Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/V6Jj54FKr5S0n9gi_ouFrFi9-gU.roa
File: V6Jj54FKr5S0n9gi_ouFrFi9-gU.roa (raw, json)
Hash identifier: pN81b2EN6fXBUGfpWsL0zMCGsL+v9GBSh9mZBfAwf3k=
Subject key identifier: 57:A2:63:E7:81:4A:AF:94:B4:9F:D8:22:FE:8B:85:AC:58:BD:FA:05
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01942143FB16508BADEE16EA084AC8F41922
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/V6Jj54FKr5S0n9gi_ouFrFi9-gU.roa
Signing time: Wed 01 Jan 2025 09:48:10 +0000
ROA not before: Wed 01 Jan 2025 09:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39238
IP address blocks: 195.216.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:fb:16:50:8b:ad:ee:16:ea:08:4a:c8:f4:19:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Jan 1 09:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57a263e7814aaf94b49fd822fe8b85ac58bdfa05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:80:0d:8f:b3:16:d3:d4:d6:4d:10:26:2c:
4d:ce:e1:7c:35:bc:0b:e1:6a:ba:23:46:39:45:ae:
15:8c:e9:c2:31:e8:9e:7e:84:8a:7d:39:3c:d6:d3:
71:a0:6e:1b:fe:be:43:ca:a9:45:29:ba:b9:e6:53:
45:cc:49:18:74:fc:35:27:73:f5:33:e4:09:da:d8:
c6:05:0e:fa:9e:40:35:bb:c3:75:b2:85:57:14:21:
e3:98:0f:9b:d4:2c:d3:51:41:96:d3:8c:2f:21:ec:
5e:f7:1d:88:dd:ef:bd:ce:e8:63:c5:e3:6e:7f:04:
63:27:65:5c:8a:84:bb:6c:dc:9d:33:aa:21:e2:aa:
78:7c:05:ce:2d:de:a4:58:66:ea:0c:c5:6f:b6:63:
b6:e9:34:e5:c3:a9:2c:08:18:90:c4:f1:bf:30:be:
88:e9:a3:29:12:cd:5b:87:0f:dd:73:a4:11:71:3d:
5b:74:bb:b9:59:72:b9:37:37:0c:5b:6f:37:42:0d:
94:37:84:c0:c0:a8:ba:44:43:df:e6:4a:e9:0a:b3:
6f:40:6c:7a:1a:40:fd:67:6d:e8:09:45:fb:5c:d9:
e2:8d:f2:69:6f:fd:18:67:8b:81:89:81:c5:2d:6f:
46:b3:23:ed:1b:7b:91:cb:63:61:f5:58:45:d7:26:
9a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A2:63:E7:81:4A:AF:94:B4:9F:D8:22:FE:8B:85:AC:58:BD:FA:05
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/V6Jj54FKr5S0n9gi_ouFrFi9-gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.155.0/24
Signature Algorithm: sha256WithRSAEncryption
65:d8:f4:40:5e:72:b3:2f:d6:a8:46:a5:38:b1:a9:2a:53:61:
a6:8a:b0:85:23:be:33:f0:16:a9:82:80:74:d4:cc:6a:81:ae:
5c:91:28:d0:09:dc:8c:0a:9b:ec:83:fc:36:78:c7:8f:68:c5:
d6:18:99:cd:b3:c9:ed:e0:31:db:e5:57:db:a1:cd:1b:d2:46:
59:66:2a:3e:d7:a3:c5:ba:9d:0f:77:80:aa:75:fa:ca:b5:2b:
98:c2:1d:fe:09:f2:a8:f5:d1:32:07:78:42:52:f5:9c:b3:c6:
c1:f5:e7:df:2d:70:a2:47:1a:33:e8:53:02:5c:3a:4c:da:85:
3c:34:cd:c5:f6:dd:1c:50:ba:68:a5:fa:df:7f:00:d9:0f:4d:
81:e2:44:10:6a:02:d9:e4:91:8e:f6:f7:6e:a8:16:58:da:92:
63:1d:cf:6e:7f:37:bf:9c:5e:ed:e3:d9:4f:9e:fc:eb:2c:44:
32:b0:be:18:7e:c3:d1:57:d5:b8:5e:8a:e7:84:87:a8:4e:62:
5f:0f:84:b7:78:49:9c:94:d6:bc:4d:63:d2:93:ed:12:fa:ce:
1b:49:57:4b:47:41:9f:55:97:c5:ad:2b:e7:7c:4d:e7:7d:54:
d7:94:cc:6a:28:32:b1:0b:5f:fc:7b:02:49:15:98:6f:f0:2e:
88:63:4b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:46:52 2025 by rpki-client