Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/G7eTk3jqB-BdA_Wy3K2E2YFtyTA.roa
File: G7eTk3jqB-BdA_Wy3K2E2YFtyTA.roa (raw, json)
Hash identifier: OtseOoY4gfu7tKjqn1wIwpg1/zv9XoIf0fx8DQ1CUfM=
Subject key identifier: 1B:B7:93:93:78:EA:07:E0:5D:03:F5:B2:DC:AD:84:D9:81:6D:C9:30
Certificate issuer: /CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Certificate serial: 01941FFA449F7DFAFAE5DB18CF40F4AC4AC9
Authority key identifier: F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/G7eTk3jqB-BdA_Wy3K2E2YFtyTA.roa
Signing time: Wed 01 Jan 2025 03:48:02 +0000
ROA not before: Wed 01 Jan 2025 03:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205964
IP address blocks: 89.42.8.0/24 maxlen: 24
89.43.32.0/24 maxlen: 24
93.118.38.0/24 maxlen: 24
94.176.106.0/24 maxlen: 24
193.36.76.0/24 maxlen: 24
209.35.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:44:9f:7d:fa:fa:e5:db:18:cf:40:f4:ac:4a:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Validity
Not Before: Jan 1 03:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1bb7939378ea07e05d03f5b2dcad84d9816dc930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:51:66:1e:5f:ce:c3:8a:c8:f0:43:d6:f7:0b:
35:ef:0e:89:16:73:e8:a3:43:5a:c0:7d:50:33:74:
fd:28:47:a3:ab:84:69:17:1a:93:47:94:34:34:05:
f8:cd:ad:58:e2:7f:7f:8c:9c:89:97:df:44:12:0a:
95:aa:d6:3c:95:7b:fb:f0:12:bf:3e:ed:d4:5f:69:
a7:6b:6b:48:b6:87:fe:ab:5b:f3:40:e4:6a:a5:7a:
49:10:4e:a7:a2:ad:6d:37:45:4f:12:03:0c:13:3a:
a5:ad:98:02:5a:ba:7f:fa:88:99:98:2d:81:3c:9c:
c2:55:21:77:fb:2c:9a:0a:2b:9c:c4:07:47:ac:74:
b4:4c:de:24:2d:14:71:bb:c8:cd:65:f4:c9:14:f6:
41:a2:50:cf:b0:83:a0:cf:b6:f0:2a:1a:1c:fb:e6:
c8:4c:54:9e:a2:ae:9d:11:0b:f3:e6:ac:67:ed:5c:
d8:23:96:04:70:02:ce:dd:37:c6:09:1d:2b:b5:f7:
13:e6:55:cc:37:f9:e2:4e:d6:f7:98:24:ba:2d:d6:
4b:55:4c:b1:e5:11:79:78:ab:ef:74:6e:0d:e1:a5:
dc:d7:1a:f7:d5:19:23:c4:52:fb:6c:e8:70:3a:70:
e4:61:1c:9e:0d:d4:3d:b1:f0:e2:da:d9:c6:77:4a:
e5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:B7:93:93:78:EA:07:E0:5D:03:F5:B2:DC:AD:84:D9:81:6D:C9:30
X509v3 Authority Key Identifier:
keyid:F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/G7eTk3jqB-BdA_Wy3K2E2YFtyTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.8.0/24
89.43.32.0/24
93.118.38.0/24
94.176.106.0/24
193.36.76.0/24
209.35.99.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:04:a7:d4:92:87:5a:65:74:4e:74:66:58:4d:bb:59:4d:89:
00:9b:00:d8:4e:02:c3:9d:78:c8:ea:39:44:85:99:4c:8b:1f:
64:d7:a9:96:b1:ad:28:d8:23:2e:33:91:c4:ee:81:cc:12:25:
20:e8:39:63:2a:4a:e5:0f:2c:43:fa:f5:05:84:69:e1:0d:9c:
95:b9:67:d8:01:5c:24:ad:eb:40:1d:05:d0:84:fb:08:36:f2:
d4:7a:97:61:d6:fb:0f:bb:f6:59:4d:78:e9:5d:2b:45:6d:d1:
25:80:06:f5:97:39:5b:aa:cd:e0:86:93:df:1c:1f:da:01:53:
e8:db:5f:ae:6a:95:1b:34:e8:be:19:2b:c0:65:2c:6e:99:db:
5d:3d:41:ee:4c:d4:78:f5:6b:75:c7:5a:e9:a1:8f:d0:6d:82:
1a:fd:97:f4:ff:4d:8f:df:49:df:60:0d:cc:54:8e:68:04:39:
7a:57:df:27:54:aa:55:7b:a4:eb:8a:aa:12:66:dc:5e:58:cd:
d0:7d:bc:35:fc:13:eb:e4:f2:b2:f4:1b:30:d0:71:a5:d7:09:
2e:5f:ff:8e:f1:a2:06:13:3f:16:4d:24:59:a3:1a:32:9b:43:
ce:c3:aa:54:b8:be:ac:b6:53:27:6c:c7:a3:ea:4d:d3:6b:fd:
9f:3c:6a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 00:46:20 2025 by rpki-client