Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa
File: pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa (raw, json)
Hash identifier: F1gmG4AxGffRMFNm8UtOfvWv3JzHTZGEB9cWh9szsEM=
Subject key identifier: A4:83:54:A7:68:A8:E1:3A:5B:73:B1:A7:ED:8C:6C:03:A2:ED:F2:60
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018CC4249EC9311EDF816A5A05A6FBFA58FA
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa
Signing time: Mon 01 Jan 2024 08:29:43 +0000
ROA not before: Mon 01 Jan 2024 08:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31400
IP address blocks: 93.127.128.0/17 maxlen: 17
77.37.0.0/17 maxlen: 17
2a01:4d0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:9e:c9:31:1e:df:81:6a:5a:05:a6:fb:fa:58:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 1 08:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a48354a768a8e13a5b73b1a7ed8c6c03a2edf260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c9:60:c9:d7:63:2c:15:70:89:cf:3e:4e:b8:
f9:25:11:f9:e7:c9:e2:43:e3:ac:82:a3:d9:8e:84:
40:cb:b1:56:5a:7c:a8:9e:8d:9d:cc:d9:4e:a0:74:
7c:95:d3:de:8c:3a:35:5f:86:73:f7:e9:c6:0f:a5:
3e:7e:d5:6e:1c:8b:da:67:05:75:fb:09:a1:df:6f:
7a:84:ee:9a:2d:88:3b:ca:6f:09:f2:05:26:fd:c9:
ef:c8:94:3c:1f:27:c2:aa:13:77:f3:8a:67:e7:3b:
71:24:8e:a3:8e:c9:69:6d:48:62:1a:2a:23:82:de:
ef:96:7e:f9:6b:16:7d:6c:d9:ea:18:71:cd:c0:49:
31:21:6e:82:67:01:ec:4f:15:15:52:c7:0a:56:94:
8b:31:48:09:12:7f:46:a3:9f:20:ae:b0:82:6f:20:
9f:62:ee:b2:21:a4:fd:b5:76:71:a6:cb:38:8a:11:
4a:b0:96:1f:23:03:7b:d3:0a:a1:c4:82:75:07:85:
b3:b2:c6:fe:c6:96:1c:f4:30:32:77:9c:3b:4a:3d:
a4:28:09:20:cf:0b:15:35:bf:ef:3d:d4:4f:06:68:
0b:a6:97:63:89:71:a3:d7:35:67:25:d6:54:ba:08:
3c:a9:8f:14:66:bd:2f:5c:d0:4b:85:36:8d:6f:f9:
99:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:83:54:A7:68:A8:E1:3A:5B:73:B1:A7:ED:8C:6C:03:A2:ED:F2:60
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.0.0/17
93.127.128.0/17
IPv6:
2a01:4d0::/32
Signature Algorithm: sha256WithRSAEncryption
15:e9:2e:5b:05:dc:28:c7:73:f4:6d:54:8c:23:2a:a0:18:23:
27:6c:16:c5:9e:c3:3d:86:35:33:66:a5:70:44:9d:1f:34:4f:
b5:c2:25:49:fb:bd:ea:3a:8a:02:e3:af:bb:9a:b5:30:17:f5:
d1:86:ab:83:14:5f:26:56:ee:27:c1:3c:ce:af:ad:3c:06:04:
21:3d:91:e1:45:15:53:f8:23:69:09:63:cd:80:c1:7e:60:1e:
a1:e8:fa:5c:27:2a:aa:54:57:1d:a2:65:10:ac:b3:0b:4f:48:
09:c3:c0:69:99:85:d6:25:c3:fa:25:06:26:a5:5b:85:01:4b:
7e:22:00:f8:b2:43:ff:b5:13:a6:64:cb:82:db:7d:d5:57:4c:
b0:33:ec:5a:7c:86:db:bb:2e:83:51:49:cd:4f:08:f3:38:e2:
a3:eb:03:37:ef:9f:dc:00:28:c1:93:5e:8f:28:48:5f:22:1e:
4e:19:23:4d:96:58:eb:fa:9f:5f:be:58:1b:1d:aa:42:95:3e:
35:37:10:be:fc:fe:52:34:7b:63:a9:80:1d:9d:89:a8:eb:cb:
2d:b3:1b:0e:43:95:6c:3f:9b:63:1a:01:79:27:b6:c7:3f:7b:
83:d7:e2:f7:9d:f0:97:37:ed:97:4d:70:0f:91:28:e3:a6:13:
e2:94:cd:f8
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYzEJJ7JMR7fgWpaBab7+lj6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzhiYzNiZDM1MGVlZGM0ZjM3N2MyMjQ1NTZiMjUwZGE2
ZGRlNmYwHhcNMjQwMTAxMDgyOTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNDgzNTRhNzY4YThlMTNhNWI3M2IxYTdlZDhjNmMwM2EyZWRmMjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5slgyddjLBVwic8+Trj5JRH558ni
Q+OsgqPZjoRAy7FWWnyono2dzNlOoHR8ldPejDo1X4Zz9+nGD6U+ftVuHIvaZwV1
+wmh3296hO6aLYg7ym8J8gUm/cnvyJQ8HyfCqhN384pn5ztxJI6jjslpbUhiGioj
gt7vln75axZ9bNnqGHHNwEkxIW6CZwHsTxUVUscKVpSLMUgJEn9Go58grrCCbyCf
Yu6yIaT9tXZxpss4ihFKsJYfIwN70wqhxIJ1B4Wzssb+xpYc9DAyd5w7Sj2kKAkg
zwsVNb/vPdRPBmgLppdjiXGj1zVnJdZUugg8qY8UZr0vXNBLhTaNb/mZ7QIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFKSDVKdoqOE6W3Oxp+2MbAOi7fJgMB8GA1UdIwQY
MBaAFMN4vDvTUO7cTzd8IkVWslDabd5vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYt
NDQxNDU1OGZkY2JiLzEvcElOVXAyaW80VHBiYzdHbjdZeHNBNkx0OG1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYtNDQxNDU1OGZkY2Ji
LzEvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQHTSUAAwQH
XX+AMA0EAgACMAcDBQAqAQTQMA0GCSqGSIb3DQEBCwUAA4IBAQAV6S5bBdwox3P0
bVSMIyqgGCMnbBbFnsM9hjUzZqVwRJ0fNE+1wiVJ+73qOooC46+7mrUwF/XRhquD
FF8mVu4nwTzOr608BgQhPZHhRRVT+CNpCWPNgMF+YB6h6PpcJyqqVFcdomUQrLML
T0gJw8BpmYXWJcP6JQYmpVuFAUt+IgD4skP/tROmZMuC233VV0ywM+xafIbbuy6D
UUnNTwjzOOKj6wM375/cACjBk16PKEhfIh5OGSNNlljr+p9fvlgbHapClT41NxC+
/P5SNHtjqYAdnYmo68stsxsOQ5VsP5tjGgF5J7bHP3uD1+L3nfCXN+2XTXAPkSjj
phPilM34
-----END CERTIFICATE-----
Generated at Sat May 4 11:28:43 2024 by rpki-client on console-ams.rpki-client.org