Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/J6fnUwtuy6KkAVjKhE44GNNzN8M.roa
File: J6fnUwtuy6KkAVjKhE44GNNzN8M.roa (raw, json)
Hash identifier: nJgWO4VkQ+dgAVkCE/fAmTK8VpG4vrJ+GVnehbPgZ8E=
Subject key identifier: 27:A7:E7:53:0B:6E:CB:A2:A4:01:58:CA:84:4E:38:18:D3:73:37:C3
Certificate issuer: /CN=dee623e2aff7b03afeb94260348c1633b54d9056
Certificate serial: 0194266B6EBABA4A6EE41087BC0510D444E7
Authority key identifier: DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/J6fnUwtuy6KkAVjKhE44GNNzN8M.roa
Signing time: Thu 02 Jan 2025 09:49:22 +0000
ROA not before: Thu 02 Jan 2025 09:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203735
IP address blocks: 194.127.108.0/24 maxlen: 24
194.127.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:6e:ba:ba:4a:6e:e4:10:87:bc:05:10:d4:44:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee623e2aff7b03afeb94260348c1633b54d9056
Validity
Not Before: Jan 2 09:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27a7e7530b6ecba2a40158ca844e3818d37337c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bb:29:91:9c:b5:90:10:ff:b8:e6:54:76:21:
75:1c:bd:d3:c9:73:5e:1a:b4:d1:57:08:ad:57:2a:
64:25:81:40:6c:b8:33:ea:38:58:60:79:94:72:e3:
9b:f6:ab:c8:87:bc:b2:22:c7:39:4a:3f:57:1b:bc:
72:1c:14:63:f3:64:5a:16:36:aa:b8:1f:a1:a8:8e:
47:39:d3:6b:41:dd:c8:b7:4c:ac:0a:8b:f0:f8:e1:
6e:dd:34:53:71:d2:8c:5f:9f:6e:25:72:5f:f7:5d:
7a:45:fa:03:4c:b3:62:f9:da:40:7f:13:62:b7:79:
81:a5:72:b5:a2:34:4b:fb:58:26:cd:9b:22:ba:b5:
6f:94:a1:28:98:b1:60:b6:6b:b2:1d:4e:0a:7b:61:
0b:75:b6:36:73:4a:85:5f:29:6a:87:a1:6b:d9:a4:
ae:f9:7a:c3:70:8c:66:b5:46:1c:24:0a:c9:2b:a9:
57:f5:86:29:56:42:94:9b:4b:01:88:de:67:50:d8:
f4:3d:98:7e:12:e7:b1:01:60:e6:c1:2d:8f:b1:fc:
60:c3:30:d7:1b:38:24:0a:a3:5f:9b:00:22:b3:b1:
ca:33:14:54:f3:36:f0:9c:e5:d2:e5:b6:7e:6e:c6:
c3:5e:b9:fa:73:cf:a6:45:5e:b8:36:4f:ca:eb:b1:
d7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A7:E7:53:0B:6E:CB:A2:A4:01:58:CA:84:4E:38:18:D3:73:37:C3
X509v3 Authority Key Identifier:
keyid:DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/J6fnUwtuy6KkAVjKhE44GNNzN8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.108.0/24
194.127.110.0/24
Signature Algorithm: sha256WithRSAEncryption
76:59:d0:d1:2e:c9:e8:4f:0f:90:f7:59:29:0e:d8:1b:bb:93:
5c:43:9a:23:0f:ab:76:6d:76:85:b5:0f:2c:07:4f:36:d5:a3:
8a:22:2f:61:54:81:8a:1d:90:f9:8e:85:f9:69:36:7f:f8:a2:
e7:4f:31:48:9e:cc:37:8c:e9:52:8d:43:46:6c:03:bf:23:60:
8f:2a:ca:89:6c:87:76:00:3d:98:8e:3f:90:18:82:c0:1c:e6:
35:e5:49:62:51:a2:26:db:60:fc:a3:ae:ca:b2:e5:12:78:16:
76:fb:c1:f4:6d:4f:15:3c:43:ed:92:42:9b:c9:9d:a8:84:7a:
b9:e9:18:bb:e2:14:3c:28:d0:89:25:7e:5c:cb:49:f5:c0:a6:
e8:6f:ab:9b:88:f8:c3:1b:93:ab:a1:f2:94:79:e7:d6:0f:cf:
82:a8:f4:65:46:11:12:60:dc:60:5b:2d:2d:99:97:bb:66:da:
b7:87:05:bc:38:80:c2:33:de:17:ff:34:1f:c6:c5:7a:f0:ab:
4e:95:33:b7:f6:63:cb:79:55:c2:0c:54:a2:8d:1a:d4:ea:ce:
aa:f9:39:02:54:f1:ba:53:e4:5f:66:75:5f:8e:94:c4:c7:60:
b7:6a:c9:43:4f:cb:49:08:28:3c:7b:6c:b0:cf:00:7b:e2:19:
6b:7a:9d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:13:53 2025 by rpki-client