Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/AUWisMsK5h3E1jxMp6yqH0TxXRc.roa
File: AUWisMsK5h3E1jxMp6yqH0TxXRc.roa (raw, json)
Hash identifier: OwD8E7YPDbBMiqeFjLpgHLLm2VPQJQyl7/FPvjjlvBg=
Subject key identifier: 01:45:A2:B0:CB:0A:E6:1D:C4:D6:3C:4C:A7:AC:AA:1F:44:F1:5D:17
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 01926B3C05B6C126980A82840E66481836B5
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/AUWisMsK5h3E1jxMp6yqH0TxXRc.roa
Signing time: Tue 08 Oct 2024 08:25:48 +0000
ROA not before: Tue 08 Oct 2024 08:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6890
IP address blocks: 2001:67c:2ed4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6b:3c:05:b6:c1:26:98:0a:82:84:0e:66:48:18:36:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Oct 8 08:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0145a2b0cb0ae61dc4d63c4ca7acaa1f44f15d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d7:6b:f8:8c:f0:c7:87:9d:c2:ad:8b:c4:e7:
ea:1a:94:bf:6d:26:3e:e7:64:d6:1f:0d:74:57:4e:
9c:a9:f6:7e:f0:de:a4:ae:d8:3b:2d:b0:97:82:da:
61:06:e1:9e:ed:f4:7c:9d:78:9c:85:04:13:36:7f:
ae:f5:53:de:8e:df:33:b6:f8:41:66:3f:2b:6e:9d:
29:15:2c:4a:6d:82:ba:50:bb:81:2c:87:90:c8:01:
aa:06:2a:65:96:0e:b7:37:3c:9a:16:9d:1e:55:0f:
f3:06:62:b1:c6:72:3a:cd:d7:d0:1d:44:ca:f3:1e:
22:06:2b:c1:0f:f9:87:ab:9d:5a:10:fe:8f:8d:30:
e7:e2:73:52:68:1d:da:50:df:92:8d:1a:c3:b3:32:
0b:2c:96:50:8f:43:9c:20:53:e0:82:74:1e:17:ef:
6b:90:29:8f:6b:86:c4:8b:92:87:7a:f5:16:58:76:
71:ce:0c:09:1a:79:7a:1a:3d:06:83:fa:ea:09:10:
64:e2:24:7e:5b:3d:58:46:50:65:56:05:50:4a:19:
fd:b2:3d:91:ce:ec:f1:bc:30:3e:0e:bf:de:a1:0b:
7f:a2:cc:81:f8:5c:49:4e:5d:74:2b:81:68:3e:39:
36:b4:ef:7c:bf:a7:7a:79:8f:39:19:35:2e:ce:3a:
33:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:45:A2:B0:CB:0A:E6:1D:C4:D6:3C:4C:A7:AC:AA:1F:44:F1:5D:17
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/AUWisMsK5h3E1jxMp6yqH0TxXRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2ed4::/48
Signature Algorithm: sha256WithRSAEncryption
77:22:65:38:04:ea:42:2c:ca:b5:4e:50:e4:f0:49:a4:a2:89:
f5:50:9a:d6:ff:b2:28:85:5e:32:df:93:f6:e3:c9:b8:0c:a1:
bd:12:0a:d2:90:be:93:94:7e:18:51:aa:fc:01:e8:3f:4f:85:
f1:01:8b:a7:0a:65:79:47:1d:8a:e9:9d:80:67:16:d4:cc:f2:
f1:74:8d:f4:c7:1b:de:67:58:08:e1:f9:9e:cc:dd:1d:ee:73:
dc:22:da:8b:2a:d4:a0:15:59:19:cc:a3:84:ea:4b:f3:94:04:
34:d9:ed:62:75:74:f2:fc:64:9b:7d:45:3b:70:89:9e:05:cd:
2e:40:65:dd:79:19:60:0a:47:3f:66:ea:5c:a7:94:27:12:f1:
ac:0d:0d:09:8c:38:c8:5d:b5:84:81:e6:b8:83:b8:3d:8d:72:
e8:42:65:1a:0b:20:49:c5:81:06:5f:58:a7:46:eb:16:95:4f:
b9:e4:6a:70:19:93:b0:d4:05:6d:95:2d:70:2c:6d:b3:f0:1f:
b7:19:58:79:41:f1:b7:dc:2d:25:b5:3e:67:c8:4e:bd:48:79:
b4:1a:b7:2c:a5:ca:3a:6c:5a:29:97:70:04:57:e8:44:77:e0:
19:39:13:80:22:24:0a:b8:96:65:80:37:46:06:bc:e3:2f:f4:
7c:10:0c:a3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZJrPAW2wSaYCoKEDmZIGDa1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwNGRiNzYyMzI0MWQ3ZTY2NzhmYzI1NzUxZmE0ZTBiNjY2
NTE4NmIwHhcNMjQxMDA4MDgyNTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTQ1YTJiMGNiMGFlNjFkYzRkNjNjNGNhN2FjYWExZjQ0ZjE1ZDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9dr+Izwx4edwq2LxOfqGpS/bSY+
52TWHw10V06cqfZ+8N6krtg7LbCXgtphBuGe7fR8nXichQQTNn+u9VPejt8ztvhB
Zj8rbp0pFSxKbYK6ULuBLIeQyAGqBipllg63NzyaFp0eVQ/zBmKxxnI6zdfQHUTK
8x4iBivBD/mHq51aEP6PjTDn4nNSaB3aUN+SjRrDszILLJZQj0OcIFPggnQeF+9r
kCmPa4bEi5KHevUWWHZxzgwJGnl6Gj0Gg/rqCRBk4iR+Wz1YRlBlVgVQShn9sj2R
zuzxvDA+Dr/eoQt/osyB+FxJTl10K4FoPjk2tO98v6d6eY85GTUuzjozcwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAFForDLCuYdxNY8TKesqh9E8V0XMB8GA1UdIwQY
MBaAFMBNt2IyQdfmZ4/CV1H6TgtmZRhrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMt
MDQyM2YyNjNmMmNiLzEvQVVXaXNNc0s1aDNFMWp4TXA2eXFIMFR4WFJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMtMDQyM2YyNjNmMmNi
LzEvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC7U
MA0GCSqGSIb3DQEBCwUAA4IBAQB3ImU4BOpCLMq1TlDk8Emkoon1UJrW/7IohV4y
35P248m4DKG9EgrSkL6TlH4YUar8Aeg/T4XxAYunCmV5Rx2K6Z2AZxbUzPLxdI30
xxveZ1gI4fmezN0d7nPcItqLKtSgFVkZzKOE6kvzlAQ02e1idXTy/GSbfUU7cIme
Bc0uQGXdeRlgCkc/Zupcp5QnEvGsDQ0JjDjIXbWEgea4g7g9jXLoQmUaCyBJxYEG
X1inRusWlU+55GpwGZOw1AVtlS1wLG2z8B+3GVh5QfG33C0ltT5nyE69SHm0Grcs
pco6bFopl3AEV+hEd+AZOROAIiQKuJZlgDdGBrzjL/R8EAyj
-----END CERTIFICATE-----
Generated at Sat Nov 23 13:13:39 2024 by rpki-client on console-ams.rpki-client.org