Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/IDrtf-79kf654fwNFXYp_7F91wg.roa
File: IDrtf-79kf654fwNFXYp_7F91wg.roa (raw, json)
Hash identifier: k33qQNA/7cN5k2IVfs4euZvuG/tv8cjfLreS8qcWMjo=
Subject key identifier: 20:3A:ED:7F:EE:FD:91:FE:B9:E1:FC:0D:15:76:29:FF:B1:7D:D7:08
Certificate issuer: /CN=0a36b97736762d69080b43d9b00c61af1d311d8c
Certificate serial: 01919D6931E1E29775E4DE14373E988C22A0
Authority key identifier: 0A:36:B9:77:36:76:2D:69:08:0B:43:D9:B0:0C:61:AF:1D:31:1D:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/IDrtf-79kf654fwNFXYp_7F91wg.roa
Signing time: Thu 29 Aug 2024 09:13:22 +0000
ROA not before: Thu 29 Aug 2024 09:13:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209480
IP address blocks: 194.50.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 21:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:69:31:e1:e2:97:75:e4:de:14:37:3e:98:8c:22:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a36b97736762d69080b43d9b00c61af1d311d8c
Validity
Not Before: Aug 29 09:13:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=203aed7feefd91feb9e1fc0d157629ffb17dd708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:80:57:1f:29:be:1f:87:71:18:fb:0f:fa:62:
87:b5:15:39:5f:63:42:56:98:c2:32:a1:7d:ce:2c:
b9:a9:b1:cd:d1:68:5d:49:20:49:c8:30:d9:5b:a8:
6a:71:8b:45:67:d8:26:d3:94:ad:c2:27:b3:2e:ba:
69:3c:1a:3b:72:13:1b:5c:d2:75:31:6c:c9:2c:6d:
1b:da:7c:dd:b4:75:85:60:6b:51:56:42:4f:8b:25:
b4:e8:81:23:aa:93:e2:e1:bb:dc:d9:43:41:8a:e1:
0b:9c:a4:1b:7d:f1:51:9d:df:f8:a0:73:3d:88:c3:
18:9b:6b:b5:7f:37:a4:e0:71:a1:f3:8a:82:96:ff:
78:a4:b8:3b:31:06:3b:24:d3:7f:fb:d0:0a:f4:ca:
63:48:b8:2d:2e:cd:46:11:11:e9:f7:cd:ae:ae:0c:
55:f6:bc:59:f9:d3:0b:44:2a:c8:20:c2:db:34:e9:
a1:e1:f2:27:96:1a:01:13:38:87:30:78:45:5b:9f:
e0:7a:f5:1f:75:ec:bb:76:54:d1:a0:e6:5b:49:16:
e8:0d:b1:df:0f:d7:1e:13:bb:dd:03:8b:49:69:d7:
fd:74:a4:7c:e2:0b:cb:f6:3c:8b:78:99:2c:4b:ff:
7c:22:7a:ba:8b:bf:47:e3:61:a6:01:fe:6d:d7:34:
95:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3A:ED:7F:EE:FD:91:FE:B9:E1:FC:0D:15:76:29:FF:B1:7D:D7:08
X509v3 Authority Key Identifier:
keyid:0A:36:B9:77:36:76:2D:69:08:0B:43:D9:B0:0C:61:AF:1D:31:1D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/IDrtf-79kf654fwNFXYp_7F91wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.36.0/24
Signature Algorithm: sha256WithRSAEncryption
23:fa:2b:18:bd:df:34:98:46:73:2e:b0:ab:d9:4d:bc:0a:b6:
b3:9b:3f:d0:5f:ac:78:fc:b9:91:c0:4c:96:1d:9f:69:96:f2:
