Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/SZcqM2MymNLwtybzmnw-E1d2RJk.roa
File: SZcqM2MymNLwtybzmnw-E1d2RJk.roa (raw, json)
Hash identifier: jRh3gj1EqHTeeiOWY5OcArwxYUApFn4YAZHaSARNuyY=
Subject key identifier: 49:97:2A:33:63:32:98:D2:F0:B7:26:F3:9A:7C:3E:13:57:76:44:99
Certificate issuer: /CN=97cca0952db8aa9fe5e5703c6f189a06a57f4bb1
Certificate serial: 019426D9920F25F327C33CF11D09436F9AF1
Authority key identifier: 97:CC:A0:95:2D:B8:AA:9F:E5:E5:70:3C:6F:18:9A:06:A5:7F:4B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8yglS24qp_l5XA8bxiaBqV_S7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/SZcqM2MymNLwtybzmnw-E1d2RJk.roa
Signing time: Thu 02 Jan 2025 11:49:40 +0000
ROA not before: Thu 02 Jan 2025 11:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215846
IP address blocks: 2a06:5d81::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/l8yglS24qp_l5XA8bxiaBqV_S7E.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/l8yglS24qp_l5XA8bxiaBqV_S7E.mft
rsync://rpki.ripe.net/repository/DEFAULT/l8yglS24qp_l5XA8bxiaBqV_S7E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 12:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:92:0f:25:f3:27:c3:3c:f1:1d:09:43:6f:9a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97cca0952db8aa9fe5e5703c6f189a06a57f4bb1
Validity
Not Before: Jan 2 11:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49972a33633298d2f0b726f39a7c3e1357764499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:56:24:fa:52:46:61:08:b7:3a:12:e2:e0:fe:
b3:5a:8f:be:c9:e9:07:f9:46:ce:71:31:a2:60:ee:
5f:d4:25:3a:06:b4:2a:e1:09:b1:be:ee:5b:dc:13:
b9:51:e3:af:a0:4a:3e:18:65:e3:af:36:fb:0d:a6:
fc:d3:fd:e5:b9:f0:1b:98:d2:f3:d0:98:af:6b:28:
de:ce:61:d5:71:07:ec:93:cf:bf:d7:73:4d:22:ac:
27:3f:b9:37:b5:06:e4:e3:87:94:3d:f5:d4:88:91:
59:27:8a:a5:0d:90:ed:49:bb:54:89:d4:19:d0:c2:
63:3f:c4:92:66:ec:1d:e4:e8:b1:a4:ea:77:4d:46:
97:72:36:66:70:e2:d8:9a:4e:da:dc:17:07:06:9c:
31:4a:c9:a0:dd:a1:9d:bd:73:a6:d6:d9:14:2b:e6:
95:59:9b:44:70:a7:5d:9e:5c:b2:fd:5a:9a:a4:6f:
88:1d:c1:2e:2a:e4:a1:a9:8d:d2:01:40:ea:6b:a9:
d8:5f:d4:7d:31:3d:fc:07:2c:b3:b6:d6:20:54:99:
71:76:56:3e:44:50:d3:4e:d5:d2:ca:a8:d4:49:49:
db:07:42:57:a5:c6:c3:62:d4:45:0f:41:e1:5a:ea:
7c:f3:a5:d1:16:61:4d:39:49:c9:1c:50:94:9e:49:
7a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:97:2A:33:63:32:98:D2:F0:B7:26:F3:9A:7C:3E:13:57:76:44:99
X509v3 Authority Key Identifier:
keyid:97:CC:A0:95:2D:B8:AA:9F:E5:E5:70:3C:6F:18:9A:06:A5:7F:4B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8yglS24qp_l5XA8bxiaBqV_S7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/SZcqM2MymNLwtybzmnw-E1d2RJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/l8yglS24qp_l5XA8bxiaBqV_S7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:5d81::/32
