Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/ARUYa2KYckd0VQaTDd82U6oAI30.roa
File: ARUYa2KYckd0VQaTDd82U6oAI30.roa (raw, json)
Hash identifier: 9etPt2QZlyPhd9RqLphyNJgFFZZgEmnH62Qsr7yC4j0=
Subject key identifier: 01:15:18:6B:62:98:72:47:74:55:06:93:0D:DF:36:53:AA:00:23:7D
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0194214402E330EF8A241D117BDEE04D4FE2
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/ARUYa2KYckd0VQaTDd82U6oAI30.roa
Signing time: Wed 01 Jan 2025 09:48:12 +0000
ROA not before: Wed 01 Jan 2025 09:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49392
IP address blocks: 5.42.212.0/24 maxlen: 24
45.155.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 21:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:02:e3:30:ef:8a:24:1d:11:7b:de:e0:4d:4f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Jan 1 09:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0115186b62987247745506930ddf3653aa00237d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:52:8c:74:a1:68:dc:d2:bf:ca:2c:f5:2c:63:
5e:b3:fa:e1:32:12:43:3b:5f:e8:b1:c1:c5:ed:86:
3a:ba:08:8c:c5:44:c0:8e:39:44:81:a8:38:13:fc:
fe:f5:2a:53:4a:16:21:f3:e6:d8:23:cc:bf:c7:62:
b5:78:75:c9:27:8f:4a:5b:5f:36:5f:75:94:3c:99:
2c:9a:3f:ab:c7:06:64:42:23:56:8a:16:1e:7f:78:
59:e8:5e:c9:3b:f7:a2:3d:4c:d3:9a:01:0c:07:4f:
d4:7e:3b:68:5d:fc:3b:8a:bf:a3:15:66:b9:71:c3:
da:a0:e7:bc:0b:ad:9c:0e:bf:e0:14:76:6f:fd:dd:
9c:cd:94:68:a8:71:21:b8:28:bf:ab:60:ea:33:a7:
95:ad:0c:5d:c0:8f:c8:83:d0:92:79:5e:44:ee:9f:
6a:37:cd:3e:24:a0:93:b2:d6:e1:5e:a5:5a:7e:6f:
04:2d:4b:01:6f:01:f7:9c:fc:cd:ad:73:3c:5d:cc:
f4:d5:65:4a:76:ca:5f:ed:18:54:d4:97:3a:fe:fa:
31:89:b0:97:9c:2a:59:07:51:b3:07:ab:d0:96:f3:
80:e1:d6:d2:13:62:3e:57:ce:18:15:0a:32:c0:46:
02:b1:d0:48:17:ed:c7:28:5e:9f:d0:2e:fe:89:3f:
b4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:15:18:6B:62:98:72:47:74:55:06:93:0D:DF:36:53:AA:00:23:7D
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/ARUYa2KYckd0VQaTDd82U6oAI30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.212.0/24
45.155.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:be:b9:07:4d:98:99:a3:3b:0e:73:8f:fd:c5:c5:e7:2a:1f:
3b:15:19:dc:9f:01:e0:24:04:af:14:75:41:e1:4a:6e:26:39:
c8:51:92:a6:55:c6:0d:52:93:50:2b:8a:87:58:1e:bf:c2:3d:
df:19:bd:9a:22:20:88:d4:25:b9:f8:b5:d6:e6:4b:be:49:a8:
7f:e8:2f:13:b2:6b:bd:16:6e:65:3a:b3:0c:56:60:c5:45:14:
78:a3:02:21:a9:6a:cd:a5:92:c2:8f:7e:8e:8d:13:e1:4a:32:
c4:81:2f:3a:af:e5:38:62:23:2b:74:47:92:15:14:57:9a:2c:
9f:39:0c:15:44:60:fc:57:02:bd:db:a3:1b:13:9e:8f:ee:da:
db:a3:dc:41:02:78:4c:38:98:6c:1c:ad:d5:cb:cc:32:09:8e:
8f:1e:9d:f4:ba:34:31:48:5f:00:2c:c3:c6:ce:cc:9c:7d:be:
34:41:24:23:b4:33:c5:cb:97:e3:05:97:3e:00:4e:f9:cb:9d:
63:28:63:67:64:6d:22:cf:a5:64:13:42:6e:b8:83:d7:7f:20:
78:9a:4d:9c:ca:6d:2c:ad:18:a1:c8:6b:02:d5:6e:3e:66:82:
ba:5c:2e:20:4f:58:35:f8:ca:c6:7a:24:a2:2f:3d:39:84:ef:
75:cd:65:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 07:08:28 2025 by rpki-client