Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/M8uu5Q0gYtyHXgy-_HaJ3qJtLL8.roa
File: M8uu5Q0gYtyHXgy-_HaJ3qJtLL8.roa (raw, json)
Hash identifier: 8T9tUH90Mj8IcimHEzzVqe1K5DRM0kq6VzTiqUA3vRs=
Subject key identifier: 33:CB:AE:E5:0D:20:62:DC:87:5E:0C:BE:FC:76:89:DE:A2:6D:2C:BF
Certificate issuer: /CN=4ab9f900ba618be8e7c920963cdf757b9050e509
Certificate serial: 0194214416F68A89FAD5A97769DC564DF016
Authority key identifier: 4A:B9:F9:00:BA:61:8B:E8:E7:C9:20:96:3C:DF:75:7B:90:50:E5:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Srn5ALphi-jnySCWPN91e5BQ5Qk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/M8uu5Q0gYtyHXgy-_HaJ3qJtLL8.roa
Signing time: Wed 01 Jan 2025 09:48:18 +0000
ROA not before: Wed 01 Jan 2025 09:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15600
IP address blocks: 185.148.124.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/Srn5ALphi-jnySCWPN91e5BQ5Qk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/Srn5ALphi-jnySCWPN91e5BQ5Qk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Srn5ALphi-jnySCWPN91e5BQ5Qk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 11:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:16:f6:8a:89:fa:d5:a9:77:69:dc:56:4d:f0:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ab9f900ba618be8e7c920963cdf757b9050e509
Validity
Not Before: Jan 1 09:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33cbaee50d2062dc875e0cbefc7689dea26d2cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bd:d8:04:35:3b:9a:ee:e1:4b:2c:49:12:32:
e8:35:82:81:16:79:9b:73:12:20:44:af:23:47:02:
b4:22:bd:64:7d:f6:57:13:50:47:66:ca:c9:b3:ba:
f1:09:88:9d:90:df:de:54:f4:29:8b:a5:18:c2:1f:
21:76:85:f8:05:eb:59:29:2d:fe:18:be:dc:60:54:
d7:2c:e3:4f:b1:13:ba:72:dd:b1:93:ba:87:e8:06:
98:6b:2e:1c:3e:70:c4:fc:c1:20:b4:d8:57:b1:a9:
16:b2:fa:ee:17:c6:6a:7a:3f:91:f3:4f:91:fa:fa:
d4:d1:c4:f3:bb:ef:9f:6a:89:19:c5:d2:06:1f:0a:
ba:91:7d:f1:3e:9e:7e:ad:db:5c:0e:3e:a1:66:d8:
af:bb:e4:db:16:d1:eb:69:35:b0:cf:ad:d4:a0:22:
e2:e0:c1:44:36:d0:d2:3f:bf:b0:a3:02:59:b6:a0:
b5:57:7a:82:ad:a4:14:5c:a4:fb:3a:be:16:a9:11:
fd:7c:c1:c1:6b:40:2d:d4:a5:c8:46:cd:51:5d:3e:
53:78:1e:84:e4:4d:cf:c9:47:a0:74:65:bf:e3:02:
61:a8:86:ff:f4:e6:4f:d3:e4:62:5a:68:ee:4e:cd:
d4:0b:8f:0c:c0:c8:34:82:ce:94:6a:8d:d6:72:d9:
65:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CB:AE:E5:0D:20:62:DC:87:5E:0C:BE:FC:76:89:DE:A2:6D:2C:BF
X509v3 Authority Key Identifier:
keyid:4A:B9:F9:00:BA:61:8B:E8:E7:C9:20:96:3C:DF:75:7B:90:50:E5:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Srn5ALphi-jnySCWPN91e5BQ5Qk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/M8uu5Q0gYtyHXgy-_HaJ3qJtLL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b42027-6637-48e7-a354-9e0b196a0487/1/Srn5ALphi-jnySCWPN91e5BQ5Qk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.124.0/22