Signature Algorithm: sha256WithRSAEncryption
9f:92:a9:61:b7:69:e9:b1:64:e0:83:39:c4:2a:4b:6b:ff:a7:
12:46:f6:ed:af:aa:df:92:9d:3a:23:60:51:86:6a:57:03:28:
97:be:1f:8e:34:38:15:98:12:a9:16:b7:ee:1f:2f:20:cf:70:
51:7c:a0:12:cc:bc:65:2a:4f:25:ad:c0:8c:48:3b:9e:b3:2b:
49:5d:89:d4:24:62:14:f3:82:f7:93:83:5a:f1:70:3c:ab:83:
f5:4b:ef:c6:62:b7:d4:f8:84:50:4c:7b:1c:17:b2:af:39:5a:
ca:a4:94:23:1c:5b:d9:1b:c0:1d:bd:22:27:a2:40:ae:5d:46:
2d:0e:65:88:7f:b1:6a:d0:33:70:fa:af:cd:03:7a:bc:f8:f4:
29:33:73:aa:59:85:de:1e:70:fb:9d:e5:cd:9d:f4:48:54:54:
01:53:d5:de:8e:a7:33:7b:bf:06:2a:fd:7f:d1:0c:84:55:ae:
0c:73:40:d2:55:97:e4:27:74:c8:0a:83:03:85:50:71:cc:62:
c5:70:54:e2:2d:6f:f4:49:b0:50:15:ea:29:2f:c6:e0:71:1c:
73:4f:3b:d2:3b:d8:49:19:a8:09:f7:ab:1f:79:9c:3e:3b:4f:
60:a4:5e:06:03:fa:af:28:b4:16:74:7c:45:16:9d:de:1d:d1:
65:8b:ca:11
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQm2ZIPJfMnwzzxHQlDb5rxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3Y2NhMDk1MmRiOGFhOWZlNWU1NzAzYzZmMTg5YTA2YTU3
ZjRiYjEwHhcNMjUwMTAyMTE0OTQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTk3MmEzMzYzMzI5OGQyZjBiNzI2ZjM5YTdjM2UxMzU3NzY0NDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVYk+lJGYQi3OhLi4P6zWo++yekH
+UbOcTGiYO5f1CU6BrQq4Qmxvu5b3BO5UeOvoEo+GGXjrzb7Dab80/3lufAbmNLz
0JivayjezmHVcQfsk8+/13NNIqwnP7k3tQbk44eUPfXUiJFZJ4qlDZDtSbtUidQZ
0MJjP8SSZuwd5OixpOp3TUaXcjZmcOLYmk7a3BcHBpwxSsmg3aGdvXOm1tkUK+aV
WZtEcKddnlyy/VqapG+IHcEuKuShqY3SAUDqa6nYX9R9MT38ByyzttYgVJlxdlY+
RFDTTtXSyqjUSUnbB0JXpcbDYtRFD0HhWup886XRFmFNOUnJHFCUnkl6iQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEmXKjNjMpjS8Lcm85p8PhNXdkSZMB8GA1UdIwQY
MBaAFJfMoJUtuKqf5eVwPG8Ymgalf0uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDh5Z2xTMjRxcF9sNVhBOGJ4aWFCcVZfUzdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy85YTBlYjItZTk5NC00NzE5LWExNjYt
NWQ2ZGQwYmE1MmNmLzEvU1pjcU0yTXltTkx3dHliem1udy1FMWQyUkprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy85YTBlYjItZTk5NC00NzE5LWExNjYtNWQ2ZGQwYmE1MmNm
LzEvbDh5Z2xTMjRxcF9sNVhBOGJ4aWFCcVZfUzdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgZdgTAN
BgkqhkiG9w0BAQsFAAOCAQEAn5KpYbdp6bFk4IM5xCpLa/+nEkb27a+q35KdOiNg
UYZqVwMol74fjjQ4FZgSqRa37h8vIM9wUXygEsy8ZSpPJa3AjEg7nrMrSV2J1CRi
FPOC95ODWvFwPKuD9UvvxmK31PiEUEx7HBeyrzlayqSUIxxb2RvAHb0iJ6JArl1G
LQ5liH+xatAzcPqvzQN6vPj0KTNzqlmF3h5w+53lzZ30SFRUAVPV3o6nM3u/Bir9
f9EMhFWuDHNA0lWX5Cd0yAqDA4VQccxixXBU4i1v9EmwUBXqKS/G4HEcc0870jvY
SRmoCferH3mcPjtPYKReBgP6ryi0FnR8RRad3h3RZYvKEQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 21:55:38 2025 by rpki-client