Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/KQ2gfKjDTAqDCIF8rg6ctK4u8jw.roa
File: KQ2gfKjDTAqDCIF8rg6ctK4u8jw.roa (raw, json)
Hash identifier: SW1oNVSy3V9mCkDE3DhSyTP3T2L66HAY6yybOJ8XTqM=
Subject key identifier: 29:0D:A0:7C:A8:C3:4C:0A:83:08:81:7C:AE:0E:9C:B4:AE:2E:F2:3C
Certificate issuer: /CN=0268b930beeca51fbf3543fe79f9b19345cf13d5
Certificate serial: 019426D98C691598B96360993669D4827B35
Authority key identifier: 02:68:B9:30:BE:EC:A5:1F:BF:35:43:FE:79:F9:B1:93:45:CF:13:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ami5ML7spR-_NUP-efmxk0XPE9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/KQ2gfKjDTAqDCIF8rg6ctK4u8jw.roa
Signing time: Thu 02 Jan 2025 11:49:39 +0000
ROA not before: Thu 02 Jan 2025 11:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1064
IP address blocks: 192.76.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/Ami5ML7spR-_NUP-efmxk0XPE9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/Ami5ML7spR-_NUP-efmxk0XPE9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ami5ML7spR-_NUP-efmxk0XPE9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:8c:69:15:98:b9:63:60:99:36:69:d4:82:7b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0268b930beeca51fbf3543fe79f9b19345cf13d5
Validity
Not Before: Jan 2 11:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=290da07ca8c34c0a8308817cae0e9cb4ae2ef23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fb:3b:be:c4:42:42:e1:ac:f7:1a:6f:c8:9c:
51:ea:b2:de:cb:41:92:44:8b:cb:a2:a6:36:de:b5:
fd:7b:79:13:a5:42:db:70:59:c9:46:8b:96:64:c6:
c7:79:59:99:4b:49:82:fe:c4:3e:58:fc:1e:b4:68:
90:cd:c7:40:53:dc:ba:0d:71:2d:a0:0b:19:5e:3c:
ac:e1:e2:c9:87:87:28:42:6e:5d:64:70:22:2b:df:
07:4c:12:9c:3c:bb:fa:d0:31:20:de:5e:33:b7:c9:
1c:96:bd:35:7f:6b:db:ec:a3:18:cb:eb:47:1a:e0:
92:bb:a5:ae:70:28:55:8a:bc:0a:88:28:45:51:db:
f1:f7:a4:31:23:dd:cb:a8:10:2c:fd:8b:a2:60:95:
7e:f0:65:74:34:5d:99:3f:7a:43:bd:ca:d7:55:fc:
a0:a0:b2:17:88:82:70:9a:ba:f7:9d:51:f7:f7:b8:
19:aa:b2:90:68:2f:e4:9c:80:5d:c4:94:12:89:de:
5f:16:f5:b8:d6:e5:69:e9:97:80:c5:cf:d3:c9:59:
33:0f:e9:c3:a2:ac:0c:aa:48:24:55:5a:78:79:7e:
a4:db:24:df:95:26:64:17:89:06:fd:24:b8:a4:ce:
3b:8c:e3:67:35:8b:19:33:7e:27:72:a1:ea:3c:1d:
87:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:0D:A0:7C:A8:C3:4C:0A:83:08:81:7C:AE:0E:9C:B4:AE:2E:F2:3C
X509v3 Authority Key Identifier:
keyid:02:68:B9:30:BE:EC:A5:1F:BF:35:43:FE:79:F9:B1:93:45:CF:13:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ami5ML7spR-_NUP-efmxk0XPE9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/KQ2gfKjDTAqDCIF8rg6ctK4u8jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/43cd98-6f8a-44cf-95bd-420f9c8eafa4/1/Ami5ML7spR-_NUP-efmxk0XPE9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.76.164.0/24
Signature Algorithm: sha256WithRSAEncryption
42:bc:4b:e5:30:71:1d:1d:de:bb:1c:62:6e:ec:f6:3b:4f:87:
76:7a:07:98:a9:2c:be:bf:0f:7e:64:c0:62:f3:86:0f:02:28:
0d:13:26:2c:46:a5:84:9f:f7:f1:e7:6d:fe:86:25:a5:05:7a:
12:8c:fc:25:68:78:f4:e8:5a:52:be:be:d8:41:d1:77:f4:1d:
42:7a:0e:b4:f4:63:13:b2:37:72:6c:17:5a:bb:74:e3:dd:24:
85:e5:78:94:ab:c3:ee:90:56:8e:6b:0b:8d:ef:24:10:c6:52:
ac:c1:21:bb:56:d6:e2:ca:b9:16:76:1e:37:85:09:45:75:b5:
41:61:dd:db:ea:d0:47:e6:02:de:c0:4c:a1:4c:bf:33:c2:c0:
90:3a:1f:a7:b5:b9:d6:0d:9e:53:51:7d:88:f4:26:71:54:5c:
d5:4e:bf:2e:2c:bb:cb:a8:6d:8f:03:b0:91:ff:75:72:de:b9:
82:53:8f:3e:50:87:8c:1f:a2:5e:08:a7:82:cf:62:78:8c:c9:
c9:fc:cf:4e:0f:c2:46:6b:38:ed:e3:66:b1:85:e4:3c:28:89:
20:62:48:b5:f8:31:73:84:dd:34:db:bf:06:a2:58:04:d9:ee:
c3:32:70:6a:a5:11:08:f3:55:70:b1:90:9c:38:59:de:5b:65:
b4:a9:7d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:46:15 2025 by rpki-client