Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/v-ExW6h9s90EhSLlWAEPOZJgQfU.roa
File: v-ExW6h9s90EhSLlWAEPOZJgQfU.roa (raw, json)
Hash identifier: drMD9dymUKsiv+aQe4jWgg2gb5qlZZGuymkQnX0q53s=
Subject key identifier: BF:E1:31:5B:A8:7D:B3:DD:04:85:22:E5:58:01:0F:39:92:60:41:F5
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 0191B415A3B2AB86D7F01C60B2C169FB543A
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/v-ExW6h9s90EhSLlWAEPOZJgQfU.roa
Signing time: Mon 02 Sep 2024 18:53:22 +0000
ROA not before: Mon 02 Sep 2024 18:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.108.80.0/21 maxlen: 24
93.127.160.0/24 maxlen: 24
93.127.161.0/24 maxlen: 24
93.127.164.0/24 maxlen: 24
93.127.175.0/24 maxlen: 24
93.127.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b4:15:a3:b2:ab:86:d7:f0:1c:60:b2:c1:69:fb:54:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Sep 2 18:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfe1315ba87db3dd048522e558010f39926041f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3d:61:3d:1d:31:1b:77:68:3a:f7:29:19:1c:
b1:cf:fb:bb:46:9e:24:8e:34:07:b5:8b:28:b0:41:
dd:75:87:62:1a:1b:f1:72:f7:e2:9a:5b:22:f3:bf:
4d:f4:11:58:4e:d5:d0:e8:28:33:3e:ad:19:85:2e:
c0:4f:02:5e:a8:66:b9:a4:de:f6:7e:d2:20:1a:b8:
d9:96:ab:0a:ce:92:01:82:2e:04:8e:92:57:ff:a8:
e0:8b:78:ed:44:b5:c1:4c:40:b9:e8:a1:57:0a:af:
e2:ad:e2:9a:c2:f8:e2:20:28:dc:45:42:a8:d1:23:
31:4a:c5:99:5b:a8:2f:ec:e2:04:b2:05:3e:91:fc:
4c:5a:ff:d9:3c:95:d0:ed:af:07:9d:57:b1:66:8c:
f7:0c:0f:c8:59:9d:64:6b:f9:1e:08:31:a3:82:e8:
e8:1a:8a:b8:2e:23:e3:d2:4c:17:7c:c9:8a:dd:04:
ee:fe:89:16:cd:5e:0c:0f:1d:84:13:91:d4:a7:88:
33:89:2c:20:bf:05:64:d7:20:40:ec:42:21:df:0e:
f9:78:ec:f0:5a:79:a7:cd:9e:b7:5b:ef:32:61:3b:
d0:46:ad:36:91:51:c4:e0:5d:bf:6c:10:5d:1f:87:
25:07:03:7c:3f:ff:32:d6:db:e8:ab:b1:61:30:06:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E1:31:5B:A8:7D:B3:DD:04:85:22:E5:58:01:0F:39:92:60:41:F5
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/v-ExW6h9s90EhSLlWAEPOZJgQfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.80.0/21
93.127.160.0/23
93.127.164.0/24
93.127.175.0/24
93.127.184.0/24
Signature Algorithm: sha256WithRSAEncryption
69:56:0f:4e:d6:60:cd:ad:70:7a:9c:8a:74:6b:ab:b0:7f:9c:
19:2e:71:6f:0d:8d:87:57:92:67:29:63:6b:06:70:17:2d:2f:
fa:64:2a:6e:65:db:c5:01:51:3e:fa:d9:82:dc:9d:b6:53:fb:
8b:45:cc:43:51:32:6f:a8:f0:7e:1b:a8:b4:e7:f6:d7:55:eb:
60:c7:34:07:cd:12:a4:0d:a5:57:c0:47:c0:10:62:33:07:46:
1c:77:67:c6:54:62:e4:60:57:a3:76:ed:89:58:e9:39:4e:bc:
86:89:d2:fc:96:46:cf:d5:83:e8:48:cd:2d:b4:d5:fb:b0:15:
d3:d9:f6:3f:e7:82:a3:1d:72:3b:ee:4c:a3:21:9b:71:09:f7:
06:ab:8f:34:79:33:cc:67:0e:4b:33:2a:33:e8:e2:c7:8c:08:
45:57:30:0f:50:23:1f:d2:b2:61:2f:ce:5c:a3:f6:44:d6:fb:
1c:0e:76:3d:44:ea:0d:40:a0:71:d8:b1:1c:b8:5f:8d:5f:cb:
36:0e:12:4f:4b:ec:4b:54:58:32:b4:db:0a:ef:23:88:91:52:
72:8d:21:b3:5b:83:49:e2:73:83:9b:f3:67:e6:9d:e9:9b:59:
d1:b7:66:4d:56:2b:c6:05:29:f5:58:65:32:76:57:9d:d6:ea:
e3:bf:8b:87
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZG0FaOyq4bX8BxgssFp+1Q6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzhiYzNiZDM1MGVlZGM0ZjM3N2MyMjQ1NTZiMjUwZGE2
ZGRlNmYwHhcNMjQwOTAyMTg1MzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmUxMzE1YmE4N2RiM2RkMDQ4NTIyZTU1ODAxMGYzOTkyNjA0MWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtD1hPR0xG3doOvcpGRyxz/u7Rp4k
jjQHtYsosEHddYdiGhvxcvfimlsi879N9BFYTtXQ6CgzPq0ZhS7ATwJeqGa5pN72
ftIgGrjZlqsKzpIBgi4EjpJX/6jgi3jtRLXBTEC56KFXCq/ireKawvjiICjcRUKo
0SMxSsWZW6gv7OIEsgU+kfxMWv/ZPJXQ7a8HnVexZoz3DA/IWZ1ka/keCDGjgujo
Goq4LiPj0kwXfMmK3QTu/okWzV4MDx2EE5HUp4gziSwgvwVk1yBA7EIh3w75eOzw
WnmnzZ63W+8yYTvQRq02kVHE4F2/bBBdH4clBwN8P/8y1tvoq7FhMAaxowIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFL/hMVuofbPdBIUi5VgBDzmSYEH1MB8GA1UdIwQY
MBaAFMN4vDvTUO7cTzd8IkVWslDabd5vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYt
NDQxNDU1OGZkY2JiLzEvdi1FeFc2aDlzOTBFaFNMbFdBRVBPWkpnUWZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYtNDQxNDU1OGZkY2Ji
LzEvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQDW2xQAwQB
XX+gAwQAXX+kAwQAXX+vAwQAXX+4MA0GCSqGSIb3DQEBCwUAA4IBAQBpVg9O1mDN
rXB6nIp0a6uwf5wZLnFvDY2HV5JnKWNrBnAXLS/6ZCpuZdvFAVE++tmC3J22U/uL
RcxDUTJvqPB+G6i05/bXVetgxzQHzRKkDaVXwEfAEGIzB0Ycd2fGVGLkYFejdu2J
WOk5TryGidL8lkbP1YPoSM0ttNX7sBXT2fY/54KjHXI77kyjIZtxCfcGq480eTPM
Zw5LMyoz6OLHjAhFVzAPUCMf0rJhL85co/ZE1vscDnY9ROoNQKBx2LEcuF+NX8s2
DhJPS+xLVFgytNsK7yOIkVJyjSGzW4NJ4nODm/Nn5p3pm1nRt2ZNVivGBSn1WGUy
dled1urjv4uH
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:34:40 2024 by rpki-client on console-ams.rpki-client.org