Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/Nj22e03p1ismiyI2m4JNTTUp6eo.roa
File: Nj22e03p1ismiyI2m4JNTTUp6eo.roa (raw, json)
Hash identifier: we0p/0cbdno49Ce28Y4zzzMGGAKWVQq0hvRW7Fr48UY=
Subject key identifier: 36:3D:B6:7B:4D:E9:D6:2B:26:8B:22:36:9B:82:4D:4D:35:29:E9:EA
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 01926775AF7141BA0E58423D1B05EE33E724
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/Nj22e03p1ismiyI2m4JNTTUp6eo.roa
Signing time: Mon 07 Oct 2024 14:50:18 +0000
ROA not before: Mon 07 Oct 2024 14:50:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201307
IP address blocks: 2a06:1e00:70::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:67:75:af:71:41:ba:0e:58:42:3d:1b:05:ee:33:e7:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Oct 7 14:50:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=363db67b4de9d62b268b22369b824d4d3529e9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7b:22:33:86:4f:83:6e:86:c6:02:1a:1b:90:
98:51:1a:8d:9f:7d:94:3c:08:35:cc:b6:01:c3:f4:
33:ce:95:5f:8f:b5:54:59:6a:99:ae:3d:40:38:56:
c0:55:59:a7:83:9e:d8:8e:99:71:cb:cb:8d:7f:ba:
5b:e8:e3:ef:dd:c3:1a:fe:24:65:11:67:60:dd:c8:
9b:f1:05:82:af:30:57:37:d6:ec:32:59:94:3a:3a:
12:5f:6f:01:0a:86:b2:f7:e0:cf:4d:00:75:51:29:
15:f4:d1:f7:88:4b:e5:f4:13:15:89:d3:4d:c1:b5:
04:23:1b:41:7a:b0:9c:20:26:77:c3:8c:93:7c:90:
ae:6e:0b:bf:97:06:32:0e:bc:46:a1:4b:21:88:49:
99:e6:88:87:fe:f6:19:a9:04:ee:fe:2d:b9:36:ff:
1a:39:b2:44:57:eb:9b:a9:71:27:34:67:c2:03:26:
9e:69:b0:f2:8a:c7:3f:33:92:a3:f4:ca:0d:e9:8f:
82:64:75:c1:8e:ac:45:a8:c8:cb:f4:fd:d8:49:f1:
0d:99:af:2c:d9:b9:2a:32:b0:f8:67:97:ab:d3:45:
9c:d4:60:b1:1e:e0:c0:f5:5f:46:21:a4:78:a4:0a:
83:f8:3f:34:1d:db:68:8f:e3:57:be:22:5b:91:9f:
b0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:3D:B6:7B:4D:E9:D6:2B:26:8B:22:36:9B:82:4D:4D:35:29:E9:EA
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/Nj22e03p1ismiyI2m4JNTTUp6eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1e00:70::/48
Signature Algorithm: sha256WithRSAEncryption
6a:3b:1e:09:b4:83:2c:32:40:5a:1b:7d:bd:99:db:75:2b:31:
74:4c:16:cc:e0:b0:44:c2:c3:14:2f:06:24:27:2d:2a:0a:59:
ca:45:94:11:d1:8e:b1:d2:53:87:b6:c4:1d:b1:de:1d:b1:67:
a8:ec:28:2a:ea:db:20:21:9b:d0:8e:0d:5a:34:b5:81:5d:9c:
85:b2:c7:e7:21:c0:f8:d5:ed:73:e1:76:52:49:a9:3f:04:f7:
ad:24:64:df:50:2b:61:31:b3:ad:81:3a:e1:04:c5:51:ef:87:
f9:a7:ce:5f:b8:83:a0:cc:db:4b:6d:cb:ca:6e:e9:3f:e5:67:
da:b9:43:f6:33:d2:3c:f4:0a:4f:60:d5:64:1d:83:61:7f:3a:
18:b1:47:53:2a:ac:d2:b6:22:bf:27:12:d2:e3:0d:af:ff:ba:
ba:b9:ea:df:9b:41:88:05:18:12:13:33:ef:ae:b0:22:04:17:
05:24:57:5b:77:3a:e8:71:c6:2c:80:77:8b:cd:fa:7d:cc:50:
e8:65:ab:1b:cf:da:2f:e8:e8:14:4a:f0:0a:25:63:90:6a:79:
43:5c:bd:8a:f0:5e:c3:ce:9e:b0:10:5b:0e:1f:cd:f9:8b:7d:
e7:d2:8e:20:a6:28:e6:02:dc:df:bd:5d:39:93:2d:10:bd:9c:
0b:7e:96:fc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZJnda9xQboOWEI9GwXuM+ckMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0
MWE4ZDMwHhcNMjQxMDA3MTQ1MDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjNkYjY3YjRkZTlkNjJiMjY4YjIyMzY5YjgyNGQ0ZDM1MjllOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXsiM4ZPg26GxgIaG5CYURqNn32U
PAg1zLYBw/QzzpVfj7VUWWqZrj1AOFbAVVmng57Yjplxy8uNf7pb6OPv3cMa/iRl
EWdg3cib8QWCrzBXN9bsMlmUOjoSX28BCoay9+DPTQB1USkV9NH3iEvl9BMVidNN
wbUEIxtBerCcICZ3w4yTfJCubgu/lwYyDrxGoUshiEmZ5oiH/vYZqQTu/i25Nv8a
ObJEV+ubqXEnNGfCAyaeabDyisc/M5Kj9MoN6Y+CZHXBjqxFqMjL9P3YSfENma8s
2bkqMrD4Z5er00Wc1GCxHuDA9V9GIaR4pAqD+D80Hdtoj+NXviJbkZ+wLQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDY9tntN6dYrJosiNpuCTU01KenqMB8GA1UdIwQY
MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt
MjcxZDI1ZTIwNTc0LzEvTmoyMmUwM3AxaXNtaXlJMm00Sk5UVFVwNmVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0
LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgYeAABw
MA0GCSqGSIb3DQEBCwUAA4IBAQBqOx4JtIMsMkBaG329mdt1KzF0TBbM4LBEwsMU
LwYkJy0qClnKRZQR0Y6x0lOHtsQdsd4dsWeo7Cgq6tsgIZvQjg1aNLWBXZyFssfn
IcD41e1z4XZSSak/BPetJGTfUCthMbOtgTrhBMVR74f5p85fuIOgzNtLbcvKbuk/
5WfauUP2M9I89ApPYNVkHYNhfzoYsUdTKqzStiK/JxLS4w2v/7q6uerfm0GIBRgS
EzPvrrAiBBcFJFdbdzroccYsgHeLzfp9zFDoZasbz9ov6OgUSvAKJWOQanlDXL2K
8F7Dzp6wEFsOH835i33n0o4gpijmAtzfvV05ky0QvZwLfpb8
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:14:44 2024 by rpki-client on console-fra.rpki-client.org