Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/V8i_9yyDe1LVgUsZ5bnZsYk196E.roa
File: V8i_9yyDe1LVgUsZ5bnZsYk196E.roa (raw, json)
Hash identifier: HoYZh+SQPPVAcG7EOfPYFTjkSnH9DXKRoO1w3N8VZLA=
Subject key identifier: 57:C8:BF:F7:2C:83:7B:52:D5:81:4B:19:E5:B9:D9:B1:89:35:F7:A1
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EE603A2C623A3C1BFFA25F033E1BC26B5
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/V8i_9yyDe1LVgUsZ5bnZsYk196E.roa
Signing time: Tue 16 Apr 2024 08:26:21 +0000
ROA not before: Tue 16 Apr 2024 08:26:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35516
IP address blocks: 80.240.240.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:03:a2:c6:23:a3:c1:bf:fa:25:f0:33:e1:bc:26:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 16 08:26:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57c8bff72c837b52d5814b19e5b9d9b18935f7a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e6:cd:88:5c:61:63:50:cf:f0:28:31:63:77:
7b:ea:62:1d:bc:21:94:64:9f:01:a6:32:db:20:c8:
05:3e:78:a5:63:33:ec:d7:41:8f:84:32:bd:f4:0c:
b5:12:b8:b2:0b:14:f4:ee:ea:c0:fb:62:26:67:86:
d7:e6:20:aa:59:d0:2b:14:8c:ed:4b:76:b7:97:f5:
31:58:e3:09:0e:0b:09:7e:43:6c:70:ff:6f:a0:77:
73:0a:5b:95:ff:3f:74:a3:d2:b4:ea:05:c5:8e:27:
ab:79:82:55:04:aa:db:a8:51:fc:5d:af:b7:a5:a7:
e3:fd:e1:0f:5e:ec:10:f9:d2:d6:5f:77:d0:a8:6f:
d2:3c:bb:38:bc:c3:c3:4a:10:16:da:33:91:5c:89:
01:f0:7c:c8:bf:4e:2e:ee:07:ca:8b:de:3b:cf:1b:
eb:df:35:59:cd:17:e8:fa:63:de:18:bb:a4:75:7e:
4b:66:a0:5d:75:c6:df:bc:29:36:05:89:36:06:7f:
04:84:09:25:63:59:9d:9b:20:34:5f:e4:4c:db:9d:
36:09:e7:18:a1:41:b7:ac:f9:97:0f:a8:6f:ca:f4:
82:6c:15:7f:4e:a9:28:70:24:3c:0d:2e:79:d5:12:
a6:1a:6d:99:38:01:f8:a9:9a:c7:ac:c6:4c:f1:ff:
10:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C8:BF:F7:2C:83:7B:52:D5:81:4B:19:E5:B9:D9:B1:89:35:F7:A1
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/V8i_9yyDe1LVgUsZ5bnZsYk196E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.240.240.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:4a:a5:cf:c6:db:35:f7:74:1e:b9:5a:1b:da:92:05:0d:1b:
fa:37:1e:3c:7e:68:48:47:d5:81:7a:55:95:52:fd:9b:54:b1:
6e:2e:0d:97:41:b5:5c:a6:fa:1c:cf:e4:ba:63:25:5e:fa:4d:
8e:f7:e7:53:dc:b4:b3:a3:af:c5:d2:72:f4:a8:d2:a9:3c:59:
65:3d:71:a6:37:09:38:b2:61:91:cd:40:8c:fe:e2:0b:d5:c2:
cf:18:d3:19:99:a5:72:f7:b8:ab:99:89:d3:81:a3:cd:74:1b:
8a:28:62:39:a7:23:40:12:b4:c7:ed:13:9a:bd:7f:f4:c1:ac:
f3:99:9c:a5:0f:1b:12:8a:65:e0:3d:bc:d4:d1:d1:b6:6a:66:
8a:54:33:8f:e6:42:0d:21:16:75:3b:67:9e:0b:8b:fb:2d:53:
03:27:31:fd:5e:7f:2f:a3:f8:cb:c6:90:74:35:7b:1c:92:c7:
18:fc:8c:85:1a:03:1a:06:3a:f3:da:ca:d8:e7:be:8a:fb:a0:
f6:14:69:97:3a:b3:b5:a9:a3:7c:53:26:25:a4:e1:d1:0f:9e:
37:a1:91:8c:dc:12:42:b7:2f:5d:60:f7:27:ad:87:7f:84:08:
9f:7f:8f:10:ff:bd:fd:23:90:ce:9b:73:30:32:bc:07:d5:48:
7c:e9:0f:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7mA6LGI6PBv/ol8DPhvCa1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwNDE2MDgyNjIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1N2M4YmZmNzJjODM3YjUyZDU4MTRiMTllNWI5ZDliMTg5MzVmN2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuubNiFxhY1DP8CgxY3d76mIdvCGU
ZJ8BpjLbIMgFPnilYzPs10GPhDK99Ay1EriyCxT07urA+2ImZ4bX5iCqWdArFIzt
S3a3l/UxWOMJDgsJfkNscP9voHdzCluV/z90o9K06gXFjiereYJVBKrbqFH8Xa+3
pafj/eEPXuwQ+dLWX3fQqG/SPLs4vMPDShAW2jORXIkB8HzIv04u7gfKi947zxvr
3zVZzRfo+mPeGLukdX5LZqBddcbfvCk2BYk2Bn8EhAklY1mdmyA0X+RM2502CecY
oUG3rPmXD6hvyvSCbBV/TqkocCQ8DS551RKmGm2ZOAH4qZrHrMZM8f8QBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFfIv/csg3tS1YFLGeW52bGJNfehMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvVjhpXzl5eURlMUxWZ1VzWjViblpzWWsxOTZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUPDwMA0G
CSqGSIb3DQEBCwUAA4IBAQAqSqXPxts193QeuVob2pIFDRv6Nx48fmhIR9WBelWV
Uv2bVLFuLg2XQbVcpvocz+S6YyVe+k2O9+dT3LSzo6/F0nL0qNKpPFllPXGmNwk4
smGRzUCM/uIL1cLPGNMZmaVy97irmYnTgaPNdBuKKGI5pyNAErTH7ROavX/0wazz
mZylDxsSimXgPbzU0dG2amaKVDOP5kINIRZ1O2eeC4v7LVMDJzH9Xn8vo/jLxpB0
NXsckscY/IyFGgMaBjrz2srY576K+6D2FGmXOrO1qaN8UyYlpOHRD543oZGM3BJC
ty9dYPcnrYd/hAiff48Q/739I5DOm3MwMrwH1Uh86Q8W
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:27:56 2024 by rpki-client on console-ams.rpki-client.org