Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/DeLtrHcBPI7c637Xj4asNqk8c3g.roa
File: DeLtrHcBPI7c637Xj4asNqk8c3g.roa (raw, json)
Hash identifier: Pn+3DgGNRN00J0ap/7K8PSOHY3vVUIoYld7HLAdixT0=
Subject key identifier: 0D:E2:ED:AC:77:01:3C:8E:DC:EB:7E:D7:8F:86:AC:36:A9:3C:73:78
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01951E6FDF1F350023DFC013B1D72ECD2DDE
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/DeLtrHcBPI7c637Xj4asNqk8c3g.roa
Signing time: Wed 19 Feb 2025 13:40:02 +0000
ROA not before: Wed 19 Feb 2025 13:40:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50887
IP address blocks: 80.96.8.0/23 maxlen: 23
81.181.204.0/23 maxlen: 23
85.120.240.0/23 maxlen: 23
217.156.70.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1e:6f:df:1f:35:00:23:df:c0:13:b1:d7:2e:cd:2d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Feb 19 13:40:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0de2edac77013c8edceb7ed78f86ac36a93c7378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:a7:94:e4:c4:72:3e:e3:9a:b1:14:99:60:
d1:ac:2c:2e:0d:52:8f:a8:c4:92:7d:fd:07:b1:07:
34:26:6d:c1:a1:83:41:60:ab:9d:13:e0:f8:f2:c2:
63:41:8b:e7:af:14:85:3c:42:af:fd:95:0f:4a:12:
d8:f8:e4:40:f8:78:0d:a2:6a:65:4e:29:51:94:1c:
3a:a4:cd:b3:41:ea:65:73:66:74:d2:3c:06:c4:ae:
55:40:19:e7:ce:bc:a6:f0:d5:14:fa:32:02:e5:d3:
cf:33:69:45:4a:b8:16:fc:d1:f1:b5:08:ab:5a:09:
97:e8:fe:c8:67:eb:43:72:d7:75:92:76:4e:2f:fa:
6f:38:63:0a:d8:67:fb:92:d8:a4:78:61:16:d4:20:
af:40:12:cb:3d:67:07:58:ed:a4:96:1b:1e:49:61:
15:f5:a8:3a:b3:5a:25:41:f8:a7:aa:22:ef:4c:fb:
93:41:f9:d5:2f:c3:48:3a:8d:51:b0:a5:d5:f2:d1:
f1:62:05:0b:d0:5d:b7:ef:ee:b0:ce:62:e1:8e:c8:
2b:75:47:1d:f0:6c:a6:c2:6c:4f:9f:4d:ce:e3:26:
de:b5:12:24:81:e5:64:c3:76:67:db:60:ed:09:2a:
10:0f:62:3c:f1:91:ef:b3:f8:94:0e:c6:5f:36:80:
c1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E2:ED:AC:77:01:3C:8E:DC:EB:7E:D7:8F:86:AC:36:A9:3C:73:78
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/DeLtrHcBPI7c637Xj4asNqk8c3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.8.0/23
81.181.204.0/23
85.120.240.0/23
217.156.70.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:50:c8:e5:59:83:91:da:21:af:0e:c9:d5:f2:08:09:5d:cc:
a7:ec:ba:b4:67:99:e2:4a:cb:58:ad:92:0b:79:a9:cd:04:04:
28:3c:d9:3e:b6:9e:f8:cc:1a:5c:3b:ca:b4:54:ef:19:eb:ea:
2b:7a:25:67:39:5b:94:19:27:35:ad:5a:93:97:4b:6d:8a:37:
3c:a7:d3:38:e6:49:05:30:09:e5:aa:15:01:1c:20:6c:df:b8:
76:fe:64:bd:f0:a0:0e:c6:44:0a:55:c6:aa:0c:06:bb:fd:68:
91:7c:4f:c5:ff:3f:68:4b:46:e2:75:02:50:3a:79:06:e6:66:
3a:28:c3:a1:50:16:1d:03:85:90:4d:b5:b8:c6:16:29:99:d5:
65:fb:e1:96:16:34:9a:47:33:05:dd:4f:57:08:bd:f6:d7:54:
43:d5:a8:4e:a8:9e:fd:bd:f9:cf:45:ec:52:55:12:7d:fc:2f:
a6:d9:62:24:09:b6:fc:55:8b:e6:6a:e4:32:35:a3:00:de:8e:
d7:ab:5e:64:92:53:c8:59:43:7f:bb:3f:cd:77:47:48:ef:41:
dc:8c:38:ee:e7:81:42:e1:2f:51:48:f5:af:30:a2:ce:32:6c:
54:e7:27:98:00:55:f5:35:59:49:57:c7:39:1e:ac:f5:88:69:
a5:8b:f8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:50:26 2025 by rpki-client