Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/73kskguN1VPO4tq3u0I-6VPbcl8.roa
File: 73kskguN1VPO4tq3u0I-6VPbcl8.roa (raw, json)
Hash identifier: IOUFc++3ERmMqSZYKktHNh8ojKEPsIX8mty7/JMNR8c=
Subject key identifier: EF:79:2C:92:0B:8D:D5:53:CE:E2:DA:B7:BB:42:3E:E9:53:DB:72:5F
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 019638A9BEA04B99F297F701E65DE7D53287
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/73kskguN1VPO4tq3u0I-6VPbcl8.roa
Signing time: Tue 15 Apr 2025 08:56:10 +0000
ROA not before: Tue 15 Apr 2025 08:56:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8309
IP address blocks: 2a13:7506:1002::/48 maxlen: 48
2a13:7506:9002::/48 maxlen: 48
2a13:7506:9003::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 13:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:38:a9:be:a0:4b:99:f2:97:f7:01:e6:5d:e7:d5:32:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Apr 15 08:56:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef792c920b8dd553cee2dab7bb423ee953db725f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:35:2c:47:65:e7:03:66:ba:df:95:c3:d8:4e:
b9:c7:4b:8d:2b:21:51:e9:6b:46:56:51:00:fa:1f:
28:71:58:84:3e:bb:19:44:c3:42:91:a3:09:69:9c:
2d:bc:a3:a1:b4:65:ea:b4:e7:76:e3:1c:cd:85:90:
20:ac:46:db:30:97:ca:7c:d4:74:10:65:49:5c:d9:
2f:47:00:b4:f7:42:a9:0e:d8:78:d3:16:ba:90:9c:
3c:88:43:58:19:f6:94:59:5d:1a:d6:35:7a:c2:e0:
4c:8f:a5:d0:07:b1:e0:8b:5e:49:2b:ec:f9:6a:d8:
c1:b1:82:5e:59:fd:9d:4c:4a:f3:d6:0c:b0:3d:e7:
04:e7:10:f5:3e:af:54:ae:9c:80:4d:74:1e:2a:44:
63:82:0d:39:14:1e:00:25:42:5a:1d:74:19:7f:ee:
31:04:30:b1:44:6b:22:3e:37:6f:0c:99:c5:ed:1c:
14:3c:73:9d:da:1d:40:f3:4f:45:c5:a3:b2:f5:ad:
e7:25:ba:23:16:ee:af:11:65:9c:3b:6d:96:15:45:
d4:d4:f0:2e:dd:cc:30:35:54:5d:2f:8d:33:84:7a:
60:86:8c:19:b1:48:20:d9:84:04:78:7d:50:98:51:
5b:de:c0:77:a8:15:21:1a:ca:3b:71:00:7f:7f:e3:
81:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:79:2C:92:0B:8D:D5:53:CE:E2:DA:B7:BB:42:3E:E9:53:DB:72:5F
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/73kskguN1VPO4tq3u0I-6VPbcl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7506:1002::/48
2a13:7506:9002::/47
Signature Algorithm: sha256WithRSAEncryption
16:9e:b6:78:7a:4b:b2:cc:7f:69:6a:62:44:18:76:10:73:22:
a6:ea:4d:46:71:a3:a7:cc:c8:c7:60:0a:95:21:ce:63:5c:45:
96:5d:02:24:d2:89:fb:a2:2e:97:19:9d:99:74:e5:41:28:26:
ad:7e:35:bf:a6:9a:1a:ce:2d:95:1f:c3:ad:4e:44:d5:77:76:
18:75:fe:29:ba:d6:14:79:71:b9:cb:5f:8b:3d:ea:85:50:be:
f1:6a:1f:7b:de:31:83:12:fb:ad:f5:5d:20:29:f9:13:d7:e2:
f7:09:73:f3:09:3e:c3:a8:04:4b:0c:c5:cf:87:f0:e3:a9:c7:
3c:c1:f6:44:0e:9e:a8:e9:47:e8:2f:e2:e0:17:a8:1a:ed:0c:
b0:be:30:48:42:4f:4b:a0:77:f1:04:78:3c:e6:d9:d9:bf:0d:
22:a6:6f:e8:30:36:40:7e:4d:3f:e2:6f:c9:04:6b:22:5d:35:
3b:96:8c:53:65:ad:c8:97:15:61:ac:49:8f:1a:0a:58:b6:bf:
f0:ac:8a:51:4d:b0:cb:fb:31:65:c2:19:30:a1:98:06:83:df:
ca:64:aa:37:30:25:04:f8:f2:3c:ec:2c:81:f6:a3:e8:e7:e9:
41:73:2b:57:a0:25:c3:1f:f8:b8:20:22:08:ec:6f:f0:88:e1:
72:0d:48:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:11:16 2025 by rpki-client