Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/8eTltbEnSqlXGzZqHXXko-DVHGc.roa
File: 8eTltbEnSqlXGzZqHXXko-DVHGc.roa (raw, json)
Hash identifier: 1Ywn+AFjKge0vYMdoNmVdvccO+53iAX28uBAGsnTGhg=
Subject key identifier: F1:E4:E5:B5:B1:27:4A:A9:57:1B:36:6A:1D:75:E4:A3:E0:D5:1C:67
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0192664BAF69E2C955B929F74339FFBA56AE
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/8eTltbEnSqlXGzZqHXXko-DVHGc.roa
Signing time: Mon 07 Oct 2024 09:24:48 +0000
ROA not before: Mon 07 Oct 2024 09:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206013
IP address blocks: 193.180.104.0/21 maxlen: 24
193.180.112.0/23 maxlen: 24
193.180.114.0/24 maxlen: 24
194.14.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:4b:af:69:e2:c9:55:b9:29:f7:43:39:ff:ba:56:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Oct 7 09:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1e4e5b5b1274aa9571b366a1d75e4a3e0d51c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:06:97:96:b2:c2:6b:47:02:d5:f5:28:00:
39:1d:32:b4:40:b1:f9:b3:ec:cb:26:10:7b:5e:b8:
66:71:73:5d:6d:d3:74:84:1f:28:d3:df:78:79:d8:
0a:d6:0d:30:ea:ad:6f:ee:cd:1a:7f:08:58:a6:ed:
42:ef:eb:80:ea:36:55:61:85:a3:20:18:11:f3:ea:
37:1b:cd:2c:bd:4f:bf:0a:e9:87:af:a4:ae:d1:c6:
b4:6d:29:5c:7a:9a:1c:26:fe:de:85:6d:2d:5d:ce:
f6:07:8d:d0:aa:58:55:eb:b2:80:57:28:b4:ea:83:
8c:41:9c:b3:5d:1f:a1:4b:07:b3:8b:b4:f9:c9:50:
75:35:38:35:5e:a7:d7:2c:5a:b2:ba:bf:8d:70:34:
63:62:0e:c5:8d:e5:41:08:76:15:24:6c:b0:8f:89:
98:12:d7:bb:46:c3:3d:9b:45:12:87:28:74:47:3a:
f0:f0:f2:82:e0:56:68:c0:5f:eb:ba:dd:05:ea:77:
c0:b8:ad:4d:82:33:56:be:74:83:56:25:3d:7c:c9:
68:f2:67:47:a8:e0:65:9d:dd:50:7a:02:43:a6:86:
a5:fe:aa:84:02:04:2a:11:ef:0f:59:6d:2b:ad:21:
bd:37:07:21:9a:f9:ce:95:7e:aa:25:8c:b4:97:2d:
00:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E4:E5:B5:B1:27:4A:A9:57:1B:36:6A:1D:75:E4:A3:E0:D5:1C:67
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/8eTltbEnSqlXGzZqHXXko-DVHGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.104.0-193.180.114.255
194.14.33.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:bd:39:62:63:a1:be:30:4f:d5:f4:fe:77:59:a3:0a:cb:7e:
ad:3a:43:e8:78:ef:22:88:d7:1e:ff:53:3d:9d:32:e0:ca:40:
dc:1a:92:3c:27:d3:8b:b6:fc:a2:1e:17:0d:3c:3b:d4:fb:63:
60:d5:89:42:4c:da:e6:52:b9:8b:94:79:0f:f9:3e:ab:5c:2b:
91:ad:00:d1:58:50:28:6f:2e:0b:f6:1a:a8:b5:2d:8d:1a:5f:
71:94:9a:f2:08:23:e5:59:4f:a7:e6:e0:44:e5:21:9d:bc:a9:
85:f9:1f:11:8e:ce:9e:82:e7:4a:96:e5:34:26:83:4c:74:f0:
1b:9f:5d:f0:29:95:6d:74:e5:ef:e2:2d:ac:55:11:0d:bc:f4:
53:b2:42:d3:15:36:25:88:2f:c2:8b:1e:e7:ae:d1:c4:85:47:
f4:6c:1f:be:f7:a5:ae:41:f5:13:88:ec:60:d1:41:cc:30:af:
81:47:08:fa:11:c9:c4:3c:59:cd:65:be:3f:af:b0:5b:b8:5f:
c8:82:3b:00:a6:20:99:c9:8a:61:25:13:ea:ef:a9:2f:fb:13:
e7:bd:0f:b7:ab:d6:b6:a8:f5:aa:f4:4f:94:b7:ba:9f:8f:7f:
20:48:7d:bd:78:9e:c8:9f:f0:c6:4c:02:9f:df:92:3b:35:97:
5d:26:d4:7e
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAZJmS69p4slVuSn3Qzn/ulauMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjQxMDA3MDkyNDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWU0ZTViNWIxMjc0YWE5NTcxYjM2NmExZDc1ZTRhM2UwZDUxYzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsn8Gl5aywmtHAtX1KAA5HTK0QLH5
s+zLJhB7XrhmcXNdbdN0hB8o0994edgK1g0w6q1v7s0afwhYpu1C7+uA6jZVYYWj
IBgR8+o3G80svU+/CumHr6Su0ca0bSlcepocJv7ehW0tXc72B43QqlhV67KAVyi0
6oOMQZyzXR+hSwezi7T5yVB1NTg1XqfXLFqyur+NcDRjYg7FjeVBCHYVJGywj4mY
Ete7RsM9m0UShyh0Rzrw8PKC4FZowF/rut0F6nfAuK1NgjNWvnSDViU9fMlo8mdH
qOBlnd1QegJDpoal/qqEAgQqEe8PWW0rrSG9NwchmvnOlX6qJYy0ly0ApQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFPHk5bWxJ0qpVxs2ah115KPg1RxnMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvOGVUbHRiRW5TcWxYR3pacUhYWGtvLURWSEdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAPBtGgD
BADBtHIDBADCDiEwDQYJKoZIhvcNAQELBQADggEBAA29OWJjob4wT9X0/ndZowrL
fq06Q+h47yKI1x7/Uz2dMuDKQNwakjwn04u2/KIeFw08O9T7Y2DViUJM2uZSuYuU
eQ/5PqtcK5GtANFYUChvLgv2Gqi1LY0aX3GUmvIII+VZT6fm4ETlIZ28qYX5HxGO
zp6C50qW5TQmg0x08BufXfAplW105e/iLaxVEQ289FOyQtMVNiWIL8KLHueu0cSF
R/RsH773pa5B9ROI7GDRQcwwr4FHCPoRycQ8Wc1lvj+vsFu4X8iCOwCmIJnJimEl
E+rvqS/7E+e9D7er1rao9ar0T5S3up+PfyBIfb14nsif8MZMAp/fkjs1l10m1H4=
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:44:00 2024 by rpki-client on console-ams.rpki-client.org