Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/crvEgPTpcYjRSHsrYeLgXXEBKUk.roa
File: crvEgPTpcYjRSHsrYeLgXXEBKUk.roa (raw, json)
Hash identifier: 7eXEVTxEH/UTzDacXKPIjatCFJu/CB4kzr15IvQwXDk=
Subject key identifier: 72:BB:C4:80:F4:E9:71:88:D1:48:7B:2B:61:E2:E0:5D:71:01:29:49
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 019424B265B983094F6439221F2F1C894A79
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/crvEgPTpcYjRSHsrYeLgXXEBKUk.roa
Signing time: Thu 02 Jan 2025 01:47:38 +0000
ROA not before: Thu 02 Jan 2025 01:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208972
IP address blocks: 185.233.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:65:b9:83:09:4f:64:39:22:1f:2f:1c:89:4a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 2 01:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=72bbc480f4e97188d1487b2b61e2e05d71012949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:f0:09:31:50:9b:c4:ac:32:45:fd:06:e4:
7c:b4:25:0e:a5:7e:e5:75:d8:e0:fb:e4:fe:fd:b7:
17:0c:73:84:b0:ec:4c:4c:e3:cc:42:63:97:7e:69:
e1:04:88:47:87:b9:6b:fb:72:9d:c7:11:65:e5:41:
64:d3:f0:0e:1c:82:d5:77:bf:fa:56:bf:51:09:8b:
a7:2d:b4:46:8a:c6:40:68:f0:9c:b7:cc:71:24:ed:
af:28:90:9d:70:99:a6:e5:f7:52:f0:8b:f0:09:97:
05:af:da:7e:7a:25:09:37:66:94:e9:a3:02:3b:5d:
57:19:32:17:3d:ba:5d:c3:73:5d:ba:55:c3:d4:f8:
30:10:70:b9:17:d1:5b:27:3c:54:9c:c4:22:e9:45:
bc:80:b5:6d:ae:39:45:30:83:43:ba:91:cb:78:de:
0f:ba:09:72:e4:1b:51:99:6a:9b:35:4a:14:e5:61:
1b:32:7a:0a:19:3c:79:fd:d8:52:85:66:ac:8e:0a:
62:b4:48:8b:67:2d:73:e1:08:0e:66:eb:4e:32:e7:
fa:45:0c:da:f2:b4:8f:58:f4:30:36:88:4f:1e:38:
84:dc:31:1e:7b:20:6d:c4:b3:f2:64:45:8a:74:9f:
c2:46:dc:3f:82:39:39:60:4e:d1:ad:7f:e0:d3:8d:
a4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BB:C4:80:F4:E9:71:88:D1:48:7B:2B:61:E2:E0:5D:71:01:29:49
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/crvEgPTpcYjRSHsrYeLgXXEBKUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.244.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:56:75:81:cc:85:05:c6:65:dc:08:e3:1b:23:e1:42:c1:95:
a7:51:e5:25:dd:d7:91:95:51:e7:78:e5:bc:f6:5e:4e:15:d2:
d8:da:64:19:04:0b:6f:21:6c:c2:4c:26:b0:b8:d3:72:08:83:
54:fe:4c:f3:de:e0:b1:64:cc:77:55:f0:54:7f:84:bf:37:b8:
40:7e:00:f7:b9:2f:2a:82:9c:60:e3:9a:f2:08:8c:ff:89:85:
6a:96:ca:0f:80:ad:72:9e:fc:73:3c:04:08:c1:a6:6e:34:2b:
21:b3:3f:2d:4d:95:02:b8:27:90:dd:cf:e9:ca:f4:f2:b4:86:
2c:7f:3a:ab:df:4b:44:0a:a4:97:74:42:cf:2d:ec:a7:2e:a1:
40:48:c1:82:82:f4:a2:49:c5:e9:36:17:9a:b8:e2:7a:d6:d5:
73:17:0f:35:97:9d:f5:d5:cf:b9:41:f8:19:ff:ed:c9:b2:45:
0d:90:66:7c:8b:ce:db:21:11:11:2a:38:8e:0f:00:99:4a:ac:
c5:c2:b2:49:3b:a6:38:e1:56:93:eb:a0:d2:c4:d2:01:d8:b5:
c5:87:4d:14:b9:51:73:1b:82:ce:f4:e1:cd:b6:4e:e1:7e:37:
ce:de:d5:3d:d2:17:04:c1:7b:9e:3c:2b:c3:7e:52:8f:e2:9f:
19:87:00:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:32:32 2025 by rpki-client