Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/L-Ev78WxXHgbba_iSqhi5IPJjto.roa
File: L-Ev78WxXHgbba_iSqhi5IPJjto.roa (raw, json)
Hash identifier: Kv1KNdbO9jfII6Qt0q80/Cq8pr2EnGJ/XOsEpv44gII=
Subject key identifier: 2F:E1:2F:EF:C5:B1:5C:78:1B:6D:AF:E2:4A:A8:62:E4:83:C9:8E:DA
Certificate issuer: /CN=eae2653179cafe5ff6651c6058b67ad2d2c8485e
Certificate serial: 019421B257B5317BB8E5B4FCBF59CD277D5F
Authority key identifier: EA:E2:65:31:79:CA:FE:5F:F6:65:1C:60:58:B6:7A:D2:D2:C8:48:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6uJlMXnK_l_2ZRxgWLZ60tLISF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/L-Ev78WxXHgbba_iSqhi5IPJjto.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:5941::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/6uJlMXnK_l_2ZRxgWLZ60tLISF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/6uJlMXnK_l_2ZRxgWLZ60tLISF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/6uJlMXnK_l_2ZRxgWLZ60tLISF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:57:b5:31:7b:b8:e5:b4:fc:bf:59:cd:27:7d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eae2653179cafe5ff6651c6058b67ad2d2c8485e
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fe12fefc5b15c781b6dafe24aa862e483c98eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:8a:89:88:17:ff:ff:45:5a:e3:90:44:85:
87:67:7a:b7:65:58:77:98:b0:f5:d6:58:bf:dd:82:
8a:95:9f:ff:8d:86:1f:51:de:8f:29:4b:35:a2:19:
19:49:7e:d0:57:31:c3:7f:9d:dd:3f:ef:43:15:d0:
9f:e0:11:bd:b7:da:19:60:f2:ac:0d:13:71:cd:95:
1a:da:d0:f2:a9:35:38:fd:87:87:35:44:e9:3e:c8:
56:fe:7e:56:0b:83:31:a4:d0:68:54:3a:b4:a4:7a:
21:24:0f:a2:2b:ec:91:e6:44:58:22:22:77:eb:93:
d0:fc:fe:10:8a:3d:ce:2a:a1:d6:ed:9d:53:59:48:
a0:f5:ed:5a:20:5f:84:6f:4c:0c:7c:05:30:6a:e0:
20:af:0b:46:c0:ee:82:ef:b5:37:07:11:d9:df:64:
09:bf:f2:05:9f:3e:8b:6f:53:e1:b3:2c:62:eb:06:
f6:bc:3c:d7:0c:50:d9:88:4e:ec:bf:59:99:84:d2:
0c:b2:08:7d:b4:be:17:a0:b9:bc:ab:53:36:37:3e:
f1:fa:4e:61:36:15:86:d4:a4:b7:71:ca:0b:1f:05:
a4:13:6c:da:24:57:3e:68:ba:92:c4:ff:65:80:02:
b4:e6:d2:1d:2f:a7:d9:4e:e6:c8:cc:ae:a1:83:7c:
83:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E1:2F:EF:C5:B1:5C:78:1B:6D:AF:E2:4A:A8:62:E4:83:C9:8E:DA
X509v3 Authority Key Identifier:
keyid:EA:E2:65:31:79:CA:FE:5F:F6:65:1C:60:58:B6:7A:D2:D2:C8:48:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6uJlMXnK_l_2ZRxgWLZ60tLISF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/L-Ev78WxXHgbba_iSqhi5IPJjto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/6uJlMXnK_l_2ZRxgWLZ60tLISF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5941::/32
