Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/0iJDMueCMaay1Alhf9r-BkjpaWY.roa
File: 0iJDMueCMaay1Alhf9r-BkjpaWY.roa (raw, json)
Hash identifier: 8gJ7bGuL++uz6IAsLG4A+wnRPmEZjMxhBBtsWmr93tw=
Subject key identifier: D2:22:43:32:E7:82:31:A6:B2:D4:09:61:7F:DA:FE:06:48:E9:69:66
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 018CC3B6E07ADF239C0A3C7A49B1C0C73FAE
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/0iJDMueCMaay1Alhf9r-BkjpaWY.roa
Signing time: Mon 01 Jan 2024 06:29:51 +0000
ROA not before: Mon 01 Jan 2024 06:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26769
IP address blocks: 2001:4de0:2205::/48 maxlen: 48
2001:4de0:3005::/48 maxlen: 48
2001:4de0:4105::/48 maxlen: 48
2001:4de0:2003::/48 maxlen: 48
2001:4de0:2203::/48 maxlen: 48
2001:4de0:3103::/48 maxlen: 48
2001:4de0:4003::/48 maxlen: 48
2001:4de0:4103::/48 maxlen: 48
2001:4de0:2204::/48 maxlen: 48
2001:4de0:3104::/48 maxlen: 48
2001:4de0:4004::/48 maxlen: 48
2001:4de0:2107::/48 maxlen: 48
2001:4de0:4001:5::/64 maxlen: 64
2001:4de0:4008::/48 maxlen: 48
2001:4de0:2106::/48 maxlen: 48
2001:4de0:3106::/48 maxlen: 48
2001:4de0:4001:1::/64 maxlen: 64
2001:4de0:2001::/48 maxlen: 48
2001:4de0:2201::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 18:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:e0:7a:df:23:9c:0a:3c:7a:49:b1:c0:c7:3f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Jan 1 06:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2224332e78231a6b2d409617fdafe0648e96966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:34:70:a6:eb:14:c3:84:22:10:50:23:c3:96:
c5:4e:24:90:76:80:cf:b2:16:fa:8c:87:21:f4:30:
fd:eb:66:b9:b1:ff:38:20:ee:85:16:c4:74:01:b9:
5c:3b:78:54:ff:aa:28:d6:5c:09:8f:40:5e:2b:1c:
26:47:5f:be:c8:c4:c7:b6:13:e0:52:4d:4d:97:7d:
ac:61:e6:a9:4a:71:fd:54:f8:41:10:3e:93:8b:3b:
43:9d:e2:d2:69:00:f3:b4:0a:a3:4f:e9:51:74:f5:
04:84:e1:18:89:65:1d:ee:71:9f:1b:d2:2a:13:92:
a5:c6:90:eb:be:ab:f4:3e:7a:89:72:a7:08:37:21:
16:91:23:16:88:5f:70:ea:68:b9:a8:01:71:a1:fe:
18:b7:15:64:7e:a8:c3:29:15:5c:c0:e3:a9:19:a0:
ac:b2:bf:14:fa:e8:36:bd:3c:a8:07:6c:82:f7:df:
cf:e6:01:fe:cd:87:ac:3e:8a:9c:5d:34:b2:a2:29:
b7:e7:cd:21:cf:11:57:34:20:19:db:8b:84:f5:1a:
dc:ea:28:b5:33:6b:35:f8:33:45:9e:17:41:7d:4b:
99:04:a9:bd:f6:0c:c3:75:5f:a6:e8:cc:53:d0:51:
b1:13:c1:ff:12:fb:70:91:68:67:fb:62:97:ff:ad:
40:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:22:43:32:E7:82:31:A6:B2:D4:09:61:7F:DA:FE:06:48:E9:69:66
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/0iJDMueCMaay1Alhf9r-BkjpaWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4de0:2001::/48
2001:4de0:2003::/48
2001:4de0:2106::/47
2001:4de0:2201::/48
2001:4de0:2203::-2001:4de0:2205:ffff:ffff:ffff:ffff:ffff
2001:4de0:3005::/48
2001:4de0:3103::-2001:4de0:3104:ffff:ffff:ffff:ffff:ffff
2001:4de0:3106::/48
2001:4de0:4001:1::/64
2001:4de0:4001:5::/64
2001:4de0:4003::-2001:4de0:4004:ffff:ffff:ffff:ffff:ffff
