Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/Wn6BmhQ3hHGpcUGcQYHufQoB9CY.roa
File: Wn6BmhQ3hHGpcUGcQYHufQoB9CY.roa (raw, json)
Hash identifier: 1bAtfl0eVf3wk/89WZI+rKZJtpHN1fJgLK/5hDxXP2c=
Subject key identifier: 5A:7E:81:9A:14:37:84:71:A9:71:41:9C:41:81:EE:7D:0A:01:F4:26
Certificate issuer: /CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Certificate serial: 0194266C0F93242C11B4AC740EDF0E452E97
Authority key identifier: 4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/Wn6BmhQ3hHGpcUGcQYHufQoB9CY.roa
Signing time: Thu 02 Jan 2025 09:50:03 +0000
ROA not before: Thu 02 Jan 2025 09:50:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63140
IP address blocks: 195.244.30.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/TXaD1upTn-8ba22910ox0F5fCiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/TXaD1upTn-8ba22910ox0F5fCiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:0f:93:24:2c:11:b4:ac:74:0e:df:0e:45:2e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Validity
Not Before: Jan 2 09:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a7e819a14378471a971419c4181ee7d0a01f426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:43:7e:21:79:ac:1c:7b:bf:a0:1b:76:bf:94:
24:f5:4b:b7:f7:21:11:19:74:35:17:d6:e5:50:b4:
2c:35:f3:37:d4:09:63:c9:6a:41:fc:2e:89:62:e2:
4d:04:5f:59:c7:f7:c9:e6:d5:0f:b6:55:94:34:2c:
8b:11:7f:6e:de:89:b6:18:c8:6e:56:1c:1f:f9:22:
c0:34:2f:59:f5:5f:2a:a7:03:31:26:4a:23:34:fa:
de:67:dc:ec:ec:88:4a:df:7e:f1:6c:f0:3d:db:27:
16:77:89:4a:9b:ba:2d:90:aa:44:8d:0c:07:d4:3b:
c5:cc:c9:a5:29:be:64:36:63:4d:fa:c4:e8:b3:0b:
3f:85:19:16:04:b8:c3:39:5b:d7:ca:2c:6a:a7:35:
ea:a7:ed:75:28:6d:ad:f2:1d:9a:88:66:8e:e7:cc:
2c:4d:8b:c6:4c:3e:50:23:90:ce:11:e9:09:8e:a7:
79:a6:15:a1:81:0b:cc:1f:e6:ac:57:15:5c:5e:fe:
64:d2:08:fe:ef:1a:69:a3:ce:18:37:5d:86:35:67:
62:76:af:ca:a7:7d:ec:9c:d2:5f:ce:62:1f:ee:68:
47:0f:00:5c:b7:59:8f:ef:34:d9:cb:db:c0:aa:37:
d7:68:40:66:46:6b:66:94:ce:95:0f:6b:1f:08:7a:
90:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7E:81:9A:14:37:84:71:A9:71:41:9C:41:81:EE:7D:0A:01:F4:26
X509v3 Authority Key Identifier:
keyid:4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/Wn6BmhQ3hHGpcUGcQYHufQoB9CY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/TXaD1upTn-8ba22910ox0F5fCiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.30.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:83:4b:aa:cd:cc:1f:66:a0:29:0f:55:5e:22:76:df:61:84:
07:f5:5a:39:17:3e:c3:c0:be:0b:f6:93:70:07:58:1e:a7:b3:
b6:53:8e:ec:7e:f2:86:ba:1e:55:d2:15:10:bf:14:1f:92:46:
e0:e3:e1:7e:1d:7b:4a:95:0c:f2:2d:ae:4e:6d:d2:2c:e4:b8:
92:e0:aa:f5:09:73:60:ba:1e:69:b1:a8:90:c3:ab:71:0d:11:
c1:dc:5f:0d:b8:6b:da:f2:e6:c3:e4:55:ec:64:8f:e9:78:07:
78:65:5d:1a:31:98:20:7f:1c:37:0c:44:d6:25:95:b5:3e:bb:
c1:ed:5a:90:20:e4:7b:e2:37:31:c5:e2:37:53:8b:2c:8a:e1:
92:58:9b:b4:11:dc:41:f4:c9:ea:f7:4a:f8:61:cb:e0:37:7e:
39:32:03:5d:2f:ae:20:ce:d2:e7:08:58:39:88:63:24:a0:ef:
f3:94:33:eb:ba:66:c7:70:3f:a9:95:62:90:aa:75:56:20:5b:
e7:9d:6c:32:bc:e6:7b:c5:87:21:90:8a:4d:7f:8f:96:dc:07:
82:5b:7d:3b:9b:2d:ff:06:c2:f7:ad:4c:6c:4f:b6:d5:21:49:
f9:2f:28:11:ef:b7:2f:dd:ac:b0:03:75:56:e7:b2:45:7d:72:
70:65:9e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 08:28:34 2025 by rpki-client