Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/0Wv8atHhhinqkL8Z_4yWBd1Kqg8.roa
File: 0Wv8atHhhinqkL8Z_4yWBd1Kqg8.roa (raw, json)
Hash identifier: fILNYD3epuR8fxYq9hgXxD3GgQQCM01sw2YL4pd5Wks=
Subject key identifier: D1:6B:FC:6A:D1:E1:86:29:EA:90:BF:19:FF:8C:96:05:DD:4A:AA:0F
Certificate issuer: /CN=4a8e17fdaa29187b8e40d630addebd9fd24c0176
Certificate serial: 0194258EE3C1EE324BCF93953390D0698039
Authority key identifier: 4A:8E:17:FD:AA:29:18:7B:8E:40:D6:30:AD:DE:BD:9F:D2:4C:01:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/So4X_aopGHuOQNYwrd69n9JMAXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/0Wv8atHhhinqkL8Z_4yWBd1Kqg8.roa
Signing time: Thu 02 Jan 2025 05:48:28 +0000
ROA not before: Thu 02 Jan 2025 05:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31202
IP address blocks: 185.23.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/So4X_aopGHuOQNYwrd69n9JMAXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/So4X_aopGHuOQNYwrd69n9JMAXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/So4X_aopGHuOQNYwrd69n9JMAXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:e3:c1:ee:32:4b:cf:93:95:33:90:d0:69:80:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a8e17fdaa29187b8e40d630addebd9fd24c0176
Validity
Not Before: Jan 2 05:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d16bfc6ad1e18629ea90bf19ff8c9605dd4aaa0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:b4:04:8c:14:04:5a:86:62:b1:08:c7:69:
61:69:a2:2d:2c:c0:f0:84:f4:ea:19:8b:c9:6a:eb:
9c:2f:92:79:dc:16:85:06:9f:ad:f2:86:5f:c3:1d:
8e:4f:0c:14:df:29:8a:22:ff:0a:62:6d:d5:e3:4b:
aa:10:c5:22:79:cd:4c:75:fa:07:be:68:ee:3f:e8:
db:d6:a1:68:db:2c:57:ea:a3:ac:fa:3f:26:ee:5c:
27:97:db:0d:3a:d3:b9:63:1a:24:cb:df:41:de:01:
29:60:0a:03:b4:d2:48:fa:fa:42:35:c7:2a:d8:cc:
fe:59:0e:ba:ec:7e:63:13:9f:18:4f:52:3c:53:ba:
00:8d:53:b7:a3:15:cd:11:48:bc:9f:25:55:bb:fe:
98:e5:9f:26:4a:9d:a5:55:50:45:b1:17:f5:a6:e5:
37:fd:be:c0:e0:7c:10:12:95:79:2c:50:fa:4a:b9:
0f:9e:fd:d6:9d:27:df:4e:fa:86:96:e2:65:ff:59:
74:d9:a6:a4:ec:68:a4:02:c7:ac:82:d2:5e:bf:4a:
7e:ed:70:66:52:9b:d5:dc:cb:16:46:6a:ba:79:46:
83:00:56:c9:80:ac:c1:1a:57:71:c5:1b:ae:0a:59:
dc:06:09:4e:81:5a:7f:96:a4:2e:58:0a:8f:6d:3f:
e3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6B:FC:6A:D1:E1:86:29:EA:90:BF:19:FF:8C:96:05:DD:4A:AA:0F
X509v3 Authority Key Identifier:
keyid:4A:8E:17:FD:AA:29:18:7B:8E:40:D6:30:AD:DE:BD:9F:D2:4C:01:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/So4X_aopGHuOQNYwrd69n9JMAXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/0Wv8atHhhinqkL8Z_4yWBd1Kqg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c24341-a7cf-4275-ac4f-5c765c5373a3/1/So4X_aopGHuOQNYwrd69n9JMAXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.61.0/24
Signature Algorithm: sha256WithRSAEncryption
45:86:03:73:bb:16:68:bd:5e:d8:35:e0:ce:0a:08:5a:17:78:
98:4c:fd:55:a2:69:70:59:de:fb:d4:81:3e:6e:29:8f:ee:69:
48:45:e2:55:1c:0a:a1:7e:20:25:26:56:f3:12:0f:56:b1:20:
1d:6c:08:ba:d6:e6:cb:0d:25:34:0e:e7:bf:6a:f9:54:08:91:
af:ea:48:52:c4:39:7e:56:04:15:64:5a:ef:a0:60:5b:04:81:
b6:03:bf:11:ce:b9:42:37:a8:ed:4b:22:35:4e:9d:f1:6c:bb:
2c:5c:5f:0b:f9:29:33:7e:86:2a:03:3b:39:03:07:70:81:28:
6e:bd:01:91:f2:92:e7:5d:a8:38:90:eb:2d:94:ca:57:98:91:
25:91:f6:56:7f:e0:a4:ec:24:7a:28:11:2c:70:5f:22:65:fd:
90:72:92:2c:73:dc:6f:a2:ee:e1:9e:45:79:60:bd:6d:ce:a7:
f0:c6:6d:1f:2b:30:a4:1f:67:08:38:45:af:c9:ca:e2:1c:55:
c7:52:30:ce:93:72:14:70:f3:31:58:f2:c7:cc:d8:3e:0f:8d:
f3:12:11:71:03:20:02:b8:0c:88:af:40:07:dd:d7:e1:59:36:
51:fd:44:27:a8:2d:90:3f:62:c3:61:af:c4:45:54:26:4d:e9:
e4:df:80:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:30:00 2025 by rpki-client