Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f96430-62d4-4310-8493-ae1aa1654cde/1/SMInr7brcXQ7ATVz_3PNgoothMA.roa
File: SMInr7brcXQ7ATVz_3PNgoothMA.roa (raw, json)
Hash identifier: 6bm/3BameQ712ffWBVfgau6eoPEQbNvy1C6cP89515U=
Subject key identifier: 48:C2:27:AF:B6:EB:71:74:3B:01:35:73:FF:73:CD:82:8A:2D:84:C0
Certificate issuer: /CN=122a2ba3cc18c998501309ecde042706af5b845a
Certificate serial: 01932ED8F2C59412749F8B541EBB32102BBD
Authority key identifier: 12:2A:2B:A3:CC:18:C9:98:50:13:09:EC:DE:04:27:06:AF:5B:84:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eioro8wYyZhQEwns3gQnBq9bhFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/f96430-62d4-4310-8493-ae1aa1654cde/1/SMInr7brcXQ7ATVz_3PNgoothMA.roa
Signing time: Fri 15 Nov 2024 08:03:10 +0000
ROA not before: Fri 15 Nov 2024 08:03:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56690
IP address blocks: 91.226.172.0/22 maxlen: 22
185.250.60.0/22 maxlen: 22
193.39.116.0/24 maxlen: 24
2a09:8880::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/f96430-62d4-4310-8493-ae1aa1654cde/1/Eioro8wYyZhQEwns3gQnBq9bhFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/f96430-62d4-4310-8493-ae1aa1654cde/1/Eioro8wYyZhQEwns3gQnBq9bhFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Eioro8wYyZhQEwns3gQnBq9bhFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2e:d8:f2:c5:94:12:74:9f:8b:54:1e:bb:32:10:2b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=122a2ba3cc18c998501309ecde042706af5b845a
Validity
Not Before: Nov 15 08:03:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48c227afb6eb71743b013573ff73cd828a2d84c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0c:0a:f2:ea:d7:12:c9:e5:56:eb:26:50:4d:
ba:09:64:1f:e5:31:c4:7d:0d:f9:79:02:ea:a5:49:
d2:f2:9b:05:54:3c:7c:85:b8:db:c1:e2:e2:ea:e1:
6d:36:d8:da:04:f2:64:97:cc:7d:42:62:b6:64:f5:
eb:3b:31:06:64:f6:5b:59:a3:a3:ad:f6:33:a9:e0:
93:24:92:61:f5:b1:e5:35:9c:37:e4:4a:e4:ab:4a:
98:38:9b:36:e5:89:7d:15:36:d6:38:d3:41:32:c8:
0d:c9:c0:00:65:d8:b0:ad:30:74:fc:e5:33:27:22:
0e:58:b2:9d:b3:9f:cd:9a:7b:ef:2b:dc:6f:39:58:
a9:8a:5f:c7:54:8d:4d:c4:96:00:da:74:37:d0:e6:
90:ad:9a:31:32:be:c2:1d:eb:94:fd:8d:a6:cd:a8:
0e:13:3a:c8:56:61:9d:8a:5d:9c:96:fe:1c:36:90:
a1:30:5b:fb:ec:80:7d:a6:5d:25:5f:bb:f8:0e:65:
46:80:05:bd:70:7c:d6:10:5e:7b:81:bf:62:b6:b9:
cf:0d:ba:65:ed:10:f2:72:20:bc:b3:a8:5c:be:56:
30:08:62:7c:35:9e:70:52:80:cd:f6:ac:ae:2f:12:
69:91:29:7a:fc:19:e1:64:67:43:17:a2:c5:13:9f:
2a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C2:27:AF:B6:EB:71:74:3B:01:35:73:FF:73:CD:82:8A:2D:84:C0
X509v3 Authority Key Identifier:
keyid:12:2A:2B:A3:CC:18:C9:98:50:13:09:EC:DE:04:27:06:AF:5B:84:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eioro8wYyZhQEwns3gQnBq9bhFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f96430-62d4-4310-8493-ae1aa1654cde/1/SMInr7brcXQ7ATVz_3PNgoothMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f96430-62d4-4310-8493-ae1aa1654cde/1/Eioro8wYyZhQEwns3gQnBq9bhFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.172.0/22
