Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/yYbEQWwbtrm4_00A5vx1jR7lBn0.roa
File: yYbEQWwbtrm4_00A5vx1jR7lBn0.roa (raw, json)
Hash identifier: lvh65dSxZK1xkMM/7l95bg0i1Q38UC4jEiiAPo2Fa6g=
Subject key identifier: C9:86:C4:41:6C:1B:B6:B9:B8:FF:4D:00:E6:FC:75:8D:1E:E5:06:7D
Certificate issuer: /CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Certificate serial: 018EC8975D591E22E3646063E1C780F71658
Authority key identifier: FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/yYbEQWwbtrm4_00A5vx1jR7lBn0.roa
Signing time: Wed 10 Apr 2024 15:19:06 +0000
ROA not before: Wed 10 Apr 2024 15:19:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49373
IP address blocks: 91.214.76.0/24 maxlen: 24
2a00:1e6a::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c8:97:5d:59:1e:22:e3:64:60:63:e1:c7:80:f7:16:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb32e9f4aa32aba7312fab054b174dce8c515ca3
Validity
Not Before: Apr 10 15:19:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c986c4416c1bb6b9b8ff4d00e6fc758d1ee5067d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:71:d0:9e:33:9c:c7:61:bb:03:cc:2f:6f:05:
f4:e7:ad:aa:83:fb:80:44:55:06:c4:64:70:20:5b:
7e:76:f3:e2:da:54:da:84:26:d8:41:1f:2f:64:2f:
20:90:39:81:70:b2:f9:ab:98:6d:78:2d:d9:85:d6:
46:e6:05:77:b4:fa:65:ff:d2:18:5b:91:15:44:1b:
cf:48:8a:4b:ca:bf:07:d9:94:0c:51:73:92:64:cc:
17:34:3b:f4:64:72:b0:a7:23:b9:fb:23:a8:1e:4e:
55:25:1d:92:4f:a3:bc:f8:f9:f6:b4:ad:65:eb:aa:
aa:76:c3:bb:ec:4a:e2:90:45:b2:e5:91:6e:b4:24:
50:14:cd:33:f7:94:ab:e6:50:6a:77:a6:76:0d:5a:
2e:2a:4e:68:d8:3c:34:bd:88:97:38:ba:5b:d1:20:
b3:71:d4:bf:79:c3:a0:39:93:d7:6d:38:80:ee:e5:
0a:45:91:b4:59:17:31:a5:8c:8e:40:74:dc:06:bb:
05:cd:93:19:b3:23:91:d4:8e:79:20:96:d2:18:dc:
c1:ae:60:ba:88:e1:a4:27:2b:89:31:25:85:d1:ed:
b9:bf:80:11:52:37:72:d5:11:f5:ea:bf:0d:77:95:
13:36:a3:d3:f8:a3:a4:48:39:56:84:d0:f7:ea:d9:
9f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:86:C4:41:6C:1B:B6:B9:B8:FF:4D:00:E6:FC:75:8D:1E:E5:06:7D
X509v3 Authority Key Identifier:
keyid:FB:32:E9:F4:AA:32:AB:A7:31:2F:AB:05:4B:17:4D:CE:8C:51:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/yYbEQWwbtrm4_00A5vx1jR7lBn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/278663-b135-4db1-a044-20624b3c157f/1/1-zLp9Koyq6cxL6sFSxdNzoxRXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.76.0/24
IPv6:
2a00:1e6a::/32
Signature Algorithm: sha256WithRSAEncryption
7d:ce:f2:54:2a:35:b2:96:67:73:c0:d5:b3:2d:7a:33:de:c9:
