Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/732a87-4db0-4ef1-bafb-ac4016120cb9/1/GTCjpLpWFoRKa3RTQC7pQJBM1G0.roa
File: GTCjpLpWFoRKa3RTQC7pQJBM1G0.roa (raw, json)
Hash identifier: EhNbeTG6PZNCY341R1mR2HkaZJMJL1NL7VGz9EOMvcU=
Subject key identifier: 19:30:A3:A4:BA:56:16:84:4A:6B:74:53:40:2E:E9:40:90:4C:D4:6D
Certificate issuer: /CN=f7b50c7e81d8cf264d1209b6ad5a3ccb82c16fdd
Certificate serial: 01942143ECC771B74912D0A3921F816F0F18
Authority key identifier: F7:B5:0C:7E:81:D8:CF:26:4D:12:09:B6:AD:5A:3C:CB:82:C1:6F:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97UMfoHYzyZNEgm2rVo8y4LBb90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/732a87-4db0-4ef1-bafb-ac4016120cb9/1/GTCjpLpWFoRKa3RTQC7pQJBM1G0.roa
Signing time: Wed 01 Jan 2025 09:48:07 +0000
ROA not before: Wed 01 Jan 2025 09:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43969
IP address blocks: 2a0a:c880::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/732a87-4db0-4ef1-bafb-ac4016120cb9/1/97UMfoHYzyZNEgm2rVo8y4LBb90.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/732a87-4db0-4ef1-bafb-ac4016120cb9/1/97UMfoHYzyZNEgm2rVo8y4LBb90.mft
rsync://rpki.ripe.net/repository/DEFAULT/97UMfoHYzyZNEgm2rVo8y4LBb90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:ec:c7:71:b7:49:12:d0:a3:92:1f:81:6f:0f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b50c7e81d8cf264d1209b6ad5a3ccb82c16fdd
Validity
Not Before: Jan 1 09:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1930a3a4ba5616844a6b7453402ee940904cd46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:57:83:94:ce:19:fb:26:11:f4:0b:59:fb:8f:
8f:dc:ed:6b:b4:ec:f5:9c:e4:cb:f2:65:f3:b0:df:
26:82:3e:b3:6a:46:a3:87:bb:27:ea:fc:54:ce:8e:
bf:0a:c3:6f:8c:0c:5f:d5:55:0d:fb:1f:ef:9c:d7:
26:c0:de:96:2d:4c:7b:51:f9:cd:59:4c:95:5a:17:
93:5b:90:50:57:da:51:f5:31:7e:89:04:b8:b3:b9:
44:61:74:c9:f6:b8:27:05:60:4e:14:22:fd:c3:a2:
7a:f7:85:ab:00:49:b5:25:e8:7b:c2:7a:26:60:b5:
0b:21:27:1f:bb:33:85:61:1d:ea:f6:e1:1f:90:9d:
8b:60:5e:d1:06:35:5f:76:da:b8:8c:d2:b1:a7:13:
71:bc:0a:9d:cc:f8:86:9d:61:53:32:4d:8c:b2:4d:
00:1a:b6:9c:93:76:92:ea:d4:df:1a:14:ab:7c:47:
4e:59:29:a2:b8:a2:25:8b:5b:49:9f:b2:37:cb:46:
24:b1:91:39:f6:50:5a:a3:47:f7:ce:6b:2f:af:ae:
d6:6f:fc:4f:17:e8:61:9e:41:a0:9c:8e:94:90:13:
94:66:ca:de:84:2d:ca:30:00:d2:98:39:4c:c1:e1:
1a:3e:95:79:60:11:be:3e:8d:21:09:4b:18:c8:cc:
38:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:30:A3:A4:BA:56:16:84:4A:6B:74:53:40:2E:E9:40:90:4C:D4:6D
X509v3 Authority Key Identifier:
keyid:F7:B5:0C:7E:81:D8:CF:26:4D:12:09:B6:AD:5A:3C:CB:82:C1:6F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97UMfoHYzyZNEgm2rVo8y4LBb90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/732a87-4db0-4ef1-bafb-ac4016120cb9/1/GTCjpLpWFoRKa3RTQC7pQJBM1G0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/732a87-4db0-4ef1-bafb-ac4016120cb9/1/97UMfoHYzyZNEgm2rVo8y4LBb90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:c880::/32
