Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/1M64bp2D6OoninKtd2dTV1Hn7lI.roa
File: 1M64bp2D6OoninKtd2dTV1Hn7lI.roa (raw, json)
Hash identifier: gBHtNRumJYHeajotR/1OOcz7o/b7zA7upFunHXmsr5M=
Subject key identifier: D4:CE:B8:6E:9D:83:E8:EA:27:8A:72:AD:77:67:53:57:51:E7:EE:52
Certificate issuer: /CN=7dbc2eca324777d74bf2e73c15b0cc7ff3ee75a2
Certificate serial: 019424B3CCDD2344757495502FE902CA7B30
Authority key identifier: 7D:BC:2E:CA:32:47:77:D7:4B:F2:E7:3C:15:B0:CC:7F:F3:EE:75:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fbwuyjJHd9dL8uc8FbDMf_PudaI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/1M64bp2D6OoninKtd2dTV1Hn7lI.roa
Signing time: Thu 02 Jan 2025 01:49:10 +0000
ROA not before: Thu 02 Jan 2025 01:49:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49036
IP address blocks: 185.113.168.0/24 maxlen: 24
185.113.169.0/24 maxlen: 24
185.113.170.0/24 maxlen: 24
185.113.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/fbwuyjJHd9dL8uc8FbDMf_PudaI.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/fbwuyjJHd9dL8uc8FbDMf_PudaI.mft
rsync://rpki.ripe.net/repository/DEFAULT/fbwuyjJHd9dL8uc8FbDMf_PudaI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:cc:dd:23:44:75:74:95:50:2f:e9:02:ca:7b:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dbc2eca324777d74bf2e73c15b0cc7ff3ee75a2
Validity
Not Before: Jan 2 01:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d4ceb86e9d83e8ea278a72ad7767535751e7ee52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:83:0d:39:bd:5c:ef:fb:7b:7b:1c:82:15:
c2:d0:a3:90:f6:d8:1f:9a:a5:01:79:a8:ac:1a:ac:
0e:70:05:14:2a:cf:90:70:f5:21:6a:27:9b:2a:19:
01:47:66:42:96:da:c3:76:1f:60:f4:a5:c9:0a:c5:
0e:22:51:c4:64:44:b6:fa:88:a1:df:f1:1c:f7:f5:
31:26:9a:10:a6:77:e9:04:40:00:f1:33:58:6f:42:
6a:cf:3d:8b:ed:92:0a:5f:6c:8b:47:cd:08:bb:6a:
25:8c:9a:e6:31:4b:08:68:3d:8e:b5:3e:47:ab:90:
fc:21:ee:1f:b5:47:63:6e:92:20:5c:f1:bc:9d:76:
ee:e8:7c:88:da:a4:41:b0:da:f4:b0:10:a3:e8:1b:
08:66:99:bd:c8:ed:34:a9:32:99:86:ef:8e:66:d5:
66:10:3a:61:af:8d:60:5d:17:27:0c:8c:9a:5e:4d:
28:34:8d:48:fc:df:e3:7c:25:9b:16:0d:44:b0:8e:
69:77:a6:d2:55:ac:42:a6:1b:e5:67:59:31:b3:f4:
b1:f3:2e:0e:9d:91:68:f6:bf:f7:ff:34:b3:b5:23:
a0:54:50:58:6c:65:57:1d:34:ce:7a:4d:39:c6:f3:
29:d2:de:96:35:40:91:b4:54:3f:33:50:e8:89:2a:
4f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CE:B8:6E:9D:83:E8:EA:27:8A:72:AD:77:67:53:57:51:E7:EE:52
X509v3 Authority Key Identifier:
keyid:7D:BC:2E:CA:32:47:77:D7:4B:F2:E7:3C:15:B0:CC:7F:F3:EE:75:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fbwuyjJHd9dL8uc8FbDMf_PudaI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/1M64bp2D6OoninKtd2dTV1Hn7lI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/fbwuyjJHd9dL8uc8FbDMf_PudaI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.168.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:85:ed:12:75:76:4c:cf:95:52:21:83:2a:38:17:a1:3f:97:
