Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/qi0InhuXBU-ET3BQIygAjHDv7R4.roa
File: qi0InhuXBU-ET3BQIygAjHDv7R4.roa (raw, json)
Hash identifier: EwPEIgFR9Y7apfRR0iJdm8aoI2On5DfKKekezl88mDo=
Subject key identifier: AA:2D:08:9E:1B:97:05:4F:84:4F:70:50:23:28:00:8C:70:EF:ED:1E
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 019421B248DE985E5F0CDFF040D25A71ACDB
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/qi0InhuXBU-ET3BQIygAjHDv7R4.roa
Signing time: Wed 01 Jan 2025 11:48:39 +0000
ROA not before: Wed 01 Jan 2025 11:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62257
IP address blocks: 194.36.172.0/24 maxlen: 24
194.147.150.0/24 maxlen: 24
194.147.170.0/24 maxlen: 24
194.180.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.mft
rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 11 Apr 2025 01:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:48:de:98:5e:5f:0c:df:f0:40:d2:5a:71:ac:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Jan 1 11:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa2d089e1b97054f844f70502328008c70efed1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7e:93:79:88:d8:08:01:b7:61:f4:c3:20:44:
7b:40:72:2d:a2:b2:65:ee:57:01:4c:d1:bd:76:ce:
00:6e:d9:09:40:f6:3a:4f:d5:f0:94:f7:db:f7:7f:
12:d3:28:2e:0a:d6:1f:37:f6:3a:1f:50:67:c7:05:
20:0e:ef:8a:48:cc:05:a1:eb:ee:9e:19:1f:33:b4:
6a:a1:20:e4:4d:3a:82:b1:80:00:8e:42:29:f9:3a:
ac:39:34:db:60:ff:40:bf:f2:db:bc:b0:82:c9:5e:
96:56:0d:0d:a8:44:73:e3:38:07:f5:8f:99:e4:70:
a6:26:21:26:d7:f8:a4:3d:b6:f9:c6:c8:86:9b:63:
5c:01:40:e7:06:89:b3:71:a4:67:70:5f:7c:15:9c:
00:04:ed:e8:59:80:21:13:4a:48:f0:00:94:40:55:
ce:c9:0e:59:91:ff:6b:16:3b:7b:ab:d7:c9:39:41:
69:aa:a9:18:00:80:82:bb:5f:57:f4:c3:17:01:be:
ce:8b:ef:40:a9:ab:29:01:7e:a8:65:fc:9e:d2:f8:
f9:66:3f:2f:51:1b:34:96:3e:d4:3c:6e:f5:ca:d9:
d4:02:90:7c:84:f0:84:6d:8a:a9:54:2a:4b:b3:aa:
c6:15:c4:2e:5c:dd:2a:56:9b:0d:21:e7:04:dc:8b:
d9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2D:08:9E:1B:97:05:4F:84:4F:70:50:23:28:00:8C:70:EF:ED:1E
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/qi0InhuXBU-ET3BQIygAjHDv7R4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.172.0/24
194.147.150.0/24
194.147.170.0/24
194.180.208.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:32:f2:8d:dc:7d:d9:7f:d4:fc:1a:f2:f9:fa:2d:72:10:ba:
40:62:87:89:59:48:ef:16:36:c1:d9:16:be:16:d9:2b:07:d7:
18:53:9e:27:5e:86:67:29:8b:8b:61:a4:53:a0:89:f4:08:94:
f3:1c:78:48:18:6e:94:ee:95:a5:84:7b:67:f2:74:17:b4:b3:
e9:2c:44:b0:75:ec:5f:b0:77:95:2d:b6:11:38:9c:eb:c7:34:
a8:83:9e:ff:0b:b3:3e:a2:36:5f:38:e8:83:f6:29:55:24:f5:
dc:3e:5a:f8:bd:29:59:9f:de:a3:f6:b0:86:93:50:d9:e4:c8:
f5:85:b1:f2:7f:8a:06:6b:44:35:77:a3:43:54:b5:ab:bc:a3:
bc:7c:f7:e6:86:7c:19:69:34:99:78:92:82:33:45:c9:ff:1f:
31:ee:2e:bb:e9:48:7d:ea:77:51:5e:ed:33:08:ca:02:95:f3:
62:40:49:1e:2e:22:9a:d8:a8:ba:d1:f0:37:73:d1:ec:a0:8f:
d2:a3:3f:8b:a0:47:2e:11:02:7e:27:2c:95:20:5d:0d:68:91:
41:e2:35:7a:d7:12:c8:cd:d7:67:51:d0:d9:9b:72:3a:5b:9a:
a4:64:c4:d0:72:a1:67:83:06:54:c8:15:40:98:94:6d:ee:8d:
9c:93:f8:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 11:08:42 2025 by rpki-client