Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/gOfoa2pPlaad7aZSKOqxTDZnDnw.roa
File: gOfoa2pPlaad7aZSKOqxTDZnDnw.roa (raw, json)
Hash identifier: zWq54+d7Qdr/RiwPHS0cYGrr+8mtcUBj3tD3UQ2c23s=
Subject key identifier: 80:E7:E8:6B:6A:4F:95:A6:9D:ED:A6:52:28:EA:B1:4C:36:67:0E:7C
Certificate issuer: /CN=b754b22c5540508d9629a311ef1e83543657c4ee
Certificate serial: 01963E663F6023AF446B9B2812A2C487F86D
Authority key identifier: B7:54:B2:2C:55:40:50:8D:96:29:A3:11:EF:1E:83:54:36:57:C4:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1SyLFVAUI2WKaMR7x6DVDZXxO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/gOfoa2pPlaad7aZSKOqxTDZnDnw.roa
Signing time: Wed 16 Apr 2025 11:40:10 +0000
ROA not before: Wed 16 Apr 2025 11:40:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8315
IP address blocks: 45.157.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/t1SyLFVAUI2WKaMR7x6DVDZXxO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/t1SyLFVAUI2WKaMR7x6DVDZXxO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1SyLFVAUI2WKaMR7x6DVDZXxO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 17:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:66:3f:60:23:af:44:6b:9b:28:12:a2:c4:87:f8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b754b22c5540508d9629a311ef1e83543657c4ee
Validity
Not Before: Apr 16 11:40:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=80e7e86b6a4f95a69deda65228eab14c36670e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:1d:5c:50:fb:8c:d0:3a:33:d8:c9:06:66:
56:30:02:ee:8d:75:8d:27:af:d8:05:dc:b4:2d:30:
f7:c8:9b:4d:77:25:22:e6:43:dc:b3:b3:b9:48:b9:
e2:1e:b3:aa:ec:08:6e:e5:31:c7:2c:b1:d2:26:5e:
83:06:29:ea:c5:3c:2b:d8:65:85:fd:6a:7f:be:f4:
d4:d1:88:54:64:ea:02:b0:68:90:60:41:c8:7b:9f:
ce:a6:d1:24:25:c4:51:7d:f3:a9:8d:40:b1:3a:02:
10:90:58:72:41:99:1c:73:9b:0b:03:92:b3:12:84:
60:2d:db:93:57:88:12:91:64:60:f2:2b:bc:55:79:
a4:b9:c6:4f:03:4b:82:65:ee:89:3f:b2:e9:f1:3e:
67:df:c9:85:0f:bd:76:68:be:66:99:54:40:1f:fe:
cd:5c:20:92:a3:15:d3:d3:ec:52:62:9e:c2:1b:62:
39:06:35:80:90:1a:e4:9f:0d:5a:05:be:06:b5:90:
5d:6d:48:cd:28:96:75:1b:f9:25:02:f4:ae:c7:9f:
cd:33:72:40:a2:27:7b:6f:ac:33:0d:b8:30:5b:ea:
e3:d3:ee:cd:17:8f:94:ba:11:88:92:26:19:12:ff:
4d:62:5b:04:c3:d9:b9:20:2d:75:ba:c4:92:32:d0:
9c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E7:E8:6B:6A:4F:95:A6:9D:ED:A6:52:28:EA:B1:4C:36:67:0E:7C
X509v3 Authority Key Identifier:
keyid:B7:54:B2:2C:55:40:50:8D:96:29:A3:11:EF:1E:83:54:36:57:C4:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1SyLFVAUI2WKaMR7x6DVDZXxO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/gOfoa2pPlaad7aZSKOqxTDZnDnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b5513a-ba69-48c4-95ee-56ec13269a1c/1/t1SyLFVAUI2WKaMR7x6DVDZXxO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.174.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:96:ac:09:61:9c:6f:25:e9:2d:36:e1:fb:5a:18:16:28:f6:
