Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fSb3gJvxqvKP3wACDRy9FHIeVmE.roa
File: fSb3gJvxqvKP3wACDRy9FHIeVmE.roa (raw, json)
Hash identifier: 1WDByAHQJWNEsuIR3bPrzEdT3yP25nJ4yX5ixyF3Sf8=
Subject key identifier: 7D:26:F7:80:9B:F1:AA:F2:8F:DF:00:02:0D:1C:BD:14:72:1E:56:61
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019299A62C33EF0FB0972AB5CE9C9D22FBF2
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fSb3gJvxqvKP3wACDRy9FHIeVmE.roa
Signing time: Thu 17 Oct 2024 08:44:17 +0000
ROA not before: Thu 17 Oct 2024 08:44:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54852
IP address blocks: 2a09:7b00::/29 maxlen: 29
2a0f:1740::/29 maxlen: 29
2a10:31c0::/29 maxlen: 29
2a10:34c0::/29 maxlen: 29
2a10:4e00::/29 maxlen: 29
2a11:1c40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Oct 2024 19:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:99:a6:2c:33:ef:0f:b0:97:2a:b5:ce:9c:9d:22:fb:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 17 08:44:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d26f7809bf1aaf28fdf00020d1cbd14721e5661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:ef:22:30:c7:24:d7:84:f4:d2:86:69:02:
9e:02:d9:ee:8c:46:dc:b1:6a:b0:ae:10:d9:5d:83:
13:92:9e:bc:5f:4a:b7:2a:ab:71:a1:4f:2e:c3:f8:
6c:37:e6:8c:a8:3f:bf:09:82:25:c2:97:c2:43:53:
b9:ec:08:98:b0:5f:5f:eb:4c:4b:d4:06:92:6a:97:
04:c0:f2:76:aa:5e:31:94:7f:97:b7:8c:80:11:89:
bf:72:14:e8:9f:e9:64:a3:df:32:01:31:f5:d6:a2:
3b:68:36:14:9e:4f:ca:2e:20:3a:47:d2:7e:17:f4:
ef:29:12:40:3c:bd:cb:f9:9a:ca:fc:50:55:c9:b1:
36:16:82:d6:7e:46:6a:72:0c:75:31:d3:a8:01:f5:
7a:32:77:b5:03:13:ff:b7:08:98:cb:8d:8a:d8:48:
75:a0:4f:d4:95:d5:b8:23:09:20:f0:ae:51:83:08:
4a:af:7e:1b:bd:a2:79:64:3c:ab:7a:31:b7:f9:75:
14:33:1a:ec:42:aa:ba:20:eb:e8:1d:c3:81:c0:b9:
0a:c0:7c:f1:aa:70:ef:6e:34:a4:23:7a:95:01:a3:
fc:a1:ea:13:5b:4f:4a:bf:f9:ac:6d:47:f8:17:33:
1f:dd:b5:b2:65:b0:4a:d2:35:b9:82:a1:e6:f2:01:
fa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:26:F7:80:9B:F1:AA:F2:8F:DF:00:02:0D:1C:BD:14:72:1E:56:61
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fSb3gJvxqvKP3wACDRy9FHIeVmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7b00::/29
2a0f:1740::/29
2a10:31c0::/29
2a10:34c0::/29
2a10:4e00::/29
2a11:1c40::/29
Signature Algorithm: sha256WithRSAEncryption
56:c0:4e:7f:62:98:65:98:45:89:50:52:5c:95:e0:2b:1e:76:
ce:52:55:57:12:ad:d0:0d:ee:8c:ef:ab:7e:96:22:e2:f0:6d:
78:04:e8:ca:c0:42:2d:c0:a2:e4:2e:41:0c:64:31:4d:02:4e:
a3:8e:2b:a4:92:69:84:f1:1c:65:0a:19:98:2e:54:d6:51:96:
93:13:73:ea:e1:7a:4e:b3:a2:bc:d9:3c:e5:e5:c0:e6:23:7b:
87:b2:ae:32:3f:70:ac:ff:38:89:3c:f3:f8:8f:1e:16:a0:10:
94:95:78:5b:30:a2:5b:db:ef:ae:a9:31:4f:e3:b8:96:d0:69:
b3:06:be:aa:ce:9d:57:1d:69:ec:50:6b:b7:cc:10:e7:39:fb:
8e:b6:f9:72:24:7b:44:a1:eb:4e:2a:8e:b6:ad:62:02:fd:46:
7a:97:82:f5:0b:82:5b:e4:4e:94:dc:88:1d:4f:e2:84:00:13:
5e:3e:91:05:b7:f1:9b:40:6b:e3:a6:0c:4c:e1:fe:04:3f:c0:
3c:ad:43:d5:11:16:b7:e2:55:23:1e:4d:bb:96:f0:a6:4d:f6:
63:7d:c6:66:be:2c:eb:63:40:0c:9e:60:a6:e3:a3:e7:fa:b9:
d2:60:f7:0f:26:29:09:1f:6c:a9:37:6e:48:f0:c8:2f:d7:d5:
03:07:b6:4c
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAZKZpiwz7w+wlyq1zpydIvvyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQxMDE3MDg0NDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDI2Zjc4MDliZjFhYWYyOGZkZjAwMDIwZDFjYmQxNDcyMWU1NjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9LvIjDHJNeE9NKGaQKeAtnujEbc
sWqwrhDZXYMTkp68X0q3KqtxoU8uw/hsN+aMqD+/CYIlwpfCQ1O57AiYsF9f60xL
1AaSapcEwPJ2ql4xlH+Xt4yAEYm/chTon+lko98yATH11qI7aDYUnk/KLiA6R9J+
F/TvKRJAPL3L+ZrK/FBVybE2FoLWfkZqcgx1MdOoAfV6Mne1AxP/twiYy42K2Eh1
oE/UldW4Iwkg8K5RgwhKr34bvaJ5ZDyrejG3+XUUMxrsQqq6IOvoHcOBwLkKwHzx
qnDvbjSkI3qVAaP8oeoTW09Kv/msbUf4FzMf3bWyZbBK0jW5gqHm8gH6jQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFH0m94Cb8aryj98AAg0cvRRyHlZhMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvZlNiM2dKdnhxdktQM3dBQ0RSeTlGSEllVm1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwUDKgl7AAMF
AyoPF0ADBQMqEDHAAwUDKhA0wAMFAyoQTgADBQMqERxAMA0GCSqGSIb3DQEBCwUA
A4IBAQBWwE5/YphlmEWJUFJcleArHnbOUlVXEq3QDe6M76t+liLi8G14BOjKwEIt
wKLkLkEMZDFNAk6jjiukkmmE8RxlChmYLlTWUZaTE3Pq4XpOs6K82Tzl5cDmI3uH
sq4yP3Cs/ziJPPP4jx4WoBCUlXhbMKJb2++uqTFP47iW0GmzBr6qzp1XHWnsUGu3
zBDnOfuOtvlyJHtEoetOKo62rWIC/UZ6l4L1C4Jb5E6U3IgdT+KEABNePpEFt/Gb
QGvjpgxM4f4EP8A8rUPVERa34lUjHk27lvCmTfZjfcZmvizrY0AMnmCm46Pn+rnS
YPcPJikJH2ypN25I8Mgv19UDB7ZM
-----END CERTIFICATE-----
Generated at Sat Oct 26 00:31:21 2024 by rpki-client on console-fra.rpki-client.org