Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b1bf57-679f-4564-b701-cb296708dec8/1/L-JAw7FNvaKL1-Ez8qjKZdxAZhg.roa
File: L-JAw7FNvaKL1-Ez8qjKZdxAZhg.roa (raw, json)
Hash identifier: rEjh+oT3+ma0U5qRGx3fwF4b+1NVrp59g/OZQIYsf1o=
Subject key identifier: 2F:E2:40:C3:B1:4D:BD:A2:8B:D7:E1:33:F2:A8:CA:65:DC:40:66:18
Certificate issuer: /CN=a69749fa2337db33a76474eb812c034e30509d2a
Certificate serial: 018DC72706A5066381E38BE56CA9EEAE73E1
Authority key identifier: A6:97:49:FA:23:37:DB:33:A7:64:74:EB:81:2C:03:4E:30:50:9D:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ppdJ-iM32zOnZHTrgSwDTjBQnSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b1bf57-679f-4564-b701-cb296708dec8/1/L-JAw7FNvaKL1-Ez8qjKZdxAZhg.roa
Signing time: Tue 20 Feb 2024 15:34:00 +0000
ROA not before: Tue 20 Feb 2024 15:34:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15404
IP address blocks: 156.118.0.0/24 maxlen: 24
156.118.6.0/24 maxlen: 24
156.118.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/b1bf57-679f-4564-b701-cb296708dec8/1/ppdJ-iM32zOnZHTrgSwDTjBQnSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/b1bf57-679f-4564-b701-cb296708dec8/1/ppdJ-iM32zOnZHTrgSwDTjBQnSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ppdJ-iM32zOnZHTrgSwDTjBQnSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 07:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:27:06:a5:06:63:81:e3:8b:e5:6c:a9:ee:ae:73:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a69749fa2337db33a76474eb812c034e30509d2a
Validity
Not Before: Feb 20 15:34:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2fe240c3b14dbda28bd7e133f2a8ca65dc406618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bb:48:0b:09:bc:dd:61:88:2d:08:da:fe:62:
64:db:f1:a9:1b:28:5d:fd:7e:a2:68:69:50:29:3c:
1e:7e:d3:fd:21:65:74:0c:32:04:fc:a1:ee:e6:28:
7f:b1:77:19:14:80:99:9d:59:29:4d:28:aa:37:d8:
4b:aa:db:6d:1b:a2:a7:0e:b9:1d:6c:22:0f:b7:f4:
b6:c0:f3:65:49:a2:1a:74:0a:0a:9c:c9:61:13:9b:
b5:78:89:11:66:0f:8e:17:54:f5:a9:78:cc:d4:d9:
84:ad:26:8d:0a:26:04:9f:66:e6:f2:99:0c:88:35:
e2:81:d1:74:f0:b1:40:45:91:af:e3:01:b9:44:5d:
b9:15:59:79:d5:1e:d5:42:90:bc:a8:aa:69:d5:12:
8a:68:f0:24:44:e4:5c:d7:d3:48:72:b0:c4:59:7b:
06:7d:c1:1a:f0:44:dd:0f:38:d7:45:f6:16:4c:19:
9a:b3:53:ca:a0:7b:b5:e7:54:67:9f:47:91:69:69:
0e:a6:96:56:8d:1e:c6:4f:c8:22:0d:19:09:7c:b0:
f0:12:09:cd:eb:bd:1a:b6:a4:8a:1c:ac:e3:cb:d6:
b1:49:5a:ea:82:a9:13:fa:f9:48:a0:b7:16:89:c5:
11:c9:bd:1d:42:0c:0e:f2:ae:04:77:95:bb:66:7a:
22:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E2:40:C3:B1:4D:BD:A2:8B:D7:E1:33:F2:A8:CA:65:DC:40:66:18
X509v3 Authority Key Identifier:
keyid:A6:97:49:FA:23:37:DB:33:A7:64:74:EB:81:2C:03:4E:30:50:9D:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ppdJ-iM32zOnZHTrgSwDTjBQnSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b1bf57-679f-4564-b701-cb296708dec8/1/L-JAw7FNvaKL1-Ez8qjKZdxAZhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b1bf57-679f-4564-b701-cb296708dec8/1/ppdJ-iM32zOnZHTrgSwDTjBQnSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.118.0.0/24
