Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/RqVcFJZ-UOtFVhYTc8Tvk-2MyWc.roa
File: RqVcFJZ-UOtFVhYTc8Tvk-2MyWc.roa (raw, json)
Hash identifier: EkympbPJChDE++MdHcZn5otezDPhnhwM5HrzDsbo97E=
Subject key identifier: 46:A5:5C:14:96:7E:50:EB:45:56:16:13:73:C4:EF:93:ED:8C:C9:67
Certificate issuer: /CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Certificate serial: 01959417D4B7B7965C2601AEC2D913BF96B2
Authority key identifier: FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/RqVcFJZ-UOtFVhYTc8Tvk-2MyWc.roa
Signing time: Fri 14 Mar 2025 09:59:04 +0000
ROA not before: Fri 14 Mar 2025 09:59:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 136787
IP address blocks: 31.209.64.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.mft
rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 03:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:94:17:d4:b7:b7:96:5c:26:01:ae:c2:d9:13:bf:96:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Validity
Not Before: Mar 14 09:59:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=46a55c14967e50eb4556161373c4ef93ed8cc967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:af:a0:6d:d1:04:06:56:47:92:7e:91:1c:3c:
18:e8:d2:0a:15:89:8d:2c:fa:ae:a9:e0:2a:a8:47:
fd:76:a3:96:af:6a:60:47:2d:89:90:1f:e4:0d:63:
6d:5e:68:6b:e8:46:95:dc:ea:48:9e:47:99:b4:1e:
05:46:7d:32:f7:65:07:84:31:37:27:94:07:03:5b:
4c:26:21:39:d1:74:73:49:bf:c8:33:71:f3:56:3e:
e7:19:d0:f5:c0:85:d0:ae:c4:26:74:b2:ef:b7:e7:
97:53:c9:10:f8:15:67:8b:52:e4:01:4f:78:dc:e6:
02:28:f8:bf:90:4e:7c:37:4f:ee:8c:1d:b8:96:30:
cd:2e:ad:e4:82:ad:b9:04:ce:e4:16:06:ca:34:ff:
7d:03:51:f0:ae:f8:44:aa:91:7e:41:52:ed:5b:d9:
de:7a:9f:72:c2:a6:3b:b2:86:67:ef:1e:8e:aa:c1:
10:99:16:be:b6:e6:35:fa:8e:4b:97:2c:e6:62:16:
b7:f4:58:82:1a:63:43:c8:13:69:66:ac:6f:e4:3f:
e7:26:16:9a:21:3f:ff:87:14:73:d0:ef:ce:1d:9e:
9c:99:30:ff:59:7b:bf:7e:f6:56:b3:24:08:f3:ac:
70:b2:59:3d:1d:82:9f:73:45:c7:55:f6:e7:72:02:
7f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A5:5C:14:96:7E:50:EB:45:56:16:13:73:C4:EF:93:ED:8C:C9:67
X509v3 Authority Key Identifier:
keyid:FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/RqVcFJZ-UOtFVhYTc8Tvk-2MyWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.209.64.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:27:39:8e:0c:6a:25:7f:d2:f8:73:3f:1b:bb:9a:25:66:47:
0b:d6:4f:1b:ba:de:ef:f0:12:70:10:23:19:92:ee:7d:40:a0:
c7:50:29:33:54:40:21:0a:e9:4b:c9:08:c5:27:0a:0d:70:71:
c7:c7:5c:b5:23:cf:75:39:4c:e5:16:6b:23:bb:3c:92:39:d2:
ba:3f:e1:5c:3c:b6:52:42:62:30:99:13:c8:39:41:16:bd:57:
a2:3b:95:1a:12:6c:2a:0f:32:9b:96:4b:3e:87:3a:25:6f:8a:
d4:cf:c8:d8:04:f5:21:81:56:13:23:0f:01:d1:d0:92:36:54:
1b:73:aa:65:b1:13:3f:4d:a4:06:da:4b:d7:39:8f:6b:32:b1:
e7:e1:84:c5:75:e0:39:d5:6c:4b:3e:11:52:b3:e3:68:b0:e8:
4a:26:9c:e0:ad:a6:bf:55:26:88:cd:e6:93:e1:07:6e:6e:21:
b5:36:5b:50:10:75:78:c8:c4:0e:46:0f:13:90:97:56:e7:b3:
b4:a3:60:d2:4a:97:4a:32:68:de:65:ee:52:da:9e:85:a1:a2:
f2:a8:86:e0:91:21:b0:c0:d9:d2:54:6a:95:8e:24:e8:d5:db:
c1:f4:4b:71:eb:fd:e9:ec:c7:b9:ce:29:16:57:70:b1:5e:62:
67:d5:da:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:01:54 2025 by rpki-client