Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/Hwa64s5gh2ljZYzswq1MygUDPHc.roa
File: Hwa64s5gh2ljZYzswq1MygUDPHc.roa (raw, json)
Hash identifier: 0SMaVRBltPWPlJCAMP0PbN6yDjOR3rc4e6/DOO/swOM=
Subject key identifier: 1F:06:BA:E2:CE:60:87:69:63:65:8C:EC:C2:AD:4C:CA:05:03:3C:77
Certificate issuer: /CN=1c04848bfef724e26abed3c65e4e8f9508fb1796
Certificate serial: 019420686B8F834845FB26DA543CCD571F9F
Authority key identifier: 1C:04:84:8B:FE:F7:24:E2:6A:BE:D3:C6:5E:4E:8F:95:08:FB:17:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HASEi_73JOJqvtPGXk6PlQj7F5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/Hwa64s5gh2ljZYzswq1MygUDPHc.roa
Signing time: Wed 01 Jan 2025 05:48:21 +0000
ROA not before: Wed 01 Jan 2025 05:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 399989
IP address blocks: 193.135.116.0/24 maxlen: 24
193.135.117.0/24 maxlen: 24
193.135.118.0/24 maxlen: 24
193.135.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/HASEi_73JOJqvtPGXk6PlQj7F5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/HASEi_73JOJqvtPGXk6PlQj7F5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/HASEi_73JOJqvtPGXk6PlQj7F5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 02:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:6b:8f:83:48:45:fb:26:da:54:3c:cd:57:1f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c04848bfef724e26abed3c65e4e8f9508fb1796
Validity
Not Before: Jan 1 05:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f06bae2ce60876963658cecc2ad4cca05033c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:cd:2a:50:bb:a1:b8:bc:1d:fd:88:44:74:cd:
7d:3a:f8:0a:ae:ae:ec:1b:e0:a5:dc:60:ba:46:72:
45:2b:f8:4d:5b:c0:61:83:3c:04:3e:9c:16:73:91:
42:e9:4c:71:18:3a:fd:2f:c7:2a:46:61:a3:a4:8e:
40:2e:d5:65:d1:d1:a7:4a:f0:44:4e:f6:be:a1:e2:
97:3c:9f:4e:51:71:cd:93:41:24:f8:bd:1e:9f:b7:
43:6f:ee:d3:49:9b:68:dd:eb:e3:9b:80:1c:fe:ec:
85:22:fe:35:bb:4d:b2:39:f3:d4:9f:b5:21:48:ba:
46:ee:d5:52:08:70:1e:42:e6:68:7f:9d:7f:8a:44:
dd:0d:42:db:d7:ec:c6:c3:36:e8:01:59:32:f7:94:
bc:a3:b7:5a:d0:63:6d:f9:4d:f9:05:63:9e:ef:aa:
08:2a:9e:62:ec:aa:48:06:22:e8:72:8c:b8:b4:36:
ae:8a:03:6c:25:d3:ac:ea:c9:52:92:94:48:26:c8:
ee:bd:7c:8f:fc:ff:68:84:4c:13:3b:06:e3:e8:53:
ee:ab:3b:c5:09:15:65:c6:c3:94:4c:89:47:6c:36:
dd:c8:75:af:6f:ca:72:3f:61:71:ef:56:1b:22:d3:
0b:f1:cf:d7:1d:99:c0:da:bf:a6:ff:e2:79:09:58:
eb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:06:BA:E2:CE:60:87:69:63:65:8C:EC:C2:AD:4C:CA:05:03:3C:77
X509v3 Authority Key Identifier:
keyid:1C:04:84:8B:FE:F7:24:E2:6A:BE:D3:C6:5E:4E:8F:95:08:FB:17:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HASEi_73JOJqvtPGXk6PlQj7F5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/Hwa64s5gh2ljZYzswq1MygUDPHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/672629-a0e2-476f-aead-ee380b82cfca/1/HASEi_73JOJqvtPGXk6PlQj7F5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.116.0/22
Signature Algorithm: sha256WithRSAEncryption
05:ec:3c:a1:b1:66:c0:83:c1:5c:4d:c5:69:b3:03:b3:be:8e:
98:7c:a0:02:c9:8d:2f:80:c7:43:02:e9:8a:04:64:42:01:90:
3c:b6:ce:87:1c:ef:6c:16:60:d2:de:50:6f:1e:8f:0f:81:e7:
24:09:f7:0f:4d:11:5d:0b:7a:4f:21:9c:3d:87:5d:2d:06:4e:
34:32:ae:8d:0d:0e:ea:58:56:78:fa:ea:12:27:00:d3:1d:bc:
53:7d:f0:8b:f0:df:35:0a:39:ed:44:aa:ba:c0:09:f4:dc:84:
97:00:3f:66:22:5f:c3:65:9e:64:83:93:2c:58:dd:ce:fb:ab:
74:ad:59:30:3d:8a:63:58:e6:a4:bd:c1:61:b2:bd:07:e7:a0:
67:e8:4c:c2:ac:48:8c:2b:f1:c9:f6:12:39:38:aa:a7:d7:a7:
c1:45:dc:40:df:d6:f6:db:cb:fa:fa:65:8e:a8:b0:d7:76:be:
72:81:f0:5e:c2:ff:10:3f:72:2a:39:c1:dc:b8:26:cb:26:30:
b3:52:21:42:75:5a:5e:f0:c0:55:f2:87:ef:84:b2:09:98:f0:
5f:37:6d:39:b6:e1:14:93:90:06:56:b8:e8:17:1d:48:a5:d2:
d5:75:2f:31:79:63:7b:4b:92:1f:24:29:38:7b:96:85:29:c3:
bb:a9:d1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:47:41 2025 by rpki-client