Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/uHGvKFxGUbuZJitYbOKe-TvvsJA.roa
File: uHGvKFxGUbuZJitYbOKe-TvvsJA.roa (raw, json)
Hash identifier: 2ggmV/gZ71WHFH+tl+mSGN+dQgondzuBHty4bl2C+wo=
Subject key identifier: B8:71:AF:28:5C:46:51:BB:99:26:2B:58:6C:E2:9E:F9:3B:EF:B0:90
Certificate issuer: /CN=55a72cff41bdb7c7e01855d39076daf721742c70
Certificate serial: 019421B1CB7A928183495C5ADECAA70D529B
Authority key identifier: 55:A7:2C:FF:41:BD:B7:C7:E0:18:55:D3:90:76:DA:F7:21:74:2C:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vacs_0G9t8fgGFXTkHba9yF0LHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/uHGvKFxGUbuZJitYbOKe-TvvsJA.roa
Signing time: Wed 01 Jan 2025 11:48:07 +0000
ROA not before: Wed 01 Jan 2025 11:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 185.234.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/Vacs_0G9t8fgGFXTkHba9yF0LHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/Vacs_0G9t8fgGFXTkHba9yF0LHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Vacs_0G9t8fgGFXTkHba9yF0LHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:cb:7a:92:81:83:49:5c:5a:de:ca:a7:0d:52:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55a72cff41bdb7c7e01855d39076daf721742c70
Validity
Not Before: Jan 1 11:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b871af285c4651bb99262b586ce29ef93befb090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5a:b7:52:a9:c6:fd:85:1c:e9:be:77:cd:c0:
b7:9b:04:87:cc:c2:16:1e:3c:f1:85:34:31:17:a9:
d4:d1:a7:dc:ae:62:d9:29:dc:87:47:af:c0:3a:b6:
50:99:57:66:45:a5:72:d1:37:50:f6:6f:d3:12:5e:
c8:3a:70:8c:f8:e5:bb:1a:c2:55:ee:8e:27:ec:bc:
08:7f:1f:4e:6b:f2:65:1c:bd:3a:9a:25:ae:98:06:
6e:50:39:c8:cd:11:cc:e8:cc:c4:98:f3:be:2f:44:
bb:9c:5c:5f:d6:33:5d:7f:fc:9a:65:70:a2:73:8e:
f1:9c:4e:12:6a:1f:fc:85:fb:e5:23:52:c6:9e:37:
c2:c5:82:0d:3b:99:d4:2a:c1:a0:97:b0:c4:e5:e2:
bc:22:f5:0b:3e:01:4b:a8:06:0d:6e:2d:05:08:73:
e3:b0:34:75:67:e9:b7:50:ef:50:86:16:ff:ba:08:
a6:24:7c:25:13:fc:1c:02:24:e3:bb:ad:86:9e:de:
62:c0:11:46:42:20:11:c1:b0:2f:06:e1:3d:65:3e:
f0:9d:dc:0d:3c:dc:9c:ed:a5:ad:20:9c:a1:05:df:
a7:dd:d7:e5:94:7e:9b:02:20:16:d4:3e:5a:9f:1c:
93:7b:a7:aa:b6:4f:3b:6b:1f:b1:bb:07:97:d7:36:
25:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:71:AF:28:5C:46:51:BB:99:26:2B:58:6C:E2:9E:F9:3B:EF:B0:90
X509v3 Authority Key Identifier:
keyid:55:A7:2C:FF:41:BD:B7:C7:E0:18:55:D3:90:76:DA:F7:21:74:2C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vacs_0G9t8fgGFXTkHba9yF0LHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/uHGvKFxGUbuZJitYbOKe-TvvsJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/4f918b-28d9-419b-8647-338986176b1f/1/Vacs_0G9t8fgGFXTkHba9yF0LHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.244.0/24
