Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/3M2mkRYiZ_UyWpgemtAxBOVDCQ0.roa
File: 3M2mkRYiZ_UyWpgemtAxBOVDCQ0.roa (raw, json)
Hash identifier: ecGUNXfKbfeYDfmrDk/BggumdO7ClD2zqGuyXWvcWH0=
Subject key identifier: DC:CD:A6:91:16:22:67:F5:32:5A:98:1E:9A:D0:31:04:E5:43:09:0D
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018CC7951A37DE13B0DD9BC1F39AA0F2AC4F
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/3M2mkRYiZ_UyWpgemtAxBOVDCQ0.roa
Signing time: Tue 02 Jan 2024 00:31:26 +0000
ROA not before: Tue 02 Jan 2024 00:31:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35119
IP address blocks: 77.83.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:1a:37:de:13:b0:dd:9b:c1:f3:9a:a0:f2:ac:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 00:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dccda691162267f5325a981e9ad03104e543090d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:81:37:0c:f9:02:6c:02:31:d8:ca:87:be:23:
de:d6:2f:85:1d:b5:06:c4:02:b5:b1:e7:8f:e2:61:
0c:48:fb:7a:ed:e8:1e:15:f4:96:a5:8d:3e:32:1a:
f5:55:f2:b0:06:33:08:4b:8d:b2:14:e2:93:03:af:
d5:9b:80:2d:db:0b:ad:12:68:62:2d:6b:6e:37:5d:
0d:26:f4:26:03:cd:78:48:a2:87:40:6e:b2:36:e0:
52:7d:b3:28:40:d7:c6:b1:e5:12:5c:81:97:00:83:
29:fd:d6:69:51:9d:13:b7:4a:7b:fa:6d:a3:b0:fb:
c3:2f:64:6f:73:9a:d9:65:3e:fa:df:f6:de:b3:f4:
39:5c:2f:21:da:6d:df:c7:6e:c9:6c:06:55:b2:a1:
49:12:fb:0b:58:d7:15:dd:57:63:7d:3e:fd:8a:5d:
8a:dd:7b:17:73:79:fd:38:53:b4:ab:2c:b2:e4:20:
c8:b6:ad:a3:0c:f7:d7:ba:a6:58:79:55:fe:f1:3c:
c4:3c:10:5e:da:3f:1f:c4:66:94:8c:e1:82:ad:7e:
fb:4a:ef:f9:10:3c:ae:4f:e3:19:92:3b:21:72:20:
ac:9a:eb:b9:70:36:2f:0c:c5:a9:94:9d:4e:9a:04:
4e:45:7d:da:df:6a:35:98:40:93:4a:58:57:16:a4:
77:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:CD:A6:91:16:22:67:F5:32:5A:98:1E:9A:D0:31:04:E5:43:09:0D
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/3M2mkRYiZ_UyWpgemtAxBOVDCQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.75.0/24
Signature Algorithm: sha256WithRSAEncryption
37:03:7d:e3:43:db:d8:0e:20:cd:c3:ff:95:fb:dc:ec:0f:d8:
9b:10:6b:e3:be:dc:65:fd:50:54:d6:26:76:da:51:bc:18:88:
4a:b5:26:f9:20:8a:91:a2:6e:78:5a:7b:d6:84:22:69:e5:70:
bf:07:3c:1e:f0:89:00:16:5e:59:78:fc:b5:9f:95:ab:70:c9:
c4:0d:53:b8:c6:13:aa:70:96:c3:28:7a:f9:d3:dc:63:bf:be:
95:00:8e:20:e1:c5:c3:5b:e8:76:8a:cd:48:b3:f1:99:ae:88:
26:87:a9:c6:05:a9:1e:d0:05:1f:b8:bc:a2:9d:ee:38:2e:5f:
3e:03:58:88:73:12:8f:9b:85:53:38:39:a4:77:7c:ba:8e:a7:
69:bc:79:48:6d:d9:7a:3a:93:00:2f:c8:9b:f4:28:28:ca:ae:
cd:b5:9d:36:e9:1f:d5:43:01:c0:42:e3:64:b4:d5:64:ed:bb:
d9:a4:dd:6a:75:99:fd:d0:28:d9:2e:5d:79:e2:58:96:8a:9c:
b1:67:4c:e0:9f:f7:43:f2:08:65:ec:0b:bd:4d:d1:7f:f3:16:
b9:62:ed:40:31:bb:5b:65:b0:d8:c7:5e:c9:3d:59:e5:1e:88:
76:db:36:d9:6c:61:c6:f0:d8:02:e1:9a:ce:33:24:d8:fd:e5:
82:01:21:68
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlRo33hOw3ZvB85qg8qxPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjQwMTAyMDAzMTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkY2NkYTY5MTE2MjI2N2Y1MzI1YTk4MWU5YWQwMzEwNGU1NDMwOTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4E3DPkCbAIx2MqHviPe1i+FHbUG
xAK1seeP4mEMSPt67egeFfSWpY0+Mhr1VfKwBjMIS42yFOKTA6/Vm4At2wutEmhi
LWtuN10NJvQmA814SKKHQG6yNuBSfbMoQNfGseUSXIGXAIMp/dZpUZ0Tt0p7+m2j
sPvDL2Rvc5rZZT763/bes/Q5XC8h2m3fx27JbAZVsqFJEvsLWNcV3VdjfT79il2K
3XsXc3n9OFO0qyyy5CDItq2jDPfXuqZYeVX+8TzEPBBe2j8fxGaUjOGCrX77Su/5
EDyuT+MZkjshciCsmuu5cDYvDMWplJ1OmgRORX3a32o1mECTSlhXFqR3zQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNzNppEWImf1MlqYHprQMQTlQwkNMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvM00ybWtSWWlaX1V5V3BnZW10QXhCT1ZEQ1EwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVNLMA0G
CSqGSIb3DQEBCwUAA4IBAQA3A33jQ9vYDiDNw/+V+9zsD9ibEGvjvtxl/VBU1iZ2
2lG8GIhKtSb5IIqRom54WnvWhCJp5XC/Bzwe8IkAFl5ZePy1n5WrcMnEDVO4xhOq
cJbDKHr509xjv76VAI4g4cXDW+h2is1Is/GZrogmh6nGBake0AUfuLyine44Ll8+
A1iIcxKPm4VTODmkd3y6jqdpvHlIbdl6OpMAL8ib9Cgoyq7NtZ026R/VQwHAQuNk
tNVk7bvZpN1qdZn90CjZLl154liWipyxZ0zgn/dD8ghl7Au9TdF/8xa5Yu1AMbtb
ZbDYx17JPVnlHoh22zbZbGHG8NgC4ZrOMyTY/eWCASFo
-----END CERTIFICATE-----
Generated at Fri Nov 22 15:00:56 2024 by rpki-client on console-ams.rpki-client.org