156.118.6.0/24
156.118.8.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f0:5d:77:d8:67:01:f4:1b:6d:bb:0e:a7:b1:5f:42:c3:35:
2f:2a:7f:2e:54:28:c3:34:b0:82:69:9a:f5:d2:18:5c:d5:c8:
9e:b0:ac:81:d4:3d:3c:ab:2c:90:85:13:d9:61:16:1b:bc:cd:
5d:72:4f:3e:eb:3b:ad:f9:ee:a4:bd:c7:62:2c:9e:34:17:53:
4b:fe:4f:54:c6:06:c1:52:87:4a:a7:ab:2f:ec:de:3b:e2:90:
82:8a:12:af:28:d2:14:45:9b:31:d1:a9:74:d3:1e:5c:28:75:
87:88:c2:fb:9d:ab:bf:46:16:b4:ce:f5:46:29:80:3a:b2:96:
be:79:bf:2a:21:4a:39:4c:70:d6:f8:fa:fd:44:03:9f:40:21:
8f:e0:f2:4e:1e:a4:ef:d7:5c:90:ce:ca:44:f0:75:9d:51:85:
ac:17:c3:76:b1:38:90:e3:f7:13:57:b5:68:af:ec:a1:9f:15:
f5:7d:bf:a7:26:d2:37:d5:50:bf:ee:0d:39:2a:35:dc:c0:36:
be:2f:6e:f0:ef:ea:dd:65:82:64:c4:a2:a0:bd:1e:52:00:a3:
3a:4c:c5:d5:95:b7:48:f2:97:24:e9:81:57:3c:9e:4b:d8:6e:
1d:01:0a:e7:d1:01:11:f2:18:d3:2d:3e:ca:ab:18:03:08:ac:
45:eb:51:46
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY3HJwalBmOB44vlbKnurnPhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2OTc0OWZhMjMzN2RiMzNhNzY0NzRlYjgxMmMwMzRlMzA1
MDlkMmEwHhcNMjQwMjIwMTUzNDAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmUyNDBjM2IxNGRiZGEyOGJkN2UxMzNmMmE4Y2E2NWRjNDA2NjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLtICwm83WGILQja/mJk2/GpGyhd
/X6iaGlQKTweftP9IWV0DDIE/KHu5ih/sXcZFICZnVkpTSiqN9hLqtttG6KnDrkd
bCIPt/S2wPNlSaIadAoKnMlhE5u1eIkRZg+OF1T1qXjM1NmErSaNCiYEn2bm8pkM
iDXigdF08LFARZGv4wG5RF25FVl51R7VQpC8qKpp1RKKaPAkRORc19NIcrDEWXsG
fcEa8ETdDzjXRfYWTBmas1PKoHu151Rnn0eRaWkOppZWjR7GT8giDRkJfLDwEgnN
670atqSKHKzjy9axSVrqgqkT+vlIoLcWicURyb0dQgwO8q4Ed5W7ZnoiDwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFC/iQMOxTb2ii9fhM/KoymXcQGYYMB8GA1UdIwQY
MBaAFKaXSfojN9szp2R064EsA04wUJ0qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHBkSi1pTTMyek9uWkhUcmdTd0RUakJRblNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9iMWJmNTctNjc5Zi00NTY0LWI3MDEt
Y2IyOTY3MDhkZWM4LzEvTC1KQXc3Rk52YUtMMS1FejhxaktaZHhBWmhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9iMWJmNTctNjc5Zi00NTY0LWI3MDEtY2IyOTY3MDhkZWM4
LzEvcHBkSi1pTTMyek9uWkhUcmdTd0RUakJRblNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAnHYAAwQA
nHYGAwQAnHYIMA0GCSqGSIb3DQEBCwUAA4IBAQAw8F132GcB9Bttuw6nsV9CwzUv
Kn8uVCjDNLCCaZr10hhc1ciesKyB1D08qyyQhRPZYRYbvM1dck8+6zut+e6kvcdi
LJ40F1NL/k9UxgbBUodKp6sv7N474pCCihKvKNIURZsx0al00x5cKHWHiML7nau/
Rha0zvVGKYA6spa+eb8qIUo5THDW+Pr9RAOfQCGP4PJOHqTv11yQzspE8HWdUYWs
F8N2sTiQ4/cTV7Vor+yhnxX1fb+nJtI31VC/7g05KjXcwDa+L27w7+rdZYJkxKKg
vR5SAKM6TMXVlbdI8pck6YFXPJ5L2G4dAQrn0QER8hjTLT7KqxgDCKxF61FG
-----END CERTIFICATE-----
Generated at Fri Nov 22 15:03:14 2024 by rpki-client on console-ams.rpki-client.org