Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/vjzVMumKYyr0ZcVkpWxnz1s32D8.roa
File: vjzVMumKYyr0ZcVkpWxnz1s32D8.roa (raw, json)
Hash identifier: yibEV7o8RctnXlIr4Hz1rL3F9Qm52jxxi5ciMbh6qzA=
Subject key identifier: BE:3C:D5:32:E9:8A:63:2A:F4:65:C5:64:A5:6C:67:CF:5B:37:D8:3F
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 01915BF18CE5477395ABE781D36B352426E4
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/vjzVMumKYyr0ZcVkpWxnz1s32D8.roa
Signing time: Fri 16 Aug 2024 16:07:22 +0000
ROA not before: Fri 16 Aug 2024 16:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39877
IP address blocks: 195.78.124.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Sep 2024 16:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5b:f1:8c:e5:47:73:95:ab:e7:81:d3:6b:35:24:26:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Aug 16 16:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be3cd532e98a632af465c564a56c67cf5b37d83f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:4c:c6:7e:cb:3b:25:e9:8a:b9:80:31:50:
ec:d5:3b:55:df:c9:ca:48:9a:1f:76:3d:bc:da:98:
03:4f:f9:46:62:eb:5a:1e:83:87:76:2f:09:ff:d1:
55:0f:ef:af:ab:50:77:e2:50:f1:98:0e:2a:76:b9:
f6:87:18:3b:a9:63:43:75:66:86:df:61:9c:5d:ec:
04:4f:f5:cc:ba:6f:81:02:e1:c4:ff:96:9f:3d:01:
e2:f1:08:92:5d:73:fb:f9:93:f8:c0:b4:fc:bb:d3:
b1:9d:5a:87:79:02:ab:75:96:50:36:86:97:df:4a:
12:2d:80:ad:fb:ce:cb:a5:9e:95:be:17:2e:af:43:
1e:d0:f7:24:6e:35:ab:9d:a1:6b:ef:44:29:74:43:
30:7a:54:4b:a6:41:ac:ba:ee:ae:ef:dd:92:3f:29:
91:47:06:2e:24:b9:1c:fb:29:b7:4f:87:c1:57:c6:
be:47:4f:39:f6:ea:2f:75:96:c1:d0:a4:d4:d2:66:
db:7c:eb:f2:27:13:a0:2f:ba:86:5a:24:35:f5:17:
36:0c:ec:0e:4f:59:ea:83:1a:64:c5:7c:77:57:fb:
17:db:fa:e1:38:4f:7e:67:58:3f:6d:80:69:d7:94:
22:93:ec:ec:b9:62:ff:82:c6:72:17:01:b8:e5:bb:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:3C:D5:32:E9:8A:63:2A:F4:65:C5:64:A5:6C:67:CF:5B:37:D8:3F
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/vjzVMumKYyr0ZcVkpWxnz1s32D8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.124.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:d4:b2:76:0e:34:18:8d:85:7c:a9:84:9a:9a:ea:77:b4:5e:
c4:0f:99:9f:72:b6:16:4b:6e:0f:12:fa:d5:ee:f7:6f:67:9c:
e7:17:ac:80:1e:fb:ec:15:a7:ec:37:c2:f0:0c:86:dc:ce:77:
4a:5b:d5:51:22:aa:af:3e:1a:07:ce:19:4c:4f:f3:2b:46:0e:
7a:0f:c6:23:d2:2b:b5:4d:63:49:2c:fc:72:cd:35:c9:fe:45:
fa:e8:66:34:dc:1c:4a:50:4a:89:b2:7c:ad:78:ce:72:86:30:
29:c8:39:a5:2d:06:ec:be:d8:86:93:6f:77:30:da:10:6c:24:
6d:27:60:56:d8:d3:4b:6e:96:79:3d:00:43:42:5f:59:79:c4:
6e:3d:65:b7:0b:0b:2a:0f:0b:ab:b4:09:40:c3:f5:bb:75:9f:
72:89:04:ae:51:8a:7c:0b:17:cc:68:7d:30:40:1b:56:f7:41:
9f:27:e6:fc:b8:4b:1e:d1:ef:24:e4:f0:04:09:7b:ac:57:f5:
20:ec:6f:3b:68:ab:47:8f:6d:f4:88:97:bc:ec:cd:f5:ee:2a:
db:ab:5c:5f:49:93:1a:bc:28:2c:26:56:17:dc:b3:71:a5:16:
9e:88:b1:32:8c:1a:4f:c4:ca:60:e3:68:ae:c4:59:63:9b:e5:
48:3f:bb:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFb8YzlR3OVq+eB02s1JCbkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwNGRiNzYyMzI0MWQ3ZTY2NzhmYzI1NzUxZmE0ZTBiNjY2
NTE4NmIwHhcNMjQwODE2MTYwNzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTNjZDUzMmU5OGE2MzJhZjQ2NWM1NjRhNTZjNjdjZjViMzdkODNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWdMxn7LOyXpirmAMVDs1TtV38nK
SJofdj282pgDT/lGYutaHoOHdi8J/9FVD++vq1B34lDxmA4qdrn2hxg7qWNDdWaG
32GcXewET/XMum+BAuHE/5afPQHi8QiSXXP7+ZP4wLT8u9OxnVqHeQKrdZZQNoaX
30oSLYCt+87LpZ6Vvhcur0Me0PckbjWrnaFr70QpdEMwelRLpkGsuu6u792SPymR
RwYuJLkc+ym3T4fBV8a+R0859uovdZbB0KTU0mbbfOvyJxOgL7qGWiQ19Rc2DOwO
T1nqgxpkxXx3V/sX2/rhOE9+Z1g/bYBp15Qik+zsuWL/gsZyFwG45bv6tQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL481TLpimMq9GXFZKVsZ89bN9g/MB8GA1UdIwQY
MBaAFMBNt2IyQdfmZ4/CV1H6TgtmZRhrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMt
MDQyM2YyNjNmMmNiLzEvdmp6Vk11bUtZeXIwWmNWa3BXeG56MXMzMkQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMtMDQyM2YyNjNmMmNi
LzEvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw058MA0G
CSqGSIb3DQEBCwUAA4IBAQA61LJ2DjQYjYV8qYSamup3tF7ED5mfcrYWS24PEvrV
7vdvZ5znF6yAHvvsFafsN8LwDIbczndKW9VRIqqvPhoHzhlMT/MrRg56D8Yj0iu1
TWNJLPxyzTXJ/kX66GY03BxKUEqJsnyteM5yhjApyDmlLQbsvtiGk293MNoQbCRt
J2BW2NNLbpZ5PQBDQl9ZecRuPWW3CwsqDwurtAlAw/W7dZ9yiQSuUYp8CxfMaH0w
QBtW90GfJ+b8uEse0e8k5PAECXusV/Ug7G87aKtHj230iJe87M317irbq1xfSZMa
vCgsJlYX3LNxpRaeiLEyjBpPxMpg42iuxFljm+VIP7se
-----END CERTIFICATE-----
Generated at Sun Sep 29 00:31:23 2024 by rpki-client on console-fra.rpki-client.org