Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/RoNUSsRbSgnW76cSNeAr425YYHY.roa
File: RoNUSsRbSgnW76cSNeAr425YYHY.roa (raw, json)
Hash identifier: ty/WAAmbUm3G9276dnnVRYAsJCuw7HHC84siWPb6a6o=
Subject key identifier: 46:83:54:4A:C4:5B:4A:09:D6:EF:A7:12:35:E0:2B:E3:6E:58:60:76
Certificate issuer: /CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Certificate serial: 019427480A89540BE2C9C61E72BAB4A36F9B
Authority key identifier: DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/RoNUSsRbSgnW76cSNeAr425YYHY.roa
Signing time: Thu 02 Jan 2025 13:50:20 +0000
ROA not before: Thu 02 Jan 2025 13:50:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39402
IP address blocks: 109.75.64.0/24 maxlen: 24
109.75.65.0/24 maxlen: 24
109.75.66.0/24 maxlen: 24
109.75.67.0/24 maxlen: 24
109.75.68.0/24 maxlen: 24
109.75.69.0/24 maxlen: 24
109.75.70.0/24 maxlen: 24
109.75.71.0/24 maxlen: 24
109.75.72.0/24 maxlen: 24
109.75.73.0/24 maxlen: 24
109.75.74.0/24 maxlen: 24
109.75.75.0/24 maxlen: 24
109.75.76.0/24 maxlen: 24
109.75.77.0/24 maxlen: 24
109.75.78.0/24 maxlen: 24
109.75.79.0/24 maxlen: 24
185.204.48.0/24 maxlen: 24
185.204.49.0/24 maxlen: 24
185.204.50.0/24 maxlen: 24
185.204.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:0a:89:54:0b:e2:c9:c6:1e:72:ba:b4:a3:6f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Validity
Not Before: Jan 2 13:50:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4683544ac45b4a09d6efa71235e02be36e586076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:c5:be:35:42:54:49:1d:70:30:79:b8:6f:
fe:e7:d6:bb:c8:e9:1a:fe:a2:af:1e:c6:6f:fb:51:
0f:1d:91:9b:7b:5e:9f:0c:1d:fc:dd:eb:d7:0a:ef:
8e:87:a7:ad:3c:9b:1a:40:0d:6e:7c:dd:cb:ac:05:
4e:ec:11:65:04:f1:a0:6c:d1:4a:ca:93:9c:1d:e0:
c4:60:a4:91:73:66:6e:f0:97:2d:1e:5d:60:03:e1:
21:3e:54:83:ec:e6:06:c0:6d:5a:dc:f9:f3:b8:2e:
72:bb:cf:98:ec:0a:46:1b:fb:0f:e8:5a:76:0b:c6:
10:63:ca:ba:41:63:29:87:e1:a3:b1:47:c1:75:53:
fd:68:ff:89:4a:2f:76:90:14:35:99:f3:1c:a6:50:
cf:08:83:3b:30:7f:fc:3f:57:80:e9:c1:8b:05:31:
14:90:01:fe:eb:a9:bd:6e:cf:c5:7a:01:0a:3b:03:
fd:e0:8a:4a:a6:23:20:14:3a:6f:48:db:56:f1:d3:
62:e5:11:b4:05:50:a3:e1:fa:64:01:6d:b1:f5:04:
3d:23:60:27:42:15:ed:ca:36:fe:8f:fa:32:ec:8e:
eb:07:cc:9b:15:4e:3b:52:72:52:ff:98:60:ac:d3:
db:da:d5:15:01:c3:ef:4d:5a:a5:b5:b3:70:69:1c:
ee:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:83:54:4A:C4:5B:4A:09:D6:EF:A7:12:35:E0:2B:E3:6E:58:60:76
X509v3 Authority Key Identifier:
keyid:DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/RoNUSsRbSgnW76cSNeAr425YYHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.75.64.0/20
185.204.48.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:96:39:0a:b6:d4:d9:1b:c6:8f:fb:b2:42:0c:7d:8f:84:20:
1f:de:47:98:c1:90:2b:b7:59:d3:e6:5e:a5:f2:59:a4:ae:58:
6b:bf:0b:0c:de:dc:73:76:09:ba:29:d7:40:d1:a3:73:cf:26:
a4:07:10:aa:a8:6b:84:b6:f2:d6:98:39:9e:18:71:9a:54:73:
7f:90:33:91:26:c4:d3:57:dd:ef:7c:10:d4:1b:f8:36:7a:78:
3a:90:29:52:85:30:07:57:01:00:8f:ac:57:04:1e:02:65:bb:
bb:92:6a:39:12:b7:86:4a:98:dc:30:84:e3:98:e8:bc:dc:0d:
30:1e:c9:7c:d9:59:23:16:c1:d5:aa:0c:c7:dd:d0:43:d5:58:
1e:9c:db:6c:db:52:b4:93:9d:94:40:55:15:ce:03:37:bc:8e:
ae:e2:e8:45:b4:51:c2:0d:38:38:1c:88:09:bc:2b:5d:9a:81:
fa:f0:3c:48:bd:d6:db:dc:52:c1:82:e3:22:30:25:8f:f8:6c:
2c:36:bc:f3:c5:6a:fa:a9:ca:2a:40:47:b6:d3:b6:08:bb:72:
f8:a7:ea:2e:5d:51:7d:40:e6:e3:67:31:19:4c:ac:d7:a8:c4:
2f:8f:d9:1d:96:59:99:7a:47:1f:76:6f:5d:f3:16:cc:80:89:
d6:ef:7e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 08:06:57 2025 by rpki-client