01:18:e9:de:bc:3e:5b:e8:22:2c:3f:50:14:a9:0c:c1:ed:f0:
4a:1c:ca:a4:18:de:fe:a1:9b:eb:84:ad:b1:d8:30:77:a0:08:
89:0c:70:e2:a2:e6:c0:b7:27:9d:47:10:d2:7c:ab:2a:e1:5d:
c3:77:fe:04:63:5c:9c:fb:70:d2:3b:60:35:e1:8b:a3:07:6f:
b9:6b:e9:b0:14:b4:79:a5:96:cb:91:81:59:49:3a:86:95:84:
8c:e0:fa:98:ef:c4:61:47:ce:79:75:2d:16:fd:58:47:08:b3:
4f:48:ce:98:30:60:b2:ed:23:e6:33:28:52:95:fe:82:d7:7a:
c8:6d:fa:7d:56:c1:88:f5:2b:8d:51:3c:4b:d1:51:26:9e:30:
7e:53:9c:1b:58:d0:6d:da:6f:96:7e:31:b1:93:1f:26:4f:0c:
63:ae:3e:3a:0d:bf:0a:40:37:39:b2:86:d3:d0:4f:24:03:97:
0a:47:36:e0:a0:bf:0c:c2:e4:fc:18:87:62:7b:ef:0f:ce:bb:
a6:de:c2:d4:f5:be:25:fc:63:dd:40:1d:ca:56:2f:4e:0e:07:
55:79:38:e3:b8:74:1a:3b:86:b2:df:63:81:a4:74:83:74:15:
78:47:92:07
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY7Il11ZHiLjZGBj4ceA9xZYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiMzJlOWY0YWEzMmFiYTczMTJmYWIwNTRiMTc0ZGNlOGM1
MTVjYTMwHhcNMjQwNDEwMTUxOTA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTg2YzQ0MTZjMWJiNmI5YjhmZjRkMDBlNmZjNzU4ZDFlZTUwNjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiHHQnjOcx2G7A8wvbwX0562qg/uA
RFUGxGRwIFt+dvPi2lTahCbYQR8vZC8gkDmBcLL5q5hteC3ZhdZG5gV3tPpl/9IY
W5EVRBvPSIpLyr8H2ZQMUXOSZMwXNDv0ZHKwpyO5+yOoHk5VJR2ST6O8+Pn2tK1l
66qqdsO77ErikEWy5ZFutCRQFM0z95Sr5lBqd6Z2DVouKk5o2Dw0vYiXOLpb0SCz
cdS/ecOgOZPXbTiA7uUKRZG0WRcxpYyOQHTcBrsFzZMZsyOR1I55IJbSGNzBrmC6
iOGkJyuJMSWF0e25v4ARUjdy1RH16r8Nd5UTNqPT+KOkSDlWhND36tmfxwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFMmGxEFsG7a5uP9NAOb8dY0e5QZ9MB8GA1UdIwQY
MBaAFPsy6fSqMqunMS+rBUsXTc6MUVyjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS16THA5S295cTZjeEw2c0ZTeGROem94UlhLTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIvMjc4NjYzLWIxMzUtNGRiMS1hMDQ0
LTIwNjI0YjNjMTU3Zi8xL3lZYkVRV3didHJtNF8wMEE1dngxalI3bEJuMC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZTIvMjc4NjYzLWIxMzUtNGRiMS1hMDQ0LTIwNjI0YjNjMTU3
Zi8xLzEtekxwOUtveXE2Y3hMNnNGU3hkTnpveFJYS00uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBABb1kww
DQQCAAIwBwMFACoAHmowDQYJKoZIhvcNAQELBQADggEBAH3O8lQqNbKWZ3PA1bMt
ejPeyQEY6d68PlvoIiw/UBSpDMHt8EocyqQY3v6hm+uErbHYMHegCIkMcOKi5sC3
J51HENJ8qyrhXcN3/gRjXJz7cNI7YDXhi6MHb7lr6bAUtHmllsuRgVlJOoaVhIzg
+pjvxGFHznl1LRb9WEcIs09IzpgwYLLtI+YzKFKV/oLXesht+n1WwYj1K41RPEvR
USaeMH5TnBtY0G3ab5Z+MbGTHyZPDGOuPjoNvwpANzmyhtPQTyQDlwpHNuCgvwzC
5PwYh2J77w/Ou6bewtT1viX8Y91AHcpWL04OB1V5OOO4dBo7hrLfY4GkdIN0FXhH
kgc=
-----END CERTIFICATE-----
Generated at Sun May 19 07:15:55 2024 by rpki-client on console-ams.rpki-client.org