7e:96:00:d5:eb:3d:02:e6:1b:d6:e4:2f:56:16:b3:fa:64:0a:
8c:66:d3:b4:5a:6e:6e:ed:3c:73:c8:11:70:8d:58:dd:17:55:
91:7b:5c:29:89:c3:0c:57:22:1c:24:e0:cb:ee:dc:bf:90:fe:
02:b5:72:7e:ca:f9:0b:9e:fb:8f:de:1c:36:6c:b1:36:41:00:
6d:18:d8:8c:ec:d9:30:af:64:90:8b:10:ec:b9:da:9a:9d:92:
0c:e7:00:35:26:59:5a:43:9a:ae:f5:20:da:1e:56:29:b3:f3:
ea:62:67:9c:cf:05:fe:69:5d:85:0b:73:fc:8e:81:4b:58:31:
b8:e8:4c:29:ae:c4:32:4d:93:4a:7f:f2:8b:c6:4d:a0:6a:a9:
f1:e3:91:58:7f:7e:90:26:c4:e0:0c:0f:ff:81:a3:f1:8f:ee:
a9:bc:c7:d7:1e:c9:7d:2f:cb:df:d2:5d:e2:8f:91:82:98:6a:
a1:e3:f8:a2:4c:36:d4:ea:5c:15:28:05:32:5f:6d:b4:38:60:
88:36:ce:af:fb:26:6c:87:2e:f8:1c:89:1e:18:f7:44:0d:4c:
cb:65:95:5b:bf:b8:3d:0d:68:f4:1c:f7:b5:02:24:95:26:8c:
c2:5d:0b:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQks8zdI0R1dJVQL+kCynswMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYmMyZWNhMzI0Nzc3ZDc0YmYyZTczYzE1YjBjYzdmZjNl
ZTc1YTIwHhcNMjUwMTAyMDE0OTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNGNlYjg2ZTlkODNlOGVhMjc4YTcyYWQ3NzY3NTM1NzUxZTdlZTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgqDDTm9XO/7e3scghXC0KOQ9tgf
mqUBeaisGqwOcAUUKs+QcPUhaiebKhkBR2ZCltrDdh9g9KXJCsUOIlHEZES2+oih
3/Ec9/UxJpoQpnfpBEAA8TNYb0Jqzz2L7ZIKX2yLR80Iu2oljJrmMUsIaD2OtT5H
q5D8Ie4ftUdjbpIgXPG8nXbu6HyI2qRBsNr0sBCj6BsIZpm9yO00qTKZhu+OZtVm
EDphr41gXRcnDIyaXk0oNI1I/N/jfCWbFg1EsI5pd6bSVaxCphvlZ1kxs/Sx8y4O
nZFo9r/3/zSztSOgVFBYbGVXHTTOek05xvMp0t6WNUCRtFQ/M1DoiSpPkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNTOuG6dg+jqJ4pyrXdnU1dR5+5SMB8GA1UdIwQY
MBaAFH28LsoyR3fXS/LnPBWwzH/z7nWiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmJ3dXlqSkhkOWRMOHVjOEZiRE1mX1B1ZGFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS83Njc3ZTItYzk3MS00YWU3LWE3YjMt
YzhkMTE5ZWUyMDUzLzEvMU02NGJwMkQ2T29uaW5LdGQyZFRWMUhuN2xJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS83Njc3ZTItYzk3MS00YWU3LWE3YjMtYzhkMTE5ZWUyMDUz
LzEvZmJ3dXlqSkhkOWRMOHVjOEZiRE1mX1B1ZGFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXGoMA0G
CSqGSIb3DQEBCwUAA4IBAQBdhe0SdXZMz5VSIYMqOBehP5d+lgDV6z0C5hvW5C9W
FrP6ZAqMZtO0Wm5u7TxzyBFwjVjdF1WRe1wpicMMVyIcJODL7ty/kP4CtXJ+yvkL
nvuP3hw2bLE2QQBtGNiM7Nkwr2SQixDsudqanZIM5wA1JllaQ5qu9SDaHlYps/Pq
YmeczwX+aV2FC3P8joFLWDG46EwprsQyTZNKf/KLxk2gaqnx45FYf36QJsTgDA//
gaPxj+6pvMfXHsl9L8vf0l3ij5GCmGqh4/iiTDbU6lwVKAUyX220OGCINs6v+yZs
hy74HIkeGPdEDUzLZZVbv7g9DWj0HPe1AiSVJozCXQso
-----END CERTIFICATE-----
Generated at Mon Apr 14 10:42:26 2025 by rpki-client