z7-zTrOhcfaY.roa (raw, json)
Hash identifier: e70U8m80LLtYqKgW87ZW6B4XJn5lBoTR5PjY+h8CcXw=
Subject key identifier: D5:98:A4:B0:82:A2:03:F2:1A:0A:8E:19:EF:EC:D3:AC:E8:5C:7D:A6
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 018CC348AD2198E69AFAB9309F6876BBF6C5
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1ZiksIKiA_IaCo4Z7-zTrOhcfaY.roa
Signing time: Mon 01 Jan 2024 04:29:29 +0000
ROA not before: Mon 01 Jan 2024 04:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213309
IP address blocks: 193.255.92.0/24 maxlen: 24
193.140.143.0/24 maxlen: 24
193.255.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ad:21:98:e6:9a:fa:b9:30:9f:68:76:bb:f6:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d598a4b082a203f21a0a8e19efecd3ace85c7da6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ca:23:15:74:4e:3c:bf:eb:46:51:3e:ec:16:
54:b6:bb:4d:03:f1:e6:d2:65:88:f5:b6:bc:65:31:
7d:0f:5f:2d:f6:f0:88:f6:c5:70:87:11:5b:76:7e:
2c:7f:a8:05:85:55:af:be:bb:ac:f6:28:98:5f:06:
db:d7:bd:13:42:a6:45:be:39:2d:1e:15:02:26:e0:
9d:da:c0:61:9f:a2:4f:b5:07:d3:f3:04:42:52:8b:
25:3d:74:1d:2b:d9:7e:d5:70:0e:27:36:96:6a:18:
80:3b:f3:a3:af:d8:94:da:b2:f3:77:9a:1f:76:2f:
f8:78:a5:a3:fd:a4:0f:52:85:e5:39:43:db:af:9b:
99:96:1d:81:49:02:c0:37:1b:5c:da:46:46:9d:61:
d5:a8:1e:81:28:ce:db:a2:a8:51:e5:d2:71:84:45:
89:54:b8:7f:a5:76:a5:0c:73:78:4a:d4:86:ea:ca:
96:15:08:5e:6f:36:0b:12:b6:7c:69:f8:b5:c4:61:
cf:af:bf:ff:10:1a:4f:58:cf:97:ba:20:6c:89:10:
95:18:d5:70:fc:f4:24:1d:13:3c:df:48:35:06:7e:
98:79:3f:3f:ac:78:c2:96:13:9f:dd:53:bd:cc:70:
67:62:62:88:9a:f4:28:4d:07:4e:dc:5c:21:5e:a0:
66:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:98:A4:B0:82:A2:03:F2:1A:0A:8E:19:EF:EC:D3:AC:E8:5C:7D:A6
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/1ZiksIKiA_IaCo4Z7-zTrOhcfaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.143.0/24
193.255.92.0/24
193.255.175.0/24
Signature Algorithm: sha256WithRSAEncryption
24:c1:d4:ce:38:e7:f9:9f:24:7a:50:9c:21:70:cc:11:da:d9:
81:81:38:a1:04:47:0a:18:05:e9:0f:28:fe:11:d0:dc:6a:8e:
ea:36:04:1c:0f:d9:ae:15:2c:b5:d7:12:97:3f:0c:e7:5c:81:
f7:95:6b:d1:d2:97:d3:6a:b6:63:54:c7:19:30:06:92:08:2f:
42:ac:27:5b:a6:c8:65:4f:e2:e2:21:3e:5f:57:40:91:5f:89:
01:8f:84:00:17:a4:f7:07:2d:53:73:03:20:39:ce:9f:26:5f:
44:bf:b1:c0:c7:15:c2:96:f0:92:b6:43:ec:08:80:5e:eb:b0:
8c:43:ee:fa:6f:02:f0:20:97:9a:52:b7:4d:38:07:5d:51:86:
63:eb:0e:da:0c:04:ec:79:33:aa:9e:11:e0:04:77:2b:06:96:
a6:71:fb:b8:b1:fd:e2:40:2e:0b:9d:38:7c:96:b4:7a:3f:a8:
ac:b5:b4:bf:04:14:fe:45:e3:9f:b9:25:4c:32:4f:3a:79:0d:
d0:07:30:fa:65:a3:fd:2e:bd:9e:66:7e:8a:8f:c1:c7:d4:17:
b8:ab:3a:f5:3f:82:24:35:22:16:ef:8c:f7:65:6e:9c:0d:a5:
e6:9f:6d:2e:63:51:09:98:35:9f:be:5f:6d:ba:86:bb:f3:0f:
33:92:fc:61
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzDSK0hmOaa+rkwn2h2u/bFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3NTE4ZDE4MDkyM2E3ZjNjMDA2NTNlYzEyYmM3MDJiOTVh
YWI5MDcwHhcNMjQwMTAxMDQyOTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTk4YTRiMDgyYTIwM2YyMWEwYThlMTllZmVjZDNhY2U4NWM3ZGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhsojFXROPL/rRlE+7BZUtrtNA/Hm
0mWI9ba8ZTF9D18t9vCI9sVwhxFbdn4sf6gFhVWvvrus9iiYXwbb170TQqZFvjkt
HhUCJuCd2sBhn6JPtQfT8wRCUoslPXQdK9l+1XAOJzaWahiAO/Ojr9iU2rLzd5of
di/4eKWj/aQPUoXlOUPbr5uZlh2BSQLANxtc2kZGnWHVqB6BKM7boqhR5dJxhEWJ
VLh/pXalDHN4StSG6sqWFQhebzYLErZ8afi1xGHPr7//EBpPWM+XuiBsiRCVGNVw
/PQkHRM830g1Bn6YeT8/rHjClhOf3VO9zHBnYmKImvQoTQdO3FwhXqBmXwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFNWYpLCCogPyGgqOGe/s06zoXH2mMB8GA1UdIwQY
MBaAFDdRjRgJI6fzwAZT7BK8cCuVqrkHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgt
NTk2NzE5MjBmYjYwLzEvMVppa3NJS2lBX0lhQ280WjctelRyT2hjZmFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgtNTk2NzE5MjBmYjYw
LzEvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwYyPAwQA
wf9cAwQAwf+vMA0GCSqGSIb3DQEBCwUAA4IBAQAkwdTOOOf5nyR6UJwhcMwR2tmB
gTihBEcKGAXpDyj+EdDcao7qNgQcD9muFSy11xKXPwznXIH3lWvR0pfTarZjVMcZ
MAaSCC9CrCdbpshlT+LiIT5fV0CRX4kBj4QAF6T3By1TcwMgOc6fJl9Ev7HAxxXC
lvCStkPsCIBe67CMQ+76bwLwIJeaUrdNOAddUYZj6w7aDATseTOqnhHgBHcrBpam
cfu4sf3iQC4LnTh8lrR6P6istbS/BBT+ReOfuSVMMk86eQ3QBzD6ZaP9Lr2eZn6K
j8HH1Be4qzr1P4IkNSIW74z3ZW6cDaXmn20uY1EJmDWfvl9tuoa78w8zkvxh
-----END CERTIFICATE-----
Generated at Sat Jun 1 13:52:41 2024 by rpki-client on console-fra.rpki-client.org