Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa
File: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (raw, json)
Hash identifier: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=
Subject key identifier: 43:87:9B:FC:D4:95:0F:52:32:EB:2C:C1:CE:C6:19:74:64:57:66:A6
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 01942444C973561FFD1988369742889F42FD
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa
Signing time: Wed 01 Jan 2025 23:47:55 +0000
ROA not before: Wed 01 Jan 2025 23:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39457
IP address blocks: 193.84.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:c9:73:56:1f:fd:19:88:36:97:42:88:9f:42:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Jan 1 23:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43879bfcd4950f5232eb2cc1cec61974645766a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:41:d5:e9:e9:b5:66:fe:39:ed:2f:42:b9:14:
f4:02:66:a5:25:8b:a1:d0:e1:ad:36:f4:67:8d:1e:
73:e7:b9:cd:f7:ed:7e:f0:1d:29:99:10:dd:e3:33:
3e:b7:57:d3:29:02:d6:8f:19:1c:c8:d6:9a:3f:f6:
87:fa:28:d8:db:08:9f:ae:8b:94:c8:04:9b:4a:07:
50:dd:d7:8b:15:47:b5:4d:10:7c:f1:85:cf:47:19:
b1:53:1a:96:fa:69:3d:6f:a4:1e:93:87:c1:a3:e8:
0c:9f:a2:6f:f6:d1:00:8f:f6:b8:b5:d5:30:d8:19:
1e:4f:6c:1f:e9:83:94:8c:dd:32:46:46:50:93:ae:
e7:54:0e:d3:9a:54:b2:e9:d3:9c:bd:8a:a7:14:fb:
fb:86:9a:66:26:53:0e:3d:b3:ee:bd:9e:b6:31:f8:
85:f6:8c:0d:b8:2f:bb:52:b5:fc:30:b0:02:5c:86:
d2:07:4b:81:1c:49:bc:c5:ea:65:47:05:cc:65:52:
b6:d1:52:65:08:6a:b2:93:f7:84:3f:71:79:cc:66:
41:85:1f:08:fd:15:e2:d6:9a:6c:0d:70:6a:6b:9c:
f9:b7:46:54:d7:03:a8:cb:89:db:2c:d9:a5:e5:c3:
6b:50:1b:02:2b:f9:45:36:2a:78:26:98:e6:41:39:
3a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:87:9B:FC:D4:95:0F:52:32:EB:2C:C1:CE:C6:19:74:64:57:66:A6
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.25.0/24
Signature Algorithm: sha256WithRSAEncryption
77:78:fa:6c:c8:0f:82:40:52:29:c1:ad:17:42:a4:ac:c8:fe:
a6:4c:e2:d2:d6:70:34:8e:4d:8e:7e:35:b9:a5:e4:f9:6b:62:
a2:f3:63:95:f9:0f:ea:bb:93:fb:ba:c7:b0:2a:a0:c3:16:b0:
76:ae:12:46:47:47:89:90:0a:15:5a:06:d2:84:3b:7f:a1:15:
1d:1a:52:73:42:95:9e:4e:a3:5e:51:d7:65:70:f7:60:7b:5d:
e2:e8:f6:67:74:81:d1:99:13:53:a4:35:e2:07:14:59:5a:3b:
d0:72:3d:a8:fd:61:09:b0:95:33:8f:b3:11:43:3c:9e:cc:e9:
22:e2:bb:23:7c:a3:3b:03:64:4d:ab:29:66:6e:6e:02:8d:70:
2d:ca:83:6b:0d:19:4e:31:31:6b:80:04:4d:06:f3:2e:25:d2:
c0:98:3e:b6:5d:26:bf:24:1c:2d:89:18:41:b1:fd:e9:25:b4:
fb:cf:48:33:5d:dd:ce:3f:24:06:b5:cb:b0:40:fc:5f:d3:01:
50:ea:71:48:e6:1e:72:24:99:7a:41:59:ea:47:14:04:82:ea:
87:3b:24:89:70:f8:3b:21:48:e9:b5:18:f9:84:8e:3d:b1:03:
2c:e9:97:5f:dd:81:16:b7:25:0e:58:ff:20:34:0e:ba:c6:ff:
d0:17:5e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:38:49 2025 by rpki-client