Signature Algorithm: sha256WithRSAEncryption
40:e8:a6:18:e4:77:04:89:3b:c7:bb:ca:94:4f:63:83:7f:b9:
b4:6d:d0:48:95:47:cb:32:95:f4:ff:53:cd:df:6d:d2:0a:65:
72:3e:7d:be:6a:72:b8:42:9d:50:67:c4:6b:f9:cf:1a:58:ee:
2c:3d:37:bc:4a:82:86:71:30:74:43:a7:d9:2c:0c:81:e9:d3:
3c:29:9e:bc:e1:ec:41:e7:3e:21:3a:8c:45:ca:ab:67:21:75:
fc:9b:bd:6e:a3:f5:0b:e6:9f:3e:92:f5:52:66:6c:a3:ab:78:
ed:6c:f5:fb:d8:6b:2c:a8:4e:c9:4a:ad:89:89:4a:08:7c:15:
fd:72:ef:87:38:9d:71:7e:77:71:8e:ba:b8:43:66:36:58:53:
d6:60:8c:ad:ca:db:c3:ee:60:57:4f:27:bb:0e:a7:db:af:8a:
79:16:51:ee:e0:d8:84:4b:3c:50:30:0b:cb:17:ed:af:30:da:
d6:a8:7c:a8:17:bf:39:0d:ad:1b:2b:55:1f:e3:33:2d:14:bb:
ae:01:4b:77:58:ec:35:20:f2:e8:9f:67:dd:b3:5c:94:8b:be:
f9:75:c0:5c:5d:43:b8:27:8f:e6:e0:cf:9d:74:b8:f5:0b:92:
7a:fe:34:b9:f9:2a:c0:b2:d2:36:1e:a0:c8:9a:d9:ae:c1:32:
76:3a:ed:11
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRBb2ion61al3adxWTfAWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhYjlmOTAwYmE2MThiZThlN2M5MjA5NjNjZGY3NTdiOTA1
MGU1MDkwHhcNMjUwMTAxMDk0ODE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2NiYWVlNTBkMjA2MmRjODc1ZTBjYmVmYzc2ODlkZWEyNmQyY2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzr3YBDU7mu7hSyxJEjLoNYKBFnmb
cxIgRK8jRwK0Ir1kffZXE1BHZsrJs7rxCYidkN/eVPQpi6UYwh8hdoX4BetZKS3+
GL7cYFTXLONPsRO6ct2xk7qH6AaYay4cPnDE/MEgtNhXsakWsvruF8Zqej+R80+R
+vrU0cTzu++faokZxdIGHwq6kX3xPp5+rdtcDj6hZtivu+TbFtHraTWwz63UoCLi
4MFENtDSP7+wowJZtqC1V3qCraQUXKT7Or4WqRH9fMHBa0At1KXIRs1RXT5TeB6E
5E3PyUegdGW/4wJhqIb/9OZP0+RiWmjuTs3UC48MwMg0gs6Uao3Wctll+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDPLruUNIGLch14Mvvx2id6ibSy/MB8GA1UdIwQY
MBaAFEq5+QC6YYvo58kgljzfdXuQUOUJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3JuNUFMcGhpLWpueVNDV1BOOTFlNUJRNVFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iNDIwMjctNjYzNy00OGU3LWEzNTQt
OWUwYjE5NmEwNDg3LzEvTTh1dTVRMGdZdHlIWGd5LV9IYUozcUp0TEw4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9iNDIwMjctNjYzNy00OGU3LWEzNTQtOWUwYjE5NmEwNDg3
LzEvU3JuNUFMcGhpLWpueVNDV1BOOTFlNUJRNVFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZR8MA0G
CSqGSIb3DQEBCwUAA4IBAQBA6KYY5HcEiTvHu8qUT2ODf7m0bdBIlUfLMpX0/1PN
323SCmVyPn2+anK4Qp1QZ8Rr+c8aWO4sPTe8SoKGcTB0Q6fZLAyB6dM8KZ684exB
5z4hOoxFyqtnIXX8m71uo/UL5p8+kvVSZmyjq3jtbPX72GssqE7JSq2JiUoIfBX9
cu+HOJ1xfndxjrq4Q2Y2WFPWYIytytvD7mBXTye7Dqfbr4p5FlHu4NiESzxQMAvL
F+2vMNrWqHyoF785Da0bK1Uf4zMtFLuuAUt3WOw1IPLon2fds1yUi775dcBcXUO4
J4/m4M+ddLj1C5J6/jS5+SrAstI2HqDImtmuwTJ2Ou0R
-----END CERTIFICATE-----
Generated at Fri Apr 11 21:32:02 2025 by rpki-client