185.250.60.0/22
193.39.116.0/24
IPv6:
2a09:8880::/36
Signature Algorithm: sha256WithRSAEncryption
17:26:16:0e:f8:f8:02:ff:b1:a6:fd:3f:32:5c:3f:3a:9d:ab:
73:9a:94:49:4d:6e:10:f0:f8:27:09:9f:ef:f3:9a:34:2d:9b:
61:c4:e8:d6:e6:d1:f2:3f:4f:65:bb:23:9d:54:85:ad:b5:c9:
e6:59:d3:80:65:2d:f6:1c:e9:74:10:67:d3:c2:1f:d7:16:70:
cf:22:20:3a:0c:e1:18:3b:49:1c:02:22:56:a3:ad:0a:bf:7a:
43:23:98:12:33:93:40:cc:30:f2:ad:c9:24:1d:f1:6f:ac:fc:
ac:b2:d0:dd:b5:5b:37:4b:41:d8:d0:bd:28:1d:73:c3:80:9d:
b7:36:a1:fc:8e:df:bb:aa:8e:6f:bc:a2:89:fb:59:38:63:fe:
15:f1:02:db:c5:55:e5:4b:16:85:f0:0e:4d:e4:a0:5b:e6:a7:
f8:8b:b8:da:b0:d4:d9:a0:f8:6e:82:ce:2f:2f:93:62:7b:7f:
fc:94:f8:0b:54:ba:37:b1:cb:f1:49:86:d7:70:d1:c2:78:c5:
9c:07:ed:ca:22:c0:7d:34:f4:27:84:f4:29:57:90:ca:6d:93:
59:c1:8e:9c:a8:90:d2:3b:98:04:93:1e:e7:b7:af:14:ee:8a:
8a:ce:58:0f:1c:a0:7e:94:3e:85:4e:70:13:f2:14:f9:a3:ba:
ee:6e:ab:1a
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZMu2PLFlBJ0n4tUHrsyECu9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyMmEyYmEzY2MxOGM5OTg1MDEzMDllY2RlMDQyNzA2YWY1
Yjg0NWEwHhcNMjQxMTE1MDgwMzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGMyMjdhZmI2ZWI3MTc0M2IwMTM1NzNmZjczY2Q4MjhhMmQ4NGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6QwK8urXEsnlVusmUE26CWQf5THE
fQ35eQLqpUnS8psFVDx8hbjbweLi6uFtNtjaBPJkl8x9QmK2ZPXrOzEGZPZbWaOj
rfYzqeCTJJJh9bHlNZw35Erkq0qYOJs25Yl9FTbWONNBMsgNycAAZdiwrTB0/OUz
JyIOWLKds5/NmnvvK9xvOVipil/HVI1NxJYA2nQ30OaQrZoxMr7CHeuU/Y2mzagO
EzrIVmGdil2clv4cNpChMFv77IB9pl0lX7v4DmVGgAW9cHzWEF57gb9itrnPDbpl
7RDyciC8s6hcvlYwCGJ8NZ5wUoDN9qyuLxJpkSl6/BnhZGdDF6LFE58qAQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFEjCJ6+263F0OwE1c/9zzYKKLYTAMB8GA1UdIwQY
MBaAFBIqK6PMGMmYUBMJ7N4EJwavW4RaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWlvcm84d1l5WmhRRXduczNnUW5CcTliaEZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9mOTY0MzAtNjJkNC00MzEwLTg0OTMt
YWUxYWExNjU0Y2RlLzEvU01JbnI3YnJjWFE3QVRWel8zUE5nb290aE1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9mOTY0MzAtNjJkNC00MzEwLTg0OTMtYWUxYWExNjU0Y2Rl
LzEvRWlvcm84d1l5WmhRRXduczNnUW5CcTliaEZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAYBAIAATASAwQCW+KsAwQC
ufo8AwQAwSd0MA4EAgACMAgDBgQqCYiAADANBgkqhkiG9w0BAQsFAAOCAQEAFyYW
Dvj4Av+xpv0/Mlw/Op2rc5qUSU1uEPD4Jwmf7/OaNC2bYcTo1ubR8j9PZbsjnVSF
rbXJ5lnTgGUt9hzpdBBn08If1xZwzyIgOgzhGDtJHAIiVqOtCr96QyOYEjOTQMww
8q3JJB3xb6z8rLLQ3bVbN0tB2NC9KB1zw4Cdtzah/I7fu6qOb7yiiftZOGP+FfEC
28VV5UsWhfAOTeSgW+an+Iu42rDU2aD4boLOLy+TYnt//JT4C1S6N7HL8UmG13DR
wnjFnAftyiLAfTT0J4T0KVeQym2TWcGOnKiQ0juYBJMe57evFO6Kis5YDxygfpQ+
hU5wE/IU+aO67m6rGg==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:38:32 2024 by rpki-client on console-ams.rpki-client.org