Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/eKnO05dB5vIDo5g5lEqriGppj5Q.roa
File: eKnO05dB5vIDo5g5lEqriGppj5Q.roa (raw, json)
Hash identifier: Pg/wHgKw59kIgeWzKbHYp0qEn0pGvDQCAyOOST+PDe4=
Subject key identifier: 78:A9:CE:D3:97:41:E6:F2:03:A3:98:39:94:4A:AB:88:6A:69:8F:94
Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Certificate serial: 019424B3E34419FF8CD68F2C46B19AB23818
Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/eKnO05dB5vIDo5g5lEqriGppj5Q.roa
Signing time: Thu 02 Jan 2025 01:49:16 +0000
ROA not before: Thu 02 Jan 2025 01:49:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 46.151.176.0/24 maxlen: 24
46.151.177.0/24 maxlen: 24
46.151.178.0/24 maxlen: 24
46.151.179.0/24 maxlen: 24
46.151.180.0/24 maxlen: 24
46.151.183.0/24 maxlen: 24
83.142.208.0/24 maxlen: 24
83.142.209.0/24 maxlen: 24
83.142.210.0/24 maxlen: 24
83.142.211.0/24 maxlen: 24
83.142.212.0/24 maxlen: 24
83.142.214.0/24 maxlen: 24
83.142.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 23:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:e3:44:19:ff:8c:d6:8f:2c:46:b1:9a:b2:38:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Validity
Not Before: Jan 2 01:49:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78a9ced39741e6f203a39839944aab886a698f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4f:2d:22:6f:5d:95:dd:e4:71:3c:e6:af:a3:
5e:7d:4c:b2:48:21:55:64:a1:e7:26:7a:3a:37:4f:
86:c1:12:ba:e0:84:50:2c:fa:bc:59:55:7b:60:e0:
08:d6:28:89:2b:58:b3:b8:93:ae:9d:b8:a7:fb:16:
c1:ff:c9:87:76:b9:c7:33:7c:b2:11:df:6e:82:fa:
da:4f:3f:70:f7:d5:cb:ce:dd:2c:35:5e:f2:41:cf:
fd:ba:9e:c1:65:0c:a3:66:a4:38:a3:ca:6e:47:ab:
f9:62:19:f8:33:9f:ff:16:39:7f:de:84:fa:7d:ae:
23:4e:44:72:b6:34:64:ef:5f:7e:a2:be:ac:ec:8f:
df:b4:3b:c5:22:c1:94:fc:95:87:ee:e8:43:d9:c7:
38:e5:b0:d8:24:f9:c8:cb:be:cf:d2:dd:87:13:5b:
9b:c6:0e:80:8e:ba:a2:9a:dd:54:1a:4f:47:40:ff:
c3:44:66:02:1e:f1:21:db:81:84:fa:ba:84:6e:ef:
7a:f0:22:2f:f5:cc:9f:ce:4d:40:95:73:04:ad:ff:
86:93:85:86:83:26:79:a1:5e:17:5a:ae:80:ec:ae:
06:dd:79:9a:04:ef:be:2c:95:a1:64:f9:85:c0:f3:
a6:28:df:15:d5:b9:47:0c:12:a4:a9:e6:d6:1c:46:
69:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A9:CE:D3:97:41:E6:F2:03:A3:98:39:94:4A:AB:88:6A:69:8F:94
X509v3 Authority Key Identifier:
keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/eKnO05dB5vIDo5g5lEqriGppj5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.176.0-46.151.180.255
46.151.183.0/24
83.142.208.0-83.142.212.255
83.142.214.0/23
Signature Algorithm: sha256WithRSAEncryption
35:c5:b2:0d:29:4e:68:47:45:4a:2e:a6:72:67:7f:fb:16:49:
a8:92:3c:b2:56:e2:cd:9f:d6:db:63:05:3b:5e:27:25:6b:9e:
e4:c1:69:80:34:b5:93:6f:96:b8:39:3a:67:b9:3e:b5:57:90:
76:36:3e:e0:28:39:f7:7b:ce:18:2a:4e:54:5d:7d:ee:90:d9:
d1:a7:f5:26:2c:3c:80:80:30:3f:46:04:1d:f3:e1:ae:ca:2c:
c5:ea:71:4e:26:bc:0a:83:b4:c2:25:ae:bd:d7:f6:32:d7:a7:
e6:ba:4b:c0:f9:ac:91:e6:93:8a:28:86:b6:35:b4:e8:af:ea:
75:7a:bf:8b:1d:80:14:09:e5:00:67:c4:5c:be:81:87:72:69:
74:94:7b:5f:81:b2:0c:b0:bf:c4:3b:a8:c7:d8:bc:37:3b:5c:
c2:7e:e1:f4:2d:3b:c2:c8:d9:87:94:5b:ad:46:19:0b:f1:67:
fb:40:4d:82:72:76:a8:b4:8f:91:52:22:0f:a4:8b:2e:46:e3:
3b:96:d8:74:d0:67:30:34:d4:2d:01:97:ad:be:af:2e:f8:2e:
4e:9d:93:25:c7:81:8d:05:2e:0b:f1:0d:55:e9:c3:df:6c:41:
35:b6:a1:e6:6e:6c:60:49:79:3f:c5:6c:c8:13:1f:63:29:1a:
d3:87:40:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:24:57 2025 by rpki-client