Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/ubg6NcZsNifAT3uvdzYOJRbZDdo.roa
File: ubg6NcZsNifAT3uvdzYOJRbZDdo.roa (raw, json)
Hash identifier: me6K2gKBLKvg7We5se7qwT6OEScp04Vg/6jm+AETwcM=
Subject key identifier: B9:B8:3A:35:C6:6C:36:27:C0:4F:7B:AF:77:36:0E:25:16:D9:0D:DA
Certificate issuer: /CN=d7bb552365499c07aed34b6884f5b2e9380ebee1
Certificate serial: 01942067D3140F48A9C44172487E7A6C42A6
Authority key identifier: D7:BB:55:23:65:49:9C:07:AE:D3:4B:68:84:F5:B2:E9:38:0E:BE:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/17tVI2VJnAeu00tohPWy6TgOvuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/ubg6NcZsNifAT3uvdzYOJRbZDdo.roa
Signing time: Wed 01 Jan 2025 05:47:42 +0000
ROA not before: Wed 01 Jan 2025 05:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6730
IP address blocks: 194.124.142.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/17tVI2VJnAeu00tohPWy6TgOvuE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/17tVI2VJnAeu00tohPWy6TgOvuE.mft
rsync://rpki.ripe.net/repository/DEFAULT/17tVI2VJnAeu00tohPWy6TgOvuE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:d3:14:0f:48:a9:c4:41:72:48:7e:7a:6c:42:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7bb552365499c07aed34b6884f5b2e9380ebee1
Validity
Not Before: Jan 1 05:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9b83a35c66c3627c04f7baf77360e2516d90dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f1:fa:62:82:b5:31:88:86:57:a5:b3:2c:bf:
91:9c:6f:ac:db:44:26:00:53:1d:69:67:97:9a:e1:
a6:6e:68:5d:7d:9d:56:98:96:76:8e:eb:6b:73:34:
5d:6b:0e:d9:38:d7:1f:af:fd:58:e0:ea:ad:85:24:
0d:19:f6:ac:2e:23:a8:35:98:b4:8e:d4:22:d9:49:
5c:78:87:7b:83:a1:57:9b:72:86:e5:48:cc:d1:63:
9a:9c:58:f8:6e:43:de:ce:41:00:4e:3b:d4:8b:b4:
28:56:43:00:fc:da:dc:4c:49:4d:8f:0f:2a:91:1d:
02:6e:86:5a:92:ef:a1:16:72:6a:19:50:c2:b0:4e:
a8:fb:c0:d3:8b:be:5c:72:61:77:0c:3d:5d:cc:5a:
a0:6e:26:04:42:4e:b3:58:28:40:ed:0c:ba:d8:8d:
66:79:bf:cf:8f:7f:66:64:b1:65:0c:2f:95:e3:0c:
c3:c0:ea:c9:89:1e:95:01:87:5d:14:b5:d8:ea:7e:
d9:5a:cc:02:a1:39:33:08:fa:bf:f1:1c:16:63:7d:
a8:12:04:a4:40:ed:7a:e8:88:2c:5d:d6:63:9f:bc:
33:ea:30:ec:90:a3:53:e2:2e:4c:18:a8:6e:8f:1a:
e7:75:aa:b6:48:91:d6:6b:eb:9a:d6:91:71:24:a0:
04:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B8:3A:35:C6:6C:36:27:C0:4F:7B:AF:77:36:0E:25:16:D9:0D:DA
X509v3 Authority Key Identifier:
keyid:D7:BB:55:23:65:49:9C:07:AE:D3:4B:68:84:F5:B2:E9:38:0E:BE:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/17tVI2VJnAeu00tohPWy6TgOvuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/ubg6NcZsNifAT3uvdzYOJRbZDdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6e6728-ff05-4946-b08e-3ebd455ac2ae/1/17tVI2VJnAeu00tohPWy6TgOvuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.142.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:5a:90:9d:d6:4a:47:3c:3b:df:5e:6c:1d:93:03:85:f0:b6:
56:b5:f0:c5:19:d1:5b:61:2b:e1:d7:2f:b1:61:80:47:3c:08:
5d:33:f7:89:2b:ed:c0:bf:64:cc:3b:06:04:2d:d3:c5:d3:2a:
ac:d5:af:46:b0:5b:22:84:dc:bc:cb:50:58:dd:16:9a:38:06:
4f:8e:b8:f7:2e:75:9a:2e:0d:4d:a3:7f:60:f2:1d:09:7f:b1:
e3:65:05:36:69:0a:1c:18:21:23:7f:7f:7a:52:9d:8f:8d:cc:
0a:13:bb:ca:e4:8d:59:8d:91:48:22:20:9e:66:4c:fe:55:75:
8c:8d:d6:69:dc:a6:08:18:86:94:12:91:fc:28:9f:b4:86:69:
94:97:ea:b8:51:fb:bf:6b:26:6a:c6:c0:a7:c8:a3:eb:58:8a:
01:c2:84:9a:6b:77:e2:07:c7:64:b6:10:5a:c6:7b:5b:00:4b:
7e:89:63:ee:81:40:da:35:0a:1a:3e:7a:94:ad:1c:7e:a3:80:
4e:27:37:22:93:c5:6d:a9:78:0e:3f:44:98:7d:72:b7:de:96:
1e:e5:9b:b3:98:1f:b7:68:d0:de:01:d1:b5:ea:af:55:6c:34:
c0:07:25:b2:0a:dc:5a:c1:ac:97:0c:01:3e:6f:a0:4e:58:7c:
a8:1b:d1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:57:28 2025 by rpki-client