Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/1-6gEkmKb1CXD7pxWB9pmgld2GCs.roa
File: 1-6gEkmKb1CXD7pxWB9pmgld2GCs.roa (raw, json)
Hash identifier: ykyKFEK28ZTP5XzdifVJ18iJT+OZP6PE784jp1XJqDE=
Subject key identifier: FB:A8:04:92:62:9B:D4:25:C3:EE:9C:56:07:DA:66:82:57:76:18:2B
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B302B3BB3CFB853D4BA2742279D037
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/1-6gEkmKb1CXD7pxWB9pmgld2GCs.roa
Signing time: Thu 02 Jan 2025 01:48:18 +0000
ROA not before: Thu 02 Jan 2025 01:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215537
IP address blocks: 159.148.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:02:b3:bb:3c:fb:85:3d:4b:a2:74:22:79:d0:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fba80492629bd425c3ee9c5607da66825776182b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4b:e7:e4:70:e5:3a:dc:36:c3:8b:73:f2:20:
3f:51:e1:16:aa:f6:ee:2f:ab:78:20:4a:51:f2:a9:
83:41:82:cc:18:24:a7:02:ef:16:aa:59:e0:09:59:
75:3f:6e:bf:cf:ca:c6:62:bc:63:d6:0a:81:e9:8c:
e1:2e:8b:e9:91:b3:7f:e7:9b:33:ff:49:6e:4c:0e:
1c:44:20:22:2f:1d:11:07:da:1c:be:1e:2f:f2:8f:
a9:9d:bb:3a:5b:a8:b4:38:2d:54:c5:16:9f:7b:2a:
08:55:93:5b:ef:0d:fd:62:88:e1:8a:4e:e2:dd:96:
2f:9e:fa:86:9f:dd:a1:ff:62:0a:93:ca:88:f0:07:
ad:7c:27:6d:64:99:ef:4f:60:ca:d0:84:99:ab:39:
b0:b9:b0:8f:1f:68:05:c5:74:47:99:be:a7:f5:a4:
0b:a3:c1:d4:47:8d:5e:e6:93:11:2c:66:ed:0b:07:
c7:c2:2b:0f:0a:6b:d4:21:26:5a:78:5a:e8:82:f9:
41:2d:70:09:b2:71:f1:66:1d:66:25:88:50:03:92:
63:f8:2b:c8:45:d0:38:48:a1:c4:dd:f5:ba:8a:16:
f9:c2:9c:56:92:3a:0f:3b:20:49:b6:5c:88:90:12:
50:ad:d8:14:6f:80:12:ea:5f:a0:1c:16:bf:bf:0c:
2d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A8:04:92:62:9B:D4:25:C3:EE:9C:56:07:DA:66:82:57:76:18:2B
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/1-6gEkmKb1CXD7pxWB9pmgld2GCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.124.0/24
Signature Algorithm: sha256WithRSAEncryption
88:44:bf:03:e2:55:b2:85:b0:66:de:3f:24:0d:77:4b:bc:97:
ae:cb:1f:52:9f:39:62:68:5b:54:02:d7:ef:f5:22:72:59:51:
e8:0a:1f:0d:a8:77:24:e1:db:9a:6d:72:24:2a:fa:f2:28:e5:
33:91:32:62:27:02:9d:23:ca:32:72:4e:1d:8c:d8:12:29:fe:
f9:c8:03:08:67:cd:dd:07:1d:e8:91:c7:f5:fe:40:76:1d:1b:
e3:2b:63:67:75:9c:ec:6f:9a:28:59:00:20:3a:6e:b7:28:18:
d1:f4:13:98:4d:1e:0a:42:c9:c0:13:1c:88:48:f0:9a:d4:05:
12:b9:19:74:80:a9:16:ee:b5:2b:e9:f6:0f:20:69:04:fc:f3:
d2:9d:5c:78:60:a1:ab:7b:58:c0:1a:93:11:c3:99:00:b4:13:
b5:b7:02:f4:2c:b9:03:d9:9e:6f:f1:05:8d:d8:23:96:33:77:
03:fd:26:82:2e:ee:ac:d7:6c:62:11:f5:6f:78:aa:b4:b1:aa:
79:88:ce:ce:5e:9e:3b:bf:aa:f2:9d:67:ce:7c:4b:dd:15:99:
81:ff:cb:a9:81:43:28:82:fd:bc:8e:f4:cc:e7:be:68:b2:82:
46:4f:01:ac:ab:23:a7:11:06:16:3b:df:9f:36:89:6d:83:6d:
cf:32:84:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:33 2025 by rpki-client