Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/vk-2RYHviyXKCP3eAAsgKKSkBv4.roa
File: vk-2RYHviyXKCP3eAAsgKKSkBv4.roa (raw, json)
Hash identifier: AV445OcWK5tkwYC3s0HKBp//h5gf47ykPfmI2RcuEUI=
Subject key identifier: BE:4F:B6:45:81:EF:8B:25:CA:08:FD:DE:00:0B:20:28:A4:A4:06:FE
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 01947393B105715204916435341A1856E219
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/vk-2RYHviyXKCP3eAAsgKKSkBv4.roa
Signing time: Fri 17 Jan 2025 09:24:06 +0000
ROA not before: Fri 17 Jan 2025 09:24:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 83.136.214.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:73:93:b1:05:71:52:04:91:64:35:34:1a:18:56:e2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Jan 17 09:24:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be4fb64581ef8b25ca08fdde000b2028a4a406fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ea:d4:f5:e1:f6:a4:8f:09:5e:f0:84:56:68:
f9:25:69:87:ec:d8:dc:36:20:3c:61:12:54:25:76:
b4:23:1c:fb:6e:5d:17:12:58:d1:c7:c5:e2:c9:6b:
a6:cb:aa:5a:7c:db:97:f8:76:b6:bf:bd:4a:40:78:
22:c6:1f:86:4c:dd:d3:41:e0:e4:8a:6e:55:1b:40:
fe:38:fe:df:68:8e:00:12:ca:51:cc:84:fc:97:46:
67:20:4d:ac:c1:9f:be:6d:46:ea:e6:ae:76:ba:44:
96:0f:a9:da:c3:87:02:d6:79:3e:1b:7d:74:45:36:
17:b3:85:89:8e:f2:d4:e7:27:5e:7b:51:7c:fc:b4:
fe:70:cc:dc:fb:f1:13:74:ed:06:9d:a6:d1:c1:80:
25:13:78:d2:93:69:90:26:7d:62:2e:33:b0:dd:f6:
a6:9d:d2:0f:e5:31:88:13:cb:86:fa:11:14:02:71:
8c:db:ef:a1:57:40:7e:fd:b6:df:37:c5:63:45:d2:
c1:00:80:82:cc:66:a1:d1:1c:14:1f:fd:1b:7f:fe:
00:2d:c3:a9:98:84:c6:d6:c5:33:e3:10:d1:d5:e9:
ef:4e:b0:9c:f5:be:62:b2:05:79:42:26:03:27:76:
07:17:87:1e:d4:7a:d0:dc:6a:a3:ce:5b:7b:90:4e:
97:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:4F:B6:45:81:EF:8B:25:CA:08:FD:DE:00:0B:20:28:A4:A4:06:FE
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/vk-2RYHviyXKCP3eAAsgKKSkBv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.214.0/23
Signature Algorithm: sha256WithRSAEncryption
05:bd:ec:5a:be:5d:e9:ea:83:12:db:ef:f4:5f:2b:5b:42:a4:
f1:23:a6:f9:ed:f8:4a:bb:88:87:f2:c0:bd:4a:35:8d:9d:fb:
05:d0:2c:ca:b9:ad:f9:f9:82:80:be:9b:d7:33:65:9f:1d:80:
56:b0:ee:63:3c:d3:5e:8a:36:2a:eb:68:31:2e:66:3e:d6:02:
92:3c:cc:78:33:8b:f4:f7:19:13:0c:7a:e9:40:20:77:d9:6c:
e8:54:be:4b:2c:e7:21:38:6a:1c:f6:be:09:2d:5e:1a:e4:9d:
99:af:b3:38:ee:fd:24:3d:be:85:00:bf:88:89:10:aa:d5:e5:
8c:9c:de:f3:23:fc:84:c5:c4:0a:bc:ad:dd:4d:82:90:ce:37:
c0:10:5c:3e:43:3b:ba:86:45:d4:2d:13:c4:68:3c:67:aa:b1:
0a:1c:e8:55:54:d7:48:6d:2f:c0:fc:1f:c5:dd:77:6c:f7:ce:
0c:c7:e6:78:53:e2:03:06:0c:f4:a2:b7:94:b2:b0:92:6e:11:
2f:7a:40:87:7a:bc:b5:2b:59:e4:2e:63:54:29:fb:15:6e:90:
60:49:1c:61:31:b6:72:fb:df:89:08:b8:2b:7b:01:7b:57:be:
91:77:a2:2f:5c:3a:06:b3:50:d9:47:39:9a:07:7a:a2:69:97:
0f:69:07:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 17:13:47 2025 by rpki-client