Signature Algorithm: sha256WithRSAEncryption
75:80:8a:f4:18:06:0e:a8:01:a3:f3:e5:be:4f:f0:23:cf:ed:
ff:62:02:83:6b:1b:bd:ae:8f:1a:3d:15:1e:95:b7:79:82:48:
7c:d5:b7:f8:1e:27:3f:35:e8:dd:3c:40:d2:8b:c2:b1:71:5f:
e3:80:06:b6:92:51:d2:84:e1:d4:81:8c:b5:95:1b:f7:94:8f:
50:d8:f5:8f:05:5c:33:da:51:46:da:19:d5:0c:3e:d9:d0:5c:
7f:fe:88:60:aa:5f:db:94:03:99:5d:5e:40:90:ce:dd:1d:96:
85:76:a7:60:f2:a4:39:c0:00:98:09:bc:d1:dc:13:f3:58:23:
1c:9c:e7:57:90:cb:0f:ed:98:ad:b9:96:51:92:6a:74:05:68:
99:89:f0:8f:6e:c5:ea:78:22:d2:49:05:e5:a5:ca:bd:80:7a:
78:85:77:06:5b:eb:08:8f:4a:48:4f:e7:ab:2b:f8:1d:83:7d:
aa:1c:56:b7:69:ac:ef:02:77:1c:97:83:b6:b6:64:94:b0:05:
8a:2a:b7:ab:de:9a:1e:16:3e:2a:67:5f:0f:4e:3d:1f:74:67:
60:d1:9d:44:73:5d:69:ea:c2:af:f0:4b:e5:30:c1:65:bb:7f:
bf:2f:9e:83:55:66:e5:45:e6:50:fc:cf:6c:a9:06:ef:76:5b:
6c:af:a4:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsct6koGDSVxa3sqnDVKbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1YTcyY2ZmNDFiZGI3YzdlMDE4NTVkMzkwNzZkYWY3MjE3
NDJjNzAwHhcNMjUwMTAxMTE0ODA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODcxYWYyODVjNDY1MWJiOTkyNjJiNTg2Y2UyOWVmOTNiZWZiMDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFq3UqnG/YUc6b53zcC3mwSHzMIW
HjzxhTQxF6nU0afcrmLZKdyHR6/AOrZQmVdmRaVy0TdQ9m/TEl7IOnCM+OW7GsJV
7o4n7LwIfx9Oa/JlHL06miWumAZuUDnIzRHM6MzEmPO+L0S7nFxf1jNdf/yaZXCi
c47xnE4Sah/8hfvlI1LGnjfCxYINO5nUKsGgl7DE5eK8IvULPgFLqAYNbi0FCHPj
sDR1Z+m3UO9Qhhb/ugimJHwlE/wcAiTju62Gnt5iwBFGQiARwbAvBuE9ZT7wndwN
PNyc7aWtIJyhBd+n3dfllH6bAiAW1D5anxyTe6eqtk87ax+xuweX1zYl8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLhxryhcRlG7mSYrWGzinvk777CQMB8GA1UdIwQY
MBaAFFWnLP9BvbfH4BhV05B22vchdCxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVmFjc18wRzl0OGZnR0ZYVGtIYmE5eUYwTEhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy80ZjkxOGItMjhkOS00MTliLTg2NDct
MzM4OTg2MTc2YjFmLzEvdUhHdktGeEdVYnVaSml0WWJPS2UtVHZ2c0pBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy80ZjkxOGItMjhkOS00MTliLTg2NDctMzM4OTg2MTc2YjFm
LzEvVmFjc18wRzl0OGZnR0ZYVGtIYmE5eUYwTEhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuer0MA0G
CSqGSIb3DQEBCwUAA4IBAQB1gIr0GAYOqAGj8+W+T/Ajz+3/YgKDaxu9ro8aPRUe
lbd5gkh81bf4Hic/NejdPEDSi8KxcV/jgAa2klHShOHUgYy1lRv3lI9Q2PWPBVwz
2lFG2hnVDD7Z0Fx//ohgql/blAOZXV5AkM7dHZaFdqdg8qQ5wACYCbzR3BPzWCMc
nOdXkMsP7ZituZZRkmp0BWiZifCPbsXqeCLSSQXlpcq9gHp4hXcGW+sIj0pIT+er
K/gdg32qHFa3aazvAnccl4O2tmSUsAWKKrer3poeFj4qZ18PTj0fdGdg0Z1Ec11p
6sKv8EvlMMFlu3+/L56DVWblReZQ/M9sqQbvdltsr6QX
-----END CERTIFICATE-----
Generated at Sat Apr 12 16:41:54 2025 by rpki-client