Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/DwHkX7aBlo0KN6UO7N54ypgz1Oo.roa
File: DwHkX7aBlo0KN6UO7N54ypgz1Oo.roa (raw, json)
Hash identifier: BciQiiTGYCVYMH5qxxlpTGjV4WdJu38KzohjLrwdrGY=
Subject key identifier: 0F:01:E4:5F:B6:81:96:8D:0A:37:A5:0E:EC:DE:78:CA:98:33:D4:EA
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EE6A3A17E9F52E59E7425D1D8879068CC
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/DwHkX7aBlo0KN6UO7N54ypgz1Oo.roa
Signing time: Tue 16 Apr 2024 11:21:07 +0000
ROA not before: Tue 16 Apr 2024 11:21:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44412
IP address blocks: 212.94.0.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:a3:a1:7e:9f:52:e5:9e:74:25:d1:d8:87:90:68:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 16 11:21:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f01e45fb681968d0a37a50eecde78ca9833d4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:08:8f:41:0e:6a:b4:58:60:3a:a6:2f:64:c2:
5d:b7:33:16:54:90:05:99:d0:8f:ba:79:91:b5:8c:
77:fb:18:04:7e:9e:4e:9b:86:d0:a3:0b:78:34:2d:
7b:dc:61:98:9e:fa:61:4e:0f:8f:77:d5:8f:8e:4f:
d7:9d:9a:88:c9:52:6a:5f:26:13:59:2a:5c:76:92:
b0:d9:9f:15:75:e1:d6:6a:bf:26:f9:cc:c9:3c:68:
13:c5:95:e9:ea:4e:39:d8:b8:b0:0e:bf:02:aa:ad:
8e:2e:61:38:d4:2a:9c:e7:4c:44:2f:24:b7:0c:d0:
48:9f:df:ff:68:fa:3d:d6:be:78:cc:76:f2:cb:b0:
60:05:5c:25:82:05:84:1a:49:89:f1:31:31:cd:69:
76:78:e9:ea:41:0f:60:a7:41:cd:7d:22:33:c8:5b:
69:5e:6e:6e:16:4c:c7:06:f1:43:c5:8c:f3:a4:85:
65:7f:3b:4a:7e:f8:34:10:b5:2b:15:13:f0:4e:a0:
14:50:01:9a:9c:0c:f4:55:a5:84:6b:52:f1:07:35:
42:67:61:c4:67:f8:fb:64:e1:77:72:c2:29:e4:a1:
40:68:ee:e5:ce:55:e1:a7:30:43:79:2c:6d:dc:82:
5c:6f:81:96:9d:a3:7f:7b:85:f2:3b:71:b7:a6:5e:
9d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:01:E4:5F:B6:81:96:8D:0A:37:A5:0E:EC:DE:78:CA:98:33:D4:EA
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/DwHkX7aBlo0KN6UO7N54ypgz1Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.94.0.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:a2:d2:c4:af:42:ce:87:86:87:a8:cc:42:e9:00:4a:30:68:
f2:ef:7b:8f:92:23:27:85:bc:93:4e:c8:f1:d2:c9:5b:50:b0:
95:69:4d:94:60:82:a1:45:b6:07:47:83:6f:42:71:b1:5a:1b:
40:48:e0:a7:9f:9b:b8:c3:73:0f:ad:86:28:8c:85:f6:fb:a0:
fd:8b:f5:05:c8:1e:24:66:80:76:2f:c3:ea:a5:34:46:a2:e4:
71:8e:80:c9:07:cc:7c:b0:ea:8a:15:95:b1:42:ce:33:11:4b:
2b:03:fe:c7:5c:3d:dd:e7:b8:5e:4e:dd:6f:ed:eb:a6:67:87:
4b:a0:50:8e:98:bb:27:91:42:cc:70:6a:15:0a:fb:1e:b1:d1:
35:2a:53:5d:8f:54:e3:21:2f:5c:01:00:d7:5f:63:19:c3:bc:
61:88:b1:73:bb:f0:66:99:4c:a9:b6:7e:dc:68:e9:5e:80:e4:
db:1b:24:99:e0:bb:dd:7d:04:af:2c:58:28:d3:a8:83:2d:0a:
17:fc:f5:38:34:54:24:a6:10:0a:d7:fa:6b:55:d2:a5:eb:3e:
8d:33:a5:33:52:17:9f:12:ca:74:ac:be:88:7a:70:32:d7:03:
ed:0e:00:b2:bb:2f:d9:22:9d:4c:8e:93:ee:72:19:50:4c:2e:
c1:f2:aa:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7mo6F+n1LlnnQl0diHkGjMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwNDE2MTEyMTA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjAxZTQ1ZmI2ODE5NjhkMGEzN2E1MGVlY2RlNzhjYTk4MzNkNGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAiPQQ5qtFhgOqYvZMJdtzMWVJAF
mdCPunmRtYx3+xgEfp5Om4bQowt4NC173GGYnvphTg+Pd9WPjk/XnZqIyVJqXyYT
WSpcdpKw2Z8VdeHWar8m+czJPGgTxZXp6k452LiwDr8Cqq2OLmE41Cqc50xELyS3
DNBIn9//aPo91r54zHbyy7BgBVwlggWEGkmJ8TExzWl2eOnqQQ9gp0HNfSIzyFtp
Xm5uFkzHBvFDxYzzpIVlfztKfvg0ELUrFRPwTqAUUAGanAz0VaWEa1LxBzVCZ2HE
Z/j7ZOF3csIp5KFAaO7lzlXhpzBDeSxt3IJcb4GWnaN/e4XyO3G3pl6dXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA8B5F+2gZaNCjelDuzeeMqYM9TqMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvRHdIa1g3YUJsbzBLTjZVTzdONTR5cGd6MU9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE1F4AMA0G
CSqGSIb3DQEBCwUAA4IBAQBaotLEr0LOh4aHqMxC6QBKMGjy73uPkiMnhbyTTsjx
0slbULCVaU2UYIKhRbYHR4NvQnGxWhtASOCnn5u4w3MPrYYojIX2+6D9i/UFyB4k
ZoB2L8PqpTRGouRxjoDJB8x8sOqKFZWxQs4zEUsrA/7HXD3d57heTt1v7eumZ4dL
oFCOmLsnkULMcGoVCvsesdE1KlNdj1TjIS9cAQDXX2MZw7xhiLFzu/BmmUyptn7c
aOlegOTbGySZ4LvdfQSvLFgo06iDLQoX/PU4NFQkphAK1/prVdKl6z6NM6UzUhef
Esp0rL6IenAy1wPtDgCyuy/ZIp1MjpPuchlQTC7B8qqZ
-----END CERTIFICATE-----
Generated at Fri Jun 7 18:56:01 2024 by rpki-client on console-fra.rpki-client.org