Signature Algorithm: sha256WithRSAEncryption
65:85:16:55:49:47:e7:6c:40:68:ae:b6:53:ad:76:02:16:84:
2c:7d:5a:82:9f:a7:3e:73:8a:63:1f:bc:ad:94:8b:bc:03:e5:
f1:7e:d5:ba:b7:f8:80:09:16:c6:53:f9:99:3f:d5:9e:01:7d:
b6:67:c3:13:14:e5:b4:b4:3c:d0:29:56:55:93:ef:70:5b:1a:
9a:a9:66:49:54:ad:90:90:1c:b7:c5:d5:ec:57:53:bc:3b:ba:
d2:c8:9a:27:4f:ae:ed:c8:26:d3:f3:23:92:a3:db:ae:3a:24:
58:22:9a:b5:96:7d:dd:87:81:bb:c0:57:fb:b0:e0:9a:cc:33:
fd:04:59:de:fe:0f:89:c8:6f:b9:e1:cc:59:73:ec:a0:f0:b7:
49:50:a8:62:1c:6c:95:9f:41:16:ff:90:fb:fa:6e:ee:72:c2:
f5:75:25:c1:a2:49:29:58:fd:52:b3:1b:eb:75:3e:80:7f:9d:
a3:55:96:2d:ef:d1:d1:f4:65:ba:ed:4b:98:9c:40:f2:1b:8e:
dc:ff:5e:77:51:10:17:e5:99:18:86:a2:15:35:85:fb:67:13:
73:50:e2:f4:33:c0:f6:2a:5a:6d:42:c3:fc:1b:71:d8:7d:a7:
37:05:93:be:86:48:0a:a7:cc:92:0b:20:e1:67:be:85:a0:3f:
0d:98:22:29
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQhQ+zHcbdJEtCjkh+Bbw8YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjUwYzdlODFkOGNmMjY0ZDEyMDliNmFkNWEzY2NiODJj
MTZmZGQwHhcNMjUwMTAxMDk0ODA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTMwYTNhNGJhNTYxNjg0NGE2Yjc0NTM0MDJlZTk0MDkwNGNkNDZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuleDlM4Z+yYR9AtZ+4+P3O1rtOz1
nOTL8mXzsN8mgj6zakajh7sn6vxUzo6/CsNvjAxf1VUN+x/vnNcmwN6WLUx7UfnN
WUyVWheTW5BQV9pR9TF+iQS4s7lEYXTJ9rgnBWBOFCL9w6J694WrAEm1Jeh7wnom
YLULIScfuzOFYR3q9uEfkJ2LYF7RBjVfdtq4jNKxpxNxvAqdzPiGnWFTMk2Msk0A
Grack3aS6tTfGhSrfEdOWSmiuKIli1tJn7I3y0YksZE59lBao0f3zmsvr67Wb/xP
F+hhnkGgnI6UkBOUZsrehC3KMADSmDlMweEaPpV5YBG+Po0hCUsYyMw43wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBkwo6S6VhaESmt0U0Au6UCQTNRtMB8GA1UdIwQY
MBaAFPe1DH6B2M8mTRIJtq1aPMuCwW/dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdVTWZvSFl6eVpORWdtMnJWbzh5NExCYjkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi83MzJhODctNGRiMC00ZWYxLWJhZmIt
YWM0MDE2MTIwY2I5LzEvR1RDanBMcFdGb1JLYTNSVFFDN3BRSkJNMUcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi83MzJhODctNGRiMC00ZWYxLWJhZmItYWM0MDE2MTIwY2I5
LzEvOTdVTWZvSFl6eVpORWdtMnJWbzh5NExCYjkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgrIgDAN
BgkqhkiG9w0BAQsFAAOCAQEAZYUWVUlH52xAaK62U612AhaELH1agp+nPnOKYx+8
rZSLvAPl8X7Vurf4gAkWxlP5mT/VngF9tmfDExTltLQ80ClWVZPvcFsamqlmSVSt
kJAct8XV7FdTvDu60siaJ0+u7cgm0/MjkqPbrjokWCKatZZ93YeBu8BX+7Dgmswz
/QRZ3v4PichvueHMWXPsoPC3SVCoYhxslZ9BFv+Q+/pu7nLC9XUlwaJJKVj9UrMb
63U+gH+do1WWLe/R0fRluu1LmJxA8huO3P9ed1EQF+WZGIaiFTWF+2cTc1Di9DPA
9ipabULD/Btx2H2nNwWTvoZICqfMkgsg4We+haA/DZgiKQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:47:30 2025 by rpki-client