Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/4cF0aR_BlyGKbrtwtBWYZMrI86g.roa
File: 4cF0aR_BlyGKbrtwtBWYZMrI86g.roa (raw, json)
Hash identifier: w0I9hnIPPKpne6Qmkx1JN8dRdOXDhMeyJb/k+vhs9Ng=
Subject key identifier: E1:C1:74:69:1F:C1:97:21:8A:6E:BB:70:B4:15:98:64:CA:C8:F3:A8
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0190C168E0FC2B1940B26AE717DA588E8B8D
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/4cF0aR_BlyGKbrtwtBWYZMrI86g.roa
Signing time: Wed 17 Jul 2024 15:56:34 +0000
ROA not before: Wed 17 Jul 2024 15:56:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63801
IP address blocks: 14.102.226.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c1:68:e0:fc:2b:19:40:b2:6a:e7:17:da:58:8e:8b:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jul 17 15:56:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1c174691fc197218a6ebb70b4159864cac8f3a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:c3:36:8c:57:80:5a:fe:52:bd:d6:c5:8a:
67:59:63:78:f2:4f:d0:01:f9:f4:5d:ef:4d:ce:37:
ed:9d:c2:94:35:80:d0:0b:b9:ab:0d:bf:32:60:f5:
f1:f6:a4:14:ac:af:35:59:64:d6:02:79:af:88:f6:
48:ac:3e:89:a5:5e:76:ec:b5:1d:41:1c:2b:44:30:
b6:b0:d1:b0:dc:95:32:33:24:a0:8c:cc:0e:bb:da:
60:c6:43:be:ff:35:66:d1:8e:a2:f4:9a:f9:7c:80:
2c:fc:ac:a0:75:60:59:6c:90:e6:cb:69:19:64:0a:
a9:58:9a:6d:87:af:0e:a3:89:ff:57:44:c9:5e:4e:
ac:c0:61:d6:24:ee:c9:02:7f:dd:c0:8b:49:d2:66:
60:0a:92:81:fd:d4:70:44:34:78:0f:19:3f:de:34:
28:be:2a:91:19:4b:ca:c4:c1:10:8b:b3:ae:72:56:
58:b2:b1:12:39:86:ae:6e:5a:3e:b1:af:f1:d4:83:
3a:a5:8e:3e:1f:2e:27:2a:33:af:32:28:47:91:19:
76:f8:db:bf:9c:46:19:36:4d:cd:46:c9:bd:13:15:
a7:a1:08:eb:95:bd:ab:0c:22:99:36:f1:2d:52:16:
cf:82:2c:5f:7a:10:14:f4:16:a4:2f:26:34:43:7e:
2e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C1:74:69:1F:C1:97:21:8A:6E:BB:70:B4:15:98:64:CA:C8:F3:A8
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/4cF0aR_BlyGKbrtwtBWYZMrI86g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.226.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:a4:55:4b:0d:f9:c6:5f:f6:93:08:e3:80:88:b5:73:bb:82:
46:ab:21:30:0f:4f:82:7e:2c:e4:2e:18:a7:32:ca:76:d4:b6:
8e:9a:44:2f:f5:8d:b2:de:5a:a8:62:1f:da:61:a2:87:23:bc:
d1:9a:4b:34:47:dc:b1:21:4c:13:13:d8:90:d1:04:ff:7f:df:
dc:cc:e7:50:70:dd:e0:e6:f5:30:9c:de:76:f9:b7:30:0c:17:
ec:2e:cc:c2:cc:a5:cf:18:ce:c3:a7:87:81:9a:14:b9:38:9c:
c7:2f:39:92:66:00:f8:4c:88:94:7d:8b:a8:39:b2:88:ff:7f:
e4:12:3b:16:bf:fc:b8:57:7c:4b:dd:d8:75:5a:8a:a2:d3:3c:
bf:c9:34:65:94:10:00:0b:8e:99:25:d8:2a:96:da:01:8e:d9:
af:d2:7a:fb:bd:07:2d:3e:7f:aa:ea:ca:52:a6:92:92:4b:aa:
90:cf:d4:8a:d8:bb:85:0d:90:b4:32:04:ae:ad:1a:91:9c:93:
48:68:c1:e1:5a:7b:a2:2c:17:01:93:f9:e1:a3:24:35:f9:28:
83:93:9b:d2:b6:73:ff:ad:f6:8c:1e:c7:24:93:13:27:b9:22:
f4:6f:cd:0d:21:44:6d:5c:c1:8b:a8:aa:e0:97:15:ae:f3:dc:
8b:7d:6a:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDBaOD8KxlAsmrnF9pYjouNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjQwNzE3MTU1NjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMWMxNzQ2OTFmYzE5NzIxOGE2ZWJiNzBiNDE1OTg2NGNhYzhmM2E4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1HDNoxXgFr+Ur3WxYpnWWN48k/Q
Afn0Xe9NzjftncKUNYDQC7mrDb8yYPXx9qQUrK81WWTWAnmviPZIrD6JpV527LUd
QRwrRDC2sNGw3JUyMySgjMwOu9pgxkO+/zVm0Y6i9Jr5fIAs/KygdWBZbJDmy2kZ
ZAqpWJpth68Oo4n/V0TJXk6swGHWJO7JAn/dwItJ0mZgCpKB/dRwRDR4Dxk/3jQo
viqRGUvKxMEQi7OuclZYsrESOYaublo+sa/x1IM6pY4+Hy4nKjOvMihHkRl2+Nu/
nEYZNk3NRsm9ExWnoQjrlb2rDCKZNvEtUhbPgixfehAU9BakLyY0Q34u9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOHBdGkfwZchim67cLQVmGTKyPOoMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvNGNGMGFSX0JseUdLYnJ0d3RCV1laTXJJODZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBDmbiMA0G
CSqGSIb3DQEBCwUAA4IBAQC9pFVLDfnGX/aTCOOAiLVzu4JGqyEwD0+CfizkLhin
Msp21LaOmkQv9Y2y3lqoYh/aYaKHI7zRmks0R9yxIUwTE9iQ0QT/f9/czOdQcN3g
5vUwnN52+bcwDBfsLszCzKXPGM7Dp4eBmhS5OJzHLzmSZgD4TIiUfYuoObKI/3/k
EjsWv/y4V3xL3dh1Woqi0zy/yTRllBAAC46ZJdgqltoBjtmv0nr7vQctPn+q6spS
ppKSS6qQz9SK2LuFDZC0MgSurRqRnJNIaMHhWnuiLBcBk/nhoyQ1+SiDk5vStnP/
rfaMHsckkxMnuSL0b80NIURtXMGLqKrglxWu89yLfWqy
-----END CERTIFICATE-----
Generated at Fri Nov 22 12:45:49 2024 by rpki-client on console-ams.rpki-client.org