Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/9_b31ZSslNheDiC4v7vfcZE7hQY.roa
File: 9_b31ZSslNheDiC4v7vfcZE7hQY.roa (raw, json)
Hash identifier: NOr/pNEyK5LE++Zc/qaHAoO13SfDPCgvzGAscu93ixg=
Subject key identifier: F7:F6:F7:D5:94:AC:94:D8:5E:0E:20:B8:BF:BB:DF:71:91:3B:85:06
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC802E8830DD76880D60ACDC3C6D3B5A3
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/9_b31ZSslNheDiC4v7vfcZE7hQY.roa
Signing time: Tue 02 Jan 2024 02:31:22 +0000
ROA not before: Tue 02 Jan 2024 02:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39020
IP address blocks: 192.71.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 11:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:e8:83:0d:d7:68:80:d6:0a:cd:c3:c6:d3:b5:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7f6f7d594ac94d85e0e20b8bfbbdf71913b8506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:26:08:c0:63:66:de:39:4e:9d:c8:ef:5c:ce:
3f:ed:a3:6b:38:3c:9b:4d:d2:2e:09:dc:61:41:10:
e6:0d:a6:13:83:c3:0b:71:18:97:bb:d0:81:b8:5b:
fe:ee:b9:87:ac:cb:28:b0:5f:7f:ab:d3:bc:86:01:
a3:bf:f5:12:af:75:18:b4:00:af:57:a3:d1:78:8d:
6f:e4:28:45:d4:ce:da:e8:fa:e6:1e:3a:cd:82:37:
a3:c8:c3:9a:b9:c8:f0:40:c0:ea:bb:1f:c8:46:fb:
3c:a8:d7:08:ea:7e:ee:75:bc:bc:2c:66:1c:80:12:
2d:74:b4:ad:e9:4f:f8:c1:1b:84:bc:5a:d6:0c:4a:
b5:b1:18:84:d1:8c:c2:41:8b:d9:36:95:49:d4:f9:
10:5a:30:5a:5e:d6:96:ac:a1:16:bf:71:fc:4c:a3:
b0:4b:26:2a:97:ca:e5:59:a6:de:8b:dd:2c:fe:f4:
2e:a0:8c:fd:6f:ce:71:88:01:66:d9:ff:30:2f:85:
3f:ae:7b:e3:34:1c:ea:0f:18:3d:6b:cd:a4:ef:ff:
8f:26:15:a1:76:f9:43:8b:e6:4e:70:b9:18:78:6c:
f8:49:80:ef:e7:63:70:d1:30:16:16:d0:af:dd:de:
38:fd:95:e4:b6:8f:b9:be:25:88:c5:67:50:f8:14:
23:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F6:F7:D5:94:AC:94:D8:5E:0E:20:B8:BF:BB:DF:71:91:3B:85:06
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/9_b31ZSslNheDiC4v7vfcZE7hQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.213.0/24
Signature Algorithm: sha256WithRSAEncryption
16:76:4b:de:07:12:c7:8c:c5:b2:d9:3e:d7:72:f7:55:9d:bb:
96:d9:24:d7:08:f8:d5:87:26:a7:91:3d:3d:3b:fb:91:20:25:
32:e8:99:2c:64:5b:95:97:0a:5f:e4:01:7d:2d:65:9b:9f:52:
8b:8f:1a:62:30:31:db:6a:49:18:25:db:de:eb:6c:34:e4:62:
ae:3e:f1:b0:27:57:74:a5:4f:82:66:14:52:37:e4:6c:5d:64:
d7:6d:de:00:ee:52:d6:db:ca:97:be:31:06:b4:39:71:c8:d2:
cc:38:56:da:af:53:bf:e2:fe:9d:3c:98:a2:13:49:bc:86:5b:
fe:1a:2b:1a:e0:1d:73:0b:e6:6e:a5:ff:f2:bb:78:6e:bc:1e:
51:42:d4:b2:94:f4:68:80:ff:98:a3:a9:83:8b:bb:bf:a5:9a:
be:87:36:ce:77:8d:5f:a9:e7:c2:42:e1:da:14:da:3a:59:60:
d4:24:10:65:05:a9:1a:14:33:53:90:d1:f9:3a:fe:04:0d:a6:
e6:ed:20:05:43:90:78:d7:7b:3b:10:ba:0a:0f:74:df:0c:dc:
3e:39:5f:4f:5a:a0:00:cf:dd:c8:b1:4b:d1:85:b8:99:9c:d2:
0f:1c:47:d8:2f:66:4b:2c:f6:2e:aa:d5:c2:35:7c:91:de:dc:
58:e3:fb:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAuiDDddogNYKzcPG07WjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjQwMTAyMDIzMTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2Y2ZjdkNTk0YWM5NGQ4NWUwZTIwYjhiZmJiZGY3MTkxM2I4NTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjCYIwGNm3jlOncjvXM4/7aNrODyb
TdIuCdxhQRDmDaYTg8MLcRiXu9CBuFv+7rmHrMsosF9/q9O8hgGjv/USr3UYtACv
V6PReI1v5ChF1M7a6PrmHjrNgjejyMOaucjwQMDqux/IRvs8qNcI6n7udby8LGYc
gBItdLSt6U/4wRuEvFrWDEq1sRiE0YzCQYvZNpVJ1PkQWjBaXtaWrKEWv3H8TKOw
SyYql8rlWabei90s/vQuoIz9b85xiAFm2f8wL4U/rnvjNBzqDxg9a82k7/+PJhWh
dvlDi+ZOcLkYeGz4SYDv52Nw0TAWFtCv3d44/ZXkto+5viWIxWdQ+BQjRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPf299WUrJTYXg4guL+733GRO4UGMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvOV9iMzFaU3NsTmhlRGlDNHY3dmZjWkU3aFFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwEfVMA0G
CSqGSIb3DQEBCwUAA4IBAQAWdkveBxLHjMWy2T7XcvdVnbuW2STXCPjVhyankT09
O/uRICUy6JksZFuVlwpf5AF9LWWbn1KLjxpiMDHbakkYJdve62w05GKuPvGwJ1d0
pU+CZhRSN+RsXWTXbd4A7lLW28qXvjEGtDlxyNLMOFbar1O/4v6dPJiiE0m8hlv+
Gisa4B1zC+Zupf/yu3huvB5RQtSylPRogP+Yo6mDi7u/pZq+hzbOd41fqefCQuHa
FNo6WWDUJBBlBakaFDNTkNH5Ov4EDabm7SAFQ5B413s7ELoKD3TfDNw+OV9PWqAA
z93IsUvRhbiZnNIPHEfYL2ZLLPYuqtXCNXyR3txY4/tF
-----END CERTIFICATE-----
Generated at Mon Nov 25 19:50:49 2024 by rpki-client on console-ams.rpki-client.org