Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/wDpbmBRWJ1UCIL7XKUDWLgNLdTI.roa
File: wDpbmBRWJ1UCIL7XKUDWLgNLdTI.roa (raw, json)
Hash identifier: MHCgrz112ammLc0W+Kdx+/NR7ldtHurOuX/nJhBDXPg=
Subject key identifier: C0:3A:5B:98:14:56:27:55:02:20:BE:D7:29:40:D6:2E:03:4B:75:32
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0194258F4FE1F92CEF05D92FDEE378206FB4
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/wDpbmBRWJ1UCIL7XKUDWLgNLdTI.roa
Signing time: Thu 02 Jan 2025 05:48:56 +0000
ROA not before: Thu 02 Jan 2025 05:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210398
IP address blocks: 83.217.238.128/26 maxlen: 26
83.231.149.64/28 maxlen: 28
213.130.47.32/28 maxlen: 28
213.130.49.64/26 maxlen: 26
2001:728:1404::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Mar 2025 03:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:4f:e1:f9:2c:ef:05:d9:2f:de:e3:78:20:6f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Jan 2 05:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c03a5b98145627550220bed72940d62e034b7532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:70:55:5b:03:c3:67:96:97:c3:e5:4d:82:2b:
7f:13:f0:e9:4a:56:49:2b:08:0e:7a:a8:77:10:bf:
64:da:4d:14:f5:6e:27:b7:e7:8f:cc:b6:52:80:b2:
5a:d5:7c:14:87:f6:de:30:ea:4d:a8:30:f0:d0:eb:
53:fc:10:64:3a:71:fb:e5:16:f2:01:22:88:db:6d:
e8:92:c9:f6:17:22:ee:25:c1:6a:31:80:3d:4c:24:
36:48:39:3f:f9:b3:62:8d:5d:da:0d:bc:f6:6e:49:
f1:10:33:69:33:66:1d:8c:35:f7:07:01:3d:1c:fb:
15:41:02:c4:f9:f1:b5:1d:e9:64:91:aa:b9:7b:9d:
a1:84:cf:bb:ce:35:ca:ef:29:f6:50:7f:dc:0e:25:
5b:c3:92:03:81:31:c7:f9:07:7a:44:38:dc:64:75:
4d:12:40:bb:ee:d4:6e:2a:af:8e:d4:f6:26:81:a2:
74:cc:b6:22:b9:1c:b0:c5:f8:e4:11:ff:8c:80:07:
7f:8b:6d:e1:66:71:cb:e5:88:7b:94:40:63:2d:d3:
6f:2f:db:bb:b0:ce:9e:da:33:d4:4f:64:93:99:bf:
37:58:0e:a1:6a:17:87:42:2d:18:6f:ca:9b:5e:72:
49:68:f7:12:8a:c2:2b:14:3b:0d:8a:13:80:e1:17:
70:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3A:5B:98:14:56:27:55:02:20:BE:D7:29:40:D6:2E:03:4B:75:32
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/wDpbmBRWJ1UCIL7XKUDWLgNLdTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.238.128/26
83.231.149.64/28
213.130.47.32/28
213.130.49.64/26
IPv6:
2001:728:1404::/48
Signature Algorithm: sha256WithRSAEncryption
3a:66:26:5f:a3:92:b3:3a:28:fd:5f:91:c0:d5:84:78:75:c0:
3a:b6:70:95:65:ca:c4:ab:a8:b1:58:67:83:ff:37:40:88:fc:
11:93:3e:18:5e:2a:93:fe:ea:ff:68:fa:07:40:b3:fd:a7:32:
5b:ee:53:3e:00:08:8d:28:62:5c:4e:1e:39:87:3b:69:a0:4c:
40:f3:2e:16:5c:b0:6c:48:1a:f2:d3:43:43:83:b8:52:e1:21:
6a:29:da:a9:ff:f9:85:18:7c:4e:b8:2b:ed:d6:ae:e7:e5:35:
78:9e:96:dc:ac:65:d2:8a:c9:f7:27:24:91:93:86:bd:0f:df:
31:9a:d6:22:f9:10:71:47:6c:08:c9:f1:b4:36:b0:e6:96:20:
03:75:c7:9b:2f:3c:4f:08:d1:ef:48:1f:75:f7:60:a8:2e:c7:
f6:ce:7f:11:9e:60:c7:c8:ef:20:d3:30:1d:cc:81:ca:c9:f9:
e0:1f:eb:15:81:2c:1d:4e:41:63:35:05:a5:2c:5d:ba:b2:ad:
8b:50:7e:8f:b7:f3:e1:84:76:a2:68:a6:60:71:8e:17:58:41:
6e:a3:61:79:2a:1d:f4:1f:9d:56:98:36:82:5b:f1:34:b0:f4:
e6:3d:65:ea:e4:5d:b3:ad:84:96:57:9d:a1:55:3c:33:fe:58:
74:6a:bc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:50:24 2025 by rpki-client