7a:2f:61:1f:39:23:e6:28:63:66:79:98:f7:2c:90:07:0d:01:
ed:b3:2a:5e:e0:01:17:ba:4a:65:97:6c:0b:86:d4:49:85:95:
45:31:97:04:b8:2c:18:08:eb:01:33:17:09:ef:e6:41:35:91:
62:e6:d7:ac:0e:a7:59:d7:ee:95:96:18:73:dc:b0:83:12:d5:
e0:c9:2a:02:b1:8d:73:1c:84:9b:56:72:32:cd:75:e1:28:d9:
2d:87:e5:2c:1b:3a:49:ac:ed:07:50:4f:d5:ef:aa:c5:84:35:
5f:b3:dd:8a:17:ac:a4:60:5c:6a:9d:60:40:66:27:7e:07:d1:
54:1a:e7:bc:83:30:71:cb:89:99:8c:a0:aa:8a:eb:0f:4d:77:
ab:cc:f1:69:9e:9a:02:c3:cf:03:08:15:65:ff:4e:29:e9:07:
2f:9e:02:e8:23:64:db:27:ba:59:5e:5a:17:15:3b:c1:fb:53:
48:d0:e6:da:16:ec:b7:6c:fa:71:b4:9a:45:b2:fa:8a:46:9d:
32:fe:a4:3c:b9:fd:b3:a2:55:66:98:db:bc:fa:41:b5:ce:af:
85:30:21:38:c3:ce:67:15:d7:12:23:30:74:0f:38:93:81:10:
02:90:6b:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZY+Zj9gI69Ea5soEqLEh/htMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NTRiMjJjNTU0MDUwOGQ5NjI5YTMxMWVmMWU4MzU0MzY1
N2M0ZWUwHhcNMjUwNDE2MTE0MDEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGU3ZTg2YjZhNGY5NWE2OWRlZGE2NTIyOGVhYjE0YzM2NjcwZTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlAdXFD7jNA6M9jJBmZWMALujXWN
J6/YBdy0LTD3yJtNdyUi5kPcs7O5SLniHrOq7Ahu5THHLLHSJl6DBinqxTwr2GWF
/Wp/vvTU0YhUZOoCsGiQYEHIe5/OptEkJcRRffOpjUCxOgIQkFhyQZkcc5sLA5Kz
EoRgLduTV4gSkWRg8iu8VXmkucZPA0uCZe6JP7Lp8T5n38mFD712aL5mmVRAH/7N
XCCSoxXT0+xSYp7CG2I5BjWAkBrknw1aBb4GtZBdbUjNKJZ1G/klAvSux5/NM3JA
oid7b6wzDbgwW+rj0+7NF4+UuhGIkiYZEv9NYlsEw9m5IC11usSSMtCcyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIDn6GtqT5Wmne2mUijqsUw2Zw58MB8GA1UdIwQY
MBaAFLdUsixVQFCNlimjEe8eg1Q2V8TuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFTeUxGVkFVSTJXS2FNUjd4NkRWRFpYeE80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9iNTUxM2EtYmE2OS00OGM0LTk1ZWUt
NTZlYzEzMjY5YTFjLzEvZ09mb2EycFBsYWFkN2FaU0tPcXhURFpuRG53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9iNTUxM2EtYmE2OS00OGM0LTk1ZWUtNTZlYzEzMjY5YTFj
LzEvdDFTeUxGVkFVSTJXS2FNUjd4NkRWRFpYeE80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ2uMA0G
CSqGSIb3DQEBCwUAA4IBAQBflqwJYZxvJektNuH7WhgWKPZ6L2EfOSPmKGNmeZj3
LJAHDQHtsype4AEXukpll2wLhtRJhZVFMZcEuCwYCOsBMxcJ7+ZBNZFi5tesDqdZ
1+6Vlhhz3LCDEtXgySoCsY1zHISbVnIyzXXhKNkth+UsGzpJrO0HUE/V76rFhDVf
s92KF6ykYFxqnWBAZid+B9FUGue8gzBxy4mZjKCqiusPTXerzPFpnpoCw88DCBVl
/04p6QcvngLoI2TbJ7pZXloXFTvB+1NI0ObaFuy3bPpxtJpFsvqKRp0y/qQ8uf2z
olVmmNu8+kG1zq+FMCE4w85nFdcSIzB0DziTgRACkGuv
-----END CERTIFICATE-----
Generated at Mon Apr 21 23:58:34 2025 by rpki-client