Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/bEKsBvD9r6Xyt_P3Ap1ApX4DjcU.roa
File: bEKsBvD9r6Xyt_P3Ap1ApX4DjcU.roa (raw, json)
Hash identifier: 24Br4dwLUP9p+zXB4KMnlxiNc2TbHeks2Jsk87QFi10=
Subject key identifier: 6C:42:AC:06:F0:FD:AF:A5:F2:B7:F3:F7:02:9D:40:A5:7E:03:8D:C5
Certificate issuer: /CN=366a9d542297577b37aa0c423195afe2a98e135d
Certificate serial: 019422FB686BDF42F1965DD68B0716E11ED2
Authority key identifier: 36:6A:9D:54:22:97:57:7B:37:AA:0C:42:31:95:AF:E2:A9:8E:13:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NmqdVCKXV3s3qgxCMZWv4qmOE10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/bEKsBvD9r6Xyt_P3Ap1ApX4DjcU.roa
Signing time: Wed 01 Jan 2025 17:48:09 +0000
ROA not before: Wed 01 Jan 2025 17:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 143.55.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/NmqdVCKXV3s3qgxCMZWv4qmOE10.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/NmqdVCKXV3s3qgxCMZWv4qmOE10.mft
rsync://rpki.ripe.net/repository/DEFAULT/NmqdVCKXV3s3qgxCMZWv4qmOE10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 02:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:68:6b:df:42:f1:96:5d:d6:8b:07:16:e1:1e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=366a9d542297577b37aa0c423195afe2a98e135d
Validity
Not Before: Jan 1 17:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c42ac06f0fdafa5f2b7f3f7029d40a57e038dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7d:18:06:e0:ad:23:af:43:5f:ed:e5:c3:7e:
dd:97:47:6f:57:49:09:e4:7a:7e:f9:1e:6f:3d:6d:
ff:f0:88:ab:1e:e9:26:95:07:6c:67:b6:47:d5:01:
c6:4f:ac:11:d7:cf:da:db:75:cf:ad:f9:07:eb:18:
1b:61:15:da:e4:a0:14:3c:86:37:65:9c:af:76:d8:
0a:48:8d:38:8b:9a:fa:cd:00:21:a9:11:27:7b:23:
8a:c1:52:fe:ed:7b:69:6c:8b:e6:8a:4c:0e:1d:02:
f2:42:92:8c:60:e8:21:d3:f1:a6:f9:d0:85:8c:b4:
a0:51:bd:c6:77:fa:4c:92:6a:f0:0c:ef:a0:d2:6c:
6c:af:e8:8f:ea:6e:58:55:fc:b0:4d:fd:93:01:08:
6b:c7:4c:9b:53:78:00:9f:b3:b7:2d:a5:bf:ce:69:
6e:32:67:d5:cb:6d:20:f2:65:05:38:18:49:5a:33:
4e:cb:8e:85:fd:7d:94:02:13:74:ae:8a:1d:4b:ae:
72:ab:92:68:eb:3d:9a:1a:ea:05:09:4e:80:4a:a0:
4d:3f:47:34:eb:05:3d:fd:6e:4b:65:00:67:88:6f:
30:aa:17:40:94:98:16:54:16:3e:04:05:0c:c3:56:
06:91:55:1d:15:95:9a:f8:3a:5b:b4:36:48:ce:cc:
86:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:42:AC:06:F0:FD:AF:A5:F2:B7:F3:F7:02:9D:40:A5:7E:03:8D:C5
X509v3 Authority Key Identifier:
keyid:36:6A:9D:54:22:97:57:7B:37:AA:0C:42:31:95:AF:E2:A9:8E:13:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NmqdVCKXV3s3qgxCMZWv4qmOE10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/bEKsBvD9r6Xyt_P3Ap1ApX4DjcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/NmqdVCKXV3s3qgxCMZWv4qmOE10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.55.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:f6:94:27:44:cb:24:69:88:a8:39:17:d7:63:75:e6:70:52:
4a:db:2d:49:cc:e6:8c:3c:76:35:c0:0a:ef:12:17:d7:62:8a:
94:4c:22:8c:3d:fc:da:c2:af:c4:f8:e5:53:61:0c:4d:73:e2:
4d:bc:10:9c:fc:1a:70:aa:8b:9a:98:ba:7b:e6:e3:bd:04:80:
8f:89:9d:2f:b7:13:23:38:7f:a1:d7:35:53:b7:9f:eb:05:76:
6e:59:ef:df:bc:d0:1c:74:0c:14:48:19:42:7b:74:23:0e:72:
d9:ab:4f:68:65:8c:2b:bd:b4:96:d0:21:66:77:95:f8:3b:fe:
f1:1d:58:e4:cd:08:42:39:39:51:6d:07:63:8b:5c:8a:12:c1:
ef:fe:61:7f:0f:24:09:7d:9b:ec:6b:a6:c7:aa:f2:a9:ba:20:
40:cb:86:9c:fb:40:18:16:e7:33:86:ce:c3:ad:64:80:25:53:
cb:1e:68:70:16:92:15:e7:a1:63:36:81:5e:45:33:48:6f:49:
8e:6c:61:7c:89:7c:8c:c2:39:9a:34:1d:2c:80:96:db:79:34:
34:ba:9e:44:f7:fa:10:c3:31:0c:8d:12:0d:3c:fa:80:6a:75:
f1:ab:84:61:cf:32:f6:a3:16:7b:5b:9f:61:6c:64:1a:33:18:
30:15:fc:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:18:33 2025 by rpki-client