Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/f36b9c-7e37-4f18-8865-13e73f66397b/1/UfSgUAAlY9L-pxjy9r66ZUMHciI.roa
File: UfSgUAAlY9L-pxjy9r66ZUMHciI.roa (raw, json)
Hash identifier: lfZloxngOlvdGd9PgYcQqf9/LWwVeSvhKaVHeCHu4Rc=
Subject key identifier: 51:F4:A0:50:00:25:63:D2:FE:A7:18:F2:F6:BE:BA:65:43:07:72:22
Certificate issuer: /CN=194e32a82e98f22d939ff9984455813be2ba6a91
Certificate serial: 019623BBB83752C908FF170122611809C2BB
Authority key identifier: 19:4E:32:A8:2E:98:F2:2D:93:9F:F9:98:44:55:81:3B:E2:BA:6A:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GU4yqC6Y8i2Tn_mYRFWBO-K6apE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/f36b9c-7e37-4f18-8865-13e73f66397b/1/UfSgUAAlY9L-pxjy9r66ZUMHciI.roa
Signing time: Fri 11 Apr 2025 07:23:46 +0000
ROA not before: Fri 11 Apr 2025 07:23:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15547
IP address blocks: 185.180.20.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/f36b9c-7e37-4f18-8865-13e73f66397b/1/GU4yqC6Y8i2Tn_mYRFWBO-K6apE.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/f36b9c-7e37-4f18-8865-13e73f66397b/1/GU4yqC6Y8i2Tn_mYRFWBO-K6apE.mft
rsync://rpki.ripe.net/repository/DEFAULT/GU4yqC6Y8i2Tn_mYRFWBO-K6apE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 13:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:23:bb:b8:37:52:c9:08:ff:17:01:22:61:18:09:c2:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=194e32a82e98f22d939ff9984455813be2ba6a91
Validity
Not Before: Apr 11 07:23:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51f4a050002563d2fea718f2f6beba6543077222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ad:ba:5b:a1:96:88:ae:57:ca:d6:b9:08:dd:
12:e6:db:ac:1e:60:2b:61:0b:b3:eb:57:36:48:e4:
3d:8a:61:d9:a3:ca:a8:a7:e3:a6:a1:2e:22:43:d6:
80:98:54:bd:62:41:00:cb:13:8b:f3:2b:54:20:11:
7b:91:d6:50:4c:28:45:53:4c:5f:c6:14:e6:a3:74:
c8:c5:87:e1:e0:9f:b7:04:5a:b7:38:7d:12:73:ac:
df:05:be:a2:2a:d8:a2:de:3e:94:2e:42:cd:c0:d5:
af:e7:36:c5:b4:b9:ff:be:14:c7:c9:87:69:d3:10:
a4:73:0b:ac:db:5d:13:3e:aa:bb:5d:da:ce:fc:12:
dc:d8:a6:b1:f8:fd:a5:cf:e8:cb:3e:2c:b5:4e:76:
d5:15:78:73:87:ab:48:2f:28:fa:b4:36:7c:ad:c9:
85:fa:1b:a1:50:47:94:04:72:c9:0b:44:e8:cb:2b:
33:69:5d:77:1d:1e:ad:e9:87:a9:04:1e:46:98:d9:
f6:92:3d:fb:c5:a0:fe:2e:7b:f1:68:ba:a8:2d:d6:
b6:d2:2e:b9:27:7c:2c:d6:f5:d2:c4:68:99:f9:5c:
ad:1c:6c:a9:91:48:99:92:68:c1:7c:c2:0a:f9:d0:
f1:6d:14:63:60:95:72:61:92:d9:ef:ce:33:66:fb:
e3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F4:A0:50:00:25:63:D2:FE:A7:18:F2:F6:BE:BA:65:43:07:72:22
X509v3 Authority Key Identifier:
keyid:19:4E:32:A8:2E:98:F2:2D:93:9F:F9:98:44:55:81:3B:E2:BA:6A:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GU4yqC6Y8i2Tn_mYRFWBO-K6apE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f36b9c-7e37-4f18-8865-13e73f66397b/1/UfSgUAAlY9L-pxjy9r66ZUMHciI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/f36b9c-7e37-4f18-8865-13e73f66397b/1/GU4yqC6Y8i2Tn_mYRFWBO-K6apE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.20.0/22
Signature Algorithm: sha256WithRSAEncryption
86:49:d2:74:38:ce:5d:01:9b:ab:d3:39:40:e1:97:46:ea:81:
9a:fa:db:80:c9:c1:6c:45:fa:f1:9c:84:ea:d0:8d:b0:ec:fe:
b9:be:52:af:19:1e:84:e7:16:80:5c:6d:80:96:74:3c:c6:ed:
43:d5:7b:02:45:bc:44:72:04:44:e9:5a:11:84:48:b0:6b:e6:
4c:01:be:66:63:02:cd:ef:c9:74:25:11:d3:03:c7:92:c0:72:
65:ef:b2:94:0f:96:3f:98:42:14:ef:78:8f:14:3f:aa:a7:39:
dd:ae:7e:f6:58:10:bd:a4:d1:b4:b9:af:1a:53:de:f7:31:4d:
39:b2:0f:2f:31:28:76:b8:f3:45:f4:11:b4:8e:ad:94:15:08:
f8:2c:8e:42:47:7f:db:36:96:19:d0:94:15:83:f1:07:0a:20:
02:a4:a7:98:22:65:33:40:09:af:12:3b:81:ff:5c:f9:54:03:
e7:a9:1c:95:8b:02:10:cd:5d:b5:45:6c:5c:8d:ce:92:3c:07:
dc:bb:3b:81:23:13:59:fa:b2:18:da:53:8e:0e:b6:a3:08:9b:
00:40:92:62:fc:d5:11:3a:62:c2:3f:42:ef:39:bb:ea:b3:f4:
96:da:0b:cd:17:44:3b:81:c5:fd:95:af:59:e7:d6:93:ac:83:
56:ee:20:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:23:03 2025 by rpki-client