Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/URdHpLliQS0f_xW89x43dy03NFM.roa
File: URdHpLliQS0f_xW89x43dy03NFM.roa (raw, json)
Hash identifier: slk/BTTaKKDTHH1yknm1NTv+Ov77fSUjZtooH73b8sg=
Subject key identifier: 51:17:47:A4:B9:62:41:2D:1F:FF:15:BC:F7:1E:37:77:2D:37:34:53
Certificate issuer: /CN=2ef957aba2ef00352850e202464c71d33ca81448
Certificate serial: 0194258F8AF1126FBC323BC95704D141CEB2
Authority key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/URdHpLliQS0f_xW89x43dy03NFM.roa
Signing time: Thu 02 Jan 2025 05:49:11 +0000
ROA not before: Thu 02 Jan 2025 05:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2089
IP address blocks: 193.48.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 20:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:8a:f1:12:6f:bc:32:3b:c9:57:04:d1:41:ce:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ef957aba2ef00352850e202464c71d33ca81448
Validity
Not Before: Jan 2 05:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=511747a4b962412d1fff15bcf71e37772d373453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:22:7f:f5:f4:d9:b2:2b:6f:b4:46:52:33:ac:
bb:2e:3d:77:14:9b:cf:0f:b2:7a:b3:06:2e:38:cb:
db:6d:94:47:ee:2b:de:5c:9f:f9:7f:cf:74:40:59:
e9:cb:b3:22:05:eb:ce:63:0d:cb:8a:3c:dd:ab:ac:
60:39:09:12:06:4a:5e:9e:7c:f9:77:a9:82:d7:36:
dd:37:c7:58:0f:ad:e1:84:ce:3d:d6:50:56:e8:06:
13:f4:80:ed:d3:d4:9f:d2:aa:23:19:32:64:76:18:
ed:66:19:62:a5:e0:6e:b1:42:a7:b0:a2:d3:a7:a4:
fe:14:32:16:dd:9e:ea:7c:99:bc:b9:57:ce:37:d6:
61:9a:00:5e:a0:22:4a:b4:6d:29:fe:f5:07:6d:a0:
4e:17:21:b0:8b:e8:14:5a:18:21:e2:da:a0:8d:97:
f7:8d:cd:75:b4:ce:cd:6d:08:26:21:8c:dc:a4:11:
d0:8e:d4:78:60:ae:a1:17:d2:57:32:07:07:33:dd:
4a:4e:c1:24:98:67:52:fe:5a:a3:e2:1f:a2:2b:d9:
e0:5c:57:20:fb:3d:68:d8:9e:df:4b:54:35:69:37:
82:f4:82:59:c6:d7:62:3e:77:8b:70:34:15:a7:13:
0b:40:c8:f4:d1:9c:b3:4d:4b:bc:f3:20:30:0f:a0:
06:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:17:47:A4:B9:62:41:2D:1F:FF:15:BC:F7:1E:37:77:2D:37:34:53
X509v3 Authority Key Identifier:
keyid:2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/URdHpLliQS0f_xW89x43dy03NFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.48.92.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:f9:81:a5:b5:fd:7c:dc:fc:15:80:4b:3b:30:bb:f7:48:04:
3e:82:fc:80:49:03:1c:87:fe:7f:f1:b2:6f:30:1b:ba:0c:ae:
f7:ac:18:2b:83:97:7f:e4:4a:80:01:1a:ba:80:38:cc:db:13:
fc:c3:28:ff:ca:07:32:38:59:53:cd:24:38:3b:68:d5:42:58:
e8:4d:ff:38:e0:06:da:3d:7a:52:c9:13:d5:aa:1e:b5:48:be:
20:c0:cc:59:ce:33:88:dc:d1:f1:8c:d1:be:be:a9:9b:a4:89:
41:37:35:c4:bc:ad:4b:72:4e:4a:a0:4c:cf:3d:14:86:75:df:
09:31:28:66:62:40:fb:f3:ed:19:e0:13:54:22:9f:d9:61:27:
3d:be:05:fd:6c:d0:d7:b8:aa:5d:ed:fe:cc:8d:2f:b9:40:72:
b3:85:ea:dd:c2:72:2d:6d:2d:2a:89:5e:67:19:02:8d:3a:3c:
4f:1b:b8:6e:8c:45:23:e7:57:a3:8f:37:03:6e:8b:74:70:f9:
e7:93:9b:0b:c2:f2:3e:3b:0f:ac:30:56:b1:a2:f3:67:f5:18:
c8:cd:54:26:b8:40:9b:9c:8a:8c:b4:fd:22:f0:24:1a:fd:e7:
49:e2:b7:df:89:97:3a:54:d3:3d:06:1e:9c:c5:a7:2d:ee:ac:
89:4b:fa:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlj4rxEm+8MjvJVwTRQc6yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlZjk1N2FiYTJlZjAwMzUyODUwZTIwMjQ2NGM3MWQzM2Nh
ODE0NDgwHhcNMjUwMTAyMDU0OTExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTE3NDdhNGI5NjI0MTJkMWZmZjE1YmNmNzFlMzc3NzJkMzczNDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyJ/9fTZsitvtEZSM6y7Lj13FJvP
D7J6swYuOMvbbZRH7iveXJ/5f890QFnpy7MiBevOYw3Lijzdq6xgOQkSBkpennz5
d6mC1zbdN8dYD63hhM491lBW6AYT9IDt09Sf0qojGTJkdhjtZhlipeBusUKnsKLT
p6T+FDIW3Z7qfJm8uVfON9ZhmgBeoCJKtG0p/vUHbaBOFyGwi+gUWhgh4tqgjZf3
jc11tM7NbQgmIYzcpBHQjtR4YK6hF9JXMgcHM91KTsEkmGdS/lqj4h+iK9ngXFcg
+z1o2J7fS1Q1aTeC9IJZxtdiPneLcDQVpxMLQMj00ZyzTUu88yAwD6AGZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFEXR6S5YkEtH/8VvPceN3ctNzRTMB8GA1UdIwQY
MBaAFC75V6ui7wA1KFDiAkZMcdM8qBRIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHZsWHE2THZBRFVvVU9JQ1JreHgwenlvRkVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hNTg0ZTQtY2NkNC00YzRmLTlkMTYt
MDRhMjdjNGQ1NDUzLzEvVVJkSHBMbGlRUzBmX3hXODl4NDNkeTAzTkZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9hNTg0ZTQtY2NkNC00YzRmLTlkMTYtMDRhMjdjNGQ1NDUz
LzEvTHZsWHE2THZBRFVvVU9JQ1JreHgwenlvRkVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTBcMA0G
CSqGSIb3DQEBCwUAA4IBAQAu+YGltf183PwVgEs7MLv3SAQ+gvyASQMch/5/8bJv
MBu6DK73rBgrg5d/5EqAARq6gDjM2xP8wyj/ygcyOFlTzSQ4O2jVQljoTf844Aba
PXpSyRPVqh61SL4gwMxZzjOI3NHxjNG+vqmbpIlBNzXEvK1Lck5KoEzPPRSGdd8J
MShmYkD78+0Z4BNUIp/ZYSc9vgX9bNDXuKpd7f7MjS+5QHKzherdwnItbS0qiV5n
GQKNOjxPG7hujEUj51ejjzcDbot0cPnnk5sLwvI+Ow+sMFaxovNn9RjIzVQmuECb
nIqMtP0i8CQa/edJ4rffiZc6VNM9Bh6cxact7qyJS/qd
-----END CERTIFICATE-----
Generated at Tue Apr 8 05:03:55 2025 by rpki-client