Signature Algorithm: sha256WithRSAEncryption
3c:f9:87:d5:05:03:67:4a:5c:f0:b3:e2:f3:07:26:d4:1c:05:
23:49:2e:c0:9c:d8:78:40:e9:8d:86:9a:5b:1a:77:cc:c0:0e:
ae:6d:5a:a4:4e:da:14:4e:16:21:a9:b6:6d:fa:29:20:ad:62:
ad:4a:01:e8:45:8f:7a:98:94:4a:9d:f9:9a:10:be:dc:a0:2c:
a7:d1:40:8c:90:76:d2:57:0c:54:43:1b:71:25:0b:82:6f:5e:
24:16:61:f7:f3:09:f3:a3:c8:ee:99:b3:20:10:8e:d3:4a:fc:
15:24:c5:6a:e7:ac:af:37:ff:48:ef:b5:a0:ba:00:22:8d:28:
8e:4c:bb:34:ba:6d:d7:00:fe:f8:f8:a7:87:c9:30:a0:e1:e9:
13:56:b5:7e:dd:00:33:b9:e8:7f:3e:d2:7e:45:a0:23:8d:0f:
fa:52:43:f4:91:51:2d:f0:3b:e0:62:9e:ae:6b:df:e4:fc:6b:
af:69:da:52:8b:95:21:10:1a:e7:00:81:c0:7e:bd:01:8a:c2:
d1:e6:d0:69:8c:47:73:f0:9c:37:bb:9e:57:02:ed:77:dd:7f:
2c:12:25:87:30:e3:00:a4:5a:22:e8:78:f3:55:bd:83:62:f5:
a4:e5:ef:89:28:83:dd:4f:db:cc:8c:6e:69:8d:49:db:38:46:
95:91:61:1f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQhsle1MXu45bT8v1nNJ31fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhZTI2NTMxNzljYWZlNWZmNjY1MWM2MDU4YjY3YWQyZDJj
ODQ4NWUwHhcNMjUwMTAxMTE0ODQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmUxMmZlZmM1YjE1Yzc4MWI2ZGFmZTI0YWE4NjJlNDgzYzk4ZWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnWKiYgX//9FWuOQRIWHZ3q3ZVh3
mLD11li/3YKKlZ//jYYfUd6PKUs1ohkZSX7QVzHDf53dP+9DFdCf4BG9t9oZYPKs
DRNxzZUa2tDyqTU4/YeHNUTpPshW/n5WC4MxpNBoVDq0pHohJA+iK+yR5kRYIiJ3
65PQ/P4Qij3OKqHW7Z1TWUig9e1aIF+Eb0wMfAUwauAgrwtGwO6C77U3BxHZ32QJ
v/IFnz6Lb1Phsyxi6wb2vDzXDFDZiE7sv1mZhNIMsgh9tL4XoLm8q1M2Nz7x+k5h
NhWG1KS3ccoLHwWkE2zaJFc+aLqSxP9lgAK05tIdL6fZTubIzK6hg3yDTQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFC/hL+/FsVx4G22v4kqoYuSDyY7aMB8GA1UdIwQY
MBaAFOriZTF5yv5f9mUcYFi2etLSyEheMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnVKbE1YbktfbF8yWlJ4Z1dMWjYwdExJU0Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xOWU5YzUtODJlMi00MzhiLWEwZTkt
OTkyZDc5N2Y0YmJiLzEvTC1Fdjc4V3hYSGdiYmFfaVNxaGk1SVBKanRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8xOWU5YzUtODJlMi00MzhiLWEwZTktOTkyZDc5N2Y0YmJi
LzEvNnVKbE1YbktfbF8yWlJ4Z1dMWjYwdExJU0Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhNZQTAN
BgkqhkiG9w0BAQsFAAOCAQEAPPmH1QUDZ0pc8LPi8wcm1BwFI0kuwJzYeEDpjYaa
Wxp3zMAOrm1apE7aFE4WIam2bfopIK1irUoB6EWPepiUSp35mhC+3KAsp9FAjJB2
0lcMVEMbcSULgm9eJBZh9/MJ86PI7pmzIBCO00r8FSTFauesrzf/SO+1oLoAIo0o
jky7NLpt1wD++Pinh8kwoOHpE1a1ft0AM7nofz7SfkWgI40P+lJD9JFRLfA74GKe
rmvf5Pxrr2naUouVIRAa5wCBwH69AYrC0ebQaYxHc/CcN7ueVwLtd91/LBIlhzDj
AKRaIuh481W9g2L1pOXviSiD3U/bzIxuaY1J2zhGlZFhHw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:12:55 2025 by rpki-client