Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/iUQqy6L6aDZjvtuJxQqMCFgGkBI.roa
File: iUQqy6L6aDZjvtuJxQqMCFgGkBI.roa (raw, json)
Hash identifier: 2s0toD9du/uNKvxO9wvANUSYpPI3MyFsTUVNofTuzE8=
Subject key identifier: 89:44:2A:CB:A2:FA:68:36:63:BE:DB:89:C5:0A:8C:08:58:06:90:12
Certificate issuer: /CN=01d1a1353f7f8b505fc98750e86787f4e046432e
Certificate serial: 0194221FE6260E5035DFA0E1088124230C85
Authority key identifier: 01:D1:A1:35:3F:7F:8B:50:5F:C9:87:50:E8:67:87:F4:E0:46:43:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/iUQqy6L6aDZjvtuJxQqMCFgGkBI.roa
Signing time: Wed 01 Jan 2025 13:48:23 +0000
ROA not before: Wed 01 Jan 2025 13:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15717
IP address blocks: 213.30.192.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Feb 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e6:26:0e:50:35:df:a0:e1:08:81:24:23:0c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d1a1353f7f8b505fc98750e86787f4e046432e
Validity
Not Before: Jan 1 13:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89442acba2fa683663bedb89c50a8c0858069012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:62:1b:97:68:43:81:44:9c:5d:c5:f0:17:30:
e5:ea:f9:60:25:1c:b9:20:0d:93:4b:21:d3:ae:7b:
98:2f:b3:38:51:b8:41:89:43:f4:1e:41:bd:79:97:
c5:d7:60:0d:dc:68:ed:f9:e6:a0:c5:af:6c:47:40:
f2:f0:3c:9c:e8:d1:d2:c7:be:a6:a6:28:62:9b:5b:
ee:72:67:01:9f:e1:07:a4:61:5c:65:f3:65:dd:69:
9f:dc:c3:4a:7e:1f:69:f8:37:5d:32:32:5e:4c:30:
d0:c3:9c:47:6c:9e:43:66:23:53:db:c8:5e:0f:e7:
18:e7:33:17:79:0f:f3:7f:ab:b4:0d:c9:0b:a8:8c:
ad:97:81:2d:dd:43:57:cb:74:30:6e:2f:95:74:54:
2c:fe:45:34:33:ba:a6:fa:e8:35:e4:b0:18:52:7f:
a3:c3:cd:b4:9c:91:e2:e5:6c:6c:94:6a:96:55:74:
80:dd:dd:a9:c9:46:fe:9a:44:ba:14:0e:8b:a4:b8:
a5:93:8b:e5:4a:67:ae:98:e9:7f:a2:c8:ed:6d:39:
30:65:9b:43:42:63:40:11:82:e6:1c:91:ee:24:bc:
9f:97:2d:f6:d0:2c:bc:04:2e:7e:91:78:57:43:e4:
af:fb:51:07:e2:bd:49:b9:e5:40:aa:f7:84:57:b2:
31:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:44:2A:CB:A2:FA:68:36:63:BE:DB:89:C5:0A:8C:08:58:06:90:12
X509v3 Authority Key Identifier:
keyid:01:D1:A1:35:3F:7F:8B:50:5F:C9:87:50:E8:67:87:F4:E0:46:43:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/iUQqy6L6aDZjvtuJxQqMCFgGkBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b1393d-cca8-4a97-81aa-643a4159ab46/1/AdGhNT9_i1BfyYdQ6GeH9OBGQy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.30.192.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:66:cb:c4:88:0c:e8:21:af:e4:cd:f5:2b:b6:87:60:3d:fd:
36:ce:d5:21:55:2c:38:72:b1:4b:0d:b8:55:af:83:d6:75:bd:
1a:cf:06:8d:be:27:68:cc:59:bc:c6:17:c0:2b:c1:36:8c:fa:
1e:c8:24:20:7c:83:96:7c:ad:be:39:54:42:87:e1:63:07:66:
14:79:64:6e:11:cb:9a:7e:f3:7f:0c:71:f5:81:d4:2f:02:a4:
0a:8d:e3:bc:ee:9c:6d:c6:54:e6:70:4b:6e:f7:4c:19:8f:95:
e6:e2:cd:26:e6:f9:90:5f:df:72:a2:25:27:73:7f:e2:06:56:
5c:1c:2d:cc:d8:a4:2a:95:ef:1e:71:76:9a:68:77:c2:e1:83:
6e:1e:84:ff:51:41:6a:6c:47:6d:8c:bc:20:b9:de:67:48:dc:
09:79:38:29:f1:6a:d7:d5:72:0e:fc:9e:17:ea:d1:b4:74:91:
da:78:e5:5e:21:5a:47:e6:38:93:db:f7:92:c7:43:5b:a1:e3:
61:22:0a:a3:93:70:2a:d1:af:c8:a9:4a:59:84:b3:49:0a:3f:
e3:b7:d1:f5:c6:92:b4:8d:2d:dd:e8:5d:17:e7:31:79:68:60:
06:12:ce:c4:f9:0e:23:bf:1c:f4:95:6b:47:e0:4b:bd:16:62:
e4:b6:62:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 15:27:23 2025 by rpki-client