81:73:d5:7c:34:19:35:e7:83:17:d0:45:98:82:3d:d6:db:5d:
4c:45:9c:60:a9:83:b6:be:31:8f:24:99:0c:f0:65:01:2b:cb:
a7:b9:bf:d7:1b:77:bc:e8:50:a2:21:27:c6:5c:98:99:77:37:
fc:32:12:fe:9f:11:2c:79:37:c1:de:f3:8f:b4:f1:05:93:ce:
23:31:cd:b7:3b:84:04:ba:28:72:8b:10:49:9a:40:5a:2a:21:
55:13:49:c5:1c:3b:db:38:cb:78:43:44:ed:d4:14:e7:8e:9f:
6d:1b:14:c7:f7:e4:fc:b2:96:c8:0d:95:ec:0d:72:02:fd:d8:
d6:47:7d:ee:51:7d:a0:3d:84:1a:9a:7c:ea:29:dc:0e:26:93:
f2:01:9e:90:c3:c4:6f:e1:ba:0c:ea:24:78:d8:ad:62:9c:7d:
72:9c:67:b6:f0:a1:56:79:d7:79:af:57:6f:28:82:4e:cc:d9:
96:08:84:62:78:87:0e:05:e5:99:18:1e:1a:58:74:a9:eb:24:
af:c1:4d:fa:e8:92:0f:80:95:1c:46:a5:82:14:00:ee:c1:5d:
87:b2:3c:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGdaTHh4pd15N4UNz6YjCKgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMzZiOTc3MzY3NjJkNjkwODBiNDNkOWIwMGM2MWFmMWQz
MTFkOGMwHhcNMjQwODI5MDkxMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDNhZWQ3ZmVlZmQ5MWZlYjllMWZjMGQxNTc2MjlmZmIxN2RkNzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14BXHym+H4dxGPsP+mKHtRU5X2NC
VpjCMqF9ziy5qbHN0WhdSSBJyDDZW6hqcYtFZ9gm05StwiezLrppPBo7chMbXNJ1
MWzJLG0b2nzdtHWFYGtRVkJPiyW06IEjqpPi4bvc2UNBiuELnKQbffFRnd/4oHM9
iMMYm2u1fzek4HGh84qClv94pLg7MQY7JNN/+9AK9MpjSLgtLs1GERHp982urgxV
9rxZ+dMLRCrIIMLbNOmh4fInlhoBEziHMHhFW5/gevUfdey7dlTRoOZbSRboDbHf
D9ceE7vdA4tJadf9dKR84gvL9jyLeJksS/98Inq6i79H42GmAf5t1zSVgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCA67X/u/ZH+ueH8DRV2Kf+xfdcIMB8GA1UdIwQY
MBaAFAo2uXc2di1pCAtD2bAMYa8dMR2MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2phNWR6WjJMV2tJQzBQWnNBeGhyeDB4SFl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9kY2QyZWQtZDM1Yi00Y2Q1LWE4MjIt
MWEzMjI2ODMyYzkxLzEvSURydGYtNzlrZjY1NGZ3TkZYWXBfN0Y5MXdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9kY2QyZWQtZDM1Yi00Y2Q1LWE4MjItMWEzMjI2ODMyYzkx
LzEvQ2phNWR6WjJMV2tJQzBQWnNBeGhyeDB4SFl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjIkMA0G
CSqGSIb3DQEBCwUAA4IBAQAj+isYvd80mEZzLrCr2U28Crazmz/QX6x4/LmRwEyW
HZ9plvKBc9V8NBk154MX0EWYgj3W211MRZxgqYO2vjGPJJkM8GUBK8unub/XG3e8
6FCiISfGXJiZdzf8MhL+nxEseTfB3vOPtPEFk84jMc23O4QEuihyixBJmkBaKiFV
E0nFHDvbOMt4Q0Tt1BTnjp9tGxTH9+T8spbIDZXsDXIC/djWR33uUX2gPYQamnzq
KdwOJpPyAZ6Qw8Rv4boM6iR42K1inH1ynGe28KFWedd5r1dvKIJOzNmWCIRieIcO
BeWZGB4aWHSp6ySvwU366JIPgJUcRqWCFADuwV2HsjyQ
-----END CERTIFICATE-----
Generated at Tue Nov 26 03:27:11 2024 by rpki-client on console-ams.rpki-client.org