2001:4de0:4008::/48
2001:4de0:4103::/48
2001:4de0:4105::/48
Signature Algorithm: sha256WithRSAEncryption
be:a0:ac:e6:7b:76:ea:89:24:2a:42:a9:97:b9:6f:e1:d8:86:
70:d7:78:50:d1:05:ec:16:4b:4e:b2:01:17:fe:50:14:72:19:
30:85:cb:fd:d6:e6:af:2d:a0:e6:11:aa:cc:03:de:82:0f:4a:
5d:ee:d1:6f:5e:f1:9e:46:99:e2:ec:d0:09:4d:39:30:e0:3a:
c3:98:82:a3:24:17:8f:50:07:a2:f5:98:3d:f0:03:30:17:5f:
bd:fb:07:61:55:07:1d:e4:4a:db:a1:d3:72:e9:05:14:53:d2:
7d:02:51:8a:c0:c8:c9:17:f1:85:68:5f:c6:f7:c2:85:5e:dd:
1f:40:9b:8b:55:b8:9c:23:a2:e3:c9:6e:79:56:ca:3d:25:a1:
f1:e7:d6:6f:c6:b0:86:97:85:17:ae:b6:ba:7e:7f:77:ad:75:
34:b5:26:2c:0a:0a:b6:a9:d9:09:6b:92:68:52:d0:12:88:1f:
d8:f6:12:34:6c:32:f8:72:97:21:ea:69:3b:f4:bc:3b:a1:05:
ff:1f:3c:d7:2e:b4:87:aa:d4:a3:9b:5f:8c:fd:c0:c2:51:5d:
f2:24:cf:b7:be:32:34:15:2d:01:73:97:74:67:e9:a5:db:89:
77:4d:60:38:8d:7a:26:90:0a:6c:46:1b:dd:39:2d:81:11:cb:
54:30:f3:34
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAYzDtuB63yOcCjx6SbHAxz+uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3OWJiYTI4MDVhOTg4OTU0ZTRmZWM0MjU3MDUzMGYxNmY5
ZTcwOTMwHhcNMjQwMTAxMDYyOTUxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjIyNDMzMmU3ODIzMWE2YjJkNDA5NjE3ZmRhZmUwNjQ4ZTk2OTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgjRwpusUw4QiEFAjw5bFTiSQdoDP
shb6jIch9DD962a5sf84IO6FFsR0AblcO3hU/6oo1lwJj0BeKxwmR1++yMTHthPg
Uk1Nl32sYeapSnH9VPhBED6TiztDneLSaQDztAqjT+lRdPUEhOEYiWUd7nGfG9Iq
E5KlxpDrvqv0PnqJcqcINyEWkSMWiF9w6mi5qAFxof4YtxVkfqjDKRVcwOOpGaCs
sr8U+ug2vTyoB2yC99/P5gH+zYesPoqcXTSyoim3580hzxFXNCAZ24uE9Rrc6ii1
M2s1+DNFnhdBfUuZBKm99gzDdV+m6MxT0FGxE8H/EvtwkWhn+2KX/61AhQIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFNIiQzLngjGmstQJYX/a/gZI6WlmMB8GA1UdIwQY
MBaAFKebuigFqYiVTk/sQlcFMPFvnnCTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDV1NktBV3BpSlZPVC14Q1Z3VXc4Vy1lY0pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kMTQwZmItMDNhZS00NWQ5LThkZGMt
ZTFlZDlkZDJhMDJhLzEvMGlKRE11ZUNNYWF5MUFsaGY5ci1Ca2pwYVdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9kMTQwZmItMDNhZS00NWQ5LThkZGMtZTFlZDlkZDJhMDJh
LzEvcDV1NktBV3BpSlZPVC14Q1Z3VXc4Vy1lY0pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHABggrBgEFBQcBBwEB/wSBsDCBrTCBqgQCAAIwgaMDBwAg
AU3gIAEDBwAgAU3gIAMDBwEgAU3gIQYDBwAgAU3gIgEwEgMHACABTeAiAwMHASAB
TeAiBAMHACABTeAwBTASAwcAIAFN4DEDAwcAIAFN4DEEAwcAIAFN4DEGAwkAIAFN
4EABAAEDCQAgAU3gQAEABTASAwcAIAFN4EADAwcAIAFN4EAEAwcAIAFN4EAIAwcA
IAFN4EEDAwcAIAFN4EEFMA0GCSqGSIb3DQEBCwUAA4IBAQC+oKzme3bqiSQqQqmX
uW/h2IZw13hQ0QXsFktOsgEX/lAUchkwhcv91uavLaDmEarMA96CD0pd7tFvXvGe
Rpni7NAJTTkw4DrDmIKjJBePUAei9Zg98AMwF1+9+wdhVQcd5ErbodNy6QUUU9J9
AlGKwMjJF/GFaF/G98KFXt0fQJuLVbicI6LjyW55Vso9JaHx59ZvxrCGl4UXrra6
fn93rXU0tSYsCgq2qdkJa5JoUtASiB/Y9hI0bDL4cpch6mk79Lw7oQX/HzzXLrSH
qtSjm1+M/cDCUV3yJM+3vjI0FS0Bc5d0Z+ml24l3TWA4jXomkApsRhvdOS2BEctU
MPM0
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:21:16 2024 by rpki-client on console-ams.rpki-client.org