Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/W1V7sX2OkMW00gOq3FY96EaIJuo.roa
File: W1V7sX2OkMW00gOq3FY96EaIJuo.roa (raw, json)
Hash identifier: L2Vjv5/b8D4kaFYHvwJ78nS6Sd2rPtpbgCiF/7RAlWY=
Subject key identifier: 5B:55:7B:B1:7D:8E:90:C5:B4:D2:03:AA:DC:56:3D:E8:46:88:26:EA
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 019420684BFD1B589CF20627A570CCCEDAA4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/W1V7sX2OkMW00gOq3FY96EaIJuo.roa
Signing time: Wed 01 Jan 2025 05:48:13 +0000
ROA not before: Wed 01 Jan 2025 05:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200019
IP address blocks: 193.233.161.0/24 maxlen: 24
193.233.202.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft
rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 19:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:4b:fd:1b:58:9c:f2:06:27:a5:70:cc:ce:da:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 05:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b557bb17d8e90c5b4d203aadc563de8468826ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6b:4c:4c:9d:d2:0d:28:d9:47:20:a9:66:75:
e6:b7:02:36:96:3c:fa:46:be:7d:87:22:79:b0:ca:
1f:89:ee:46:68:64:57:8b:6d:52:4a:48:1f:af:97:
d9:27:61:6a:57:fb:44:f9:6f:e5:0a:6a:be:b5:78:
c8:2a:89:5f:d1:8c:ab:50:61:0a:9c:2b:ec:bb:dc:
91:50:90:f0:f9:28:1e:a3:59:27:68:da:d9:5a:7a:
d2:db:70:49:3d:2f:b0:53:d0:0b:20:14:ff:f4:f7:
3b:9d:6f:c7:bb:1e:01:8e:5e:b3:00:fc:55:84:22:
14:3b:bc:5a:d5:96:f0:c5:1a:01:bc:7e:93:b2:dd:
00:77:0f:41:c8:0b:66:42:c5:0b:85:19:05:70:81:
99:c7:c4:fe:bc:bd:bf:0d:2e:e6:2a:8c:c9:e8:f5:
6b:97:c4:83:be:69:67:bd:84:33:c6:6c:53:5c:2e:
9d:4f:b2:e3:60:aa:82:14:fb:2a:17:e9:df:11:21:
91:9f:f1:ee:61:b1:c7:45:6b:84:2e:1e:f4:53:05:
d9:3c:a5:a0:22:e5:be:d2:33:4f:30:4a:f5:2a:a3:
8d:87:3b:b3:cc:cc:11:7d:67:31:47:59:35:ab:92:
e3:df:c9:af:97:f5:b8:99:e4:6e:a5:ae:e5:af:16:
34:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:55:7B:B1:7D:8E:90:C5:B4:D2:03:AA:DC:56:3D:E8:46:88:26:EA
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/W1V7sX2OkMW00gOq3FY96EaIJuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.161.0/24
193.233.202.0/23
Signature Algorithm: sha256WithRSAEncryption
98:34:1e:61:4e:48:7f:a0:3e:44:1d:49:f4:64:fa:ad:da:1f:
cc:60:4c:ca:7c:b7:df:76:cb:ce:50:c3:42:24:f6:b5:39:f8:
3c:a7:b1:16:de:d7:c5:f5:b3:f4:cd:7b:d7:ad:4c:14:63:75:
2d:c2:7e:0b:c7:43:bf:b1:8b:c0:ff:cf:77:f6:78:38:b4:d9:
1c:fe:95:77:63:8f:07:2b:cc:55:ea:49:f0:e1:23:19:db:87:
45:3d:00:0c:43:7c:51:58:1d:fb:80:6b:ee:67:2a:6f:79:01:
0c:3d:d1:e5:f1:62:b7:60:b9:ad:84:2f:45:f4:d1:2f:4c:d0:
ef:ea:90:9b:7d:df:5a:36:b9:7e:6b:33:ea:79:b1:cb:6c:25:
fb:88:93:16:53:08:9c:fa:cd:8d:0d:8f:3f:99:e0:8f:66:e1:
a2:21:e9:3b:35:ec:ec:1d:b5:05:e8:64:44:ea:19:30:2e:76:
3f:35:f1:f6:f2:4e:ee:75:85:0c:2d:4f:11:dd:eb:86:e4:0c:
65:9f:b2:38:6d:66:5e:da:a8:12:b4:e6:be:54:7d:a2:19:39:
79:16:d4:8a:b4:e7:6e:50:51:22:1e:0e:59:92:02:14:78:b3:
55:2e:eb:d1:fa:3a:ad:7e:5d:b5:04:0f:37:2f:34:ef:0f:05:
f9:a5:02:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:55:10 2025 by rpki-client