Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/u_WvPHOyTZv1yIumAHFttyTLPq0.roa
File: u_WvPHOyTZv1yIumAHFttyTLPq0.roa (raw, json)
Hash identifier: orApbyBIxfQnRa+Eb9kNcqjSQcTLlYJsX3y/E+LLNDM=
Subject key identifier: BB:F5:AF:3C:73:B2:4D:9B:F5:C8:8B:A6:00:71:6D:B7:24:CB:3E:AD
Certificate issuer: /CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Certificate serial: 01954C516E3FF0DB991C37CE45A666B56DEC
Authority key identifier: FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/u_WvPHOyTZv1yIumAHFttyTLPq0.roa
Signing time: Fri 28 Feb 2025 11:29:19 +0000
ROA not before: Fri 28 Feb 2025 11:29:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 80.243.16.0/21 maxlen: 24
80.243.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.mft
rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 16:04:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:4c:51:6e:3f:f0:db:99:1c:37:ce:45:a6:66:b5:6d:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Validity
Not Before: Feb 28 11:29:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bbf5af3c73b24d9bf5c88ba600716db724cb3ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:5e:3a:79:cb:d1:e9:f2:cb:1f:0e:d6:36:
b3:b4:14:3a:94:82:f1:ce:43:2a:96:fe:89:b8:99:
86:b5:7e:6d:29:f3:a1:38:79:38:be:7e:d8:e3:5d:
2d:f7:24:93:c8:50:c5:de:5a:4b:4c:9c:8b:aa:78:
1e:6f:02:19:84:4b:3d:15:dd:e8:24:2b:50:02:05:
32:6e:a1:d3:ce:3b:14:eb:47:db:3d:bf:ea:ab:94:
e6:78:a6:00:ee:99:99:ab:84:79:6f:27:0a:52:21:
08:0e:7c:38:96:e7:8d:7b:fa:20:83:fe:ad:02:7a:
12:07:11:85:e1:77:d5:0b:b6:4e:f4:49:79:cf:5e:
6b:25:f4:ec:4c:cc:0f:8d:57:79:79:1d:60:e9:ad:
a5:20:76:ad:23:fc:1a:a4:dd:fc:a9:db:1e:34:11:
76:ea:77:4c:26:b2:c8:cc:00:0d:40:b9:f2:3b:7a:
b4:f2:17:4f:4f:14:85:0f:11:7a:9d:6f:80:3f:8b:
0a:25:1c:e4:5e:e5:2c:a5:4d:80:8c:63:85:0f:a0:
fa:b2:e4:18:6e:8d:ef:e9:2b:4a:f7:77:2b:4c:c8:
2c:03:7b:c1:c5:50:58:7a:f9:70:c5:cd:77:2d:1e:
cd:73:02:88:4a:21:e7:a0:11:41:19:85:26:22:6e:
cc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F5:AF:3C:73:B2:4D:9B:F5:C8:8B:A6:00:71:6D:B7:24:CB:3E:AD
X509v3 Authority Key Identifier:
keyid:FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/u_WvPHOyTZv1yIumAHFttyTLPq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.16.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:4c:66:01:c5:a3:ae:e7:ce:fb:d7:02:7b:a9:fb:ca:4b:5b:
91:5d:f4:77:df:a7:26:f2:3d:26:16:50:49:85:10:97:49:cf:
2c:22:40:75:f4:45:3a:3d:b6:5e:ef:f8:8f:99:2e:57:24:de:
ef:bd:7f:3e:6e:c7:ca:c1:95:4f:a0:95:18:84:88:fd:5b:74:
6c:76:9e:c9:ef:02:ed:e6:0d:55:6b:c0:fd:22:1b:6a:4f:bb:
00:f8:2e:10:57:27:79:7e:53:74:46:2c:7a:aa:49:3e:d7:9d:
82:e2:b5:c3:24:c3:79:4a:95:b2:93:b9:d6:c3:d8:5d:6a:d2:
9f:21:37:dc:f6:83:9f:9a:45:24:85:3f:b0:9e:12:53:d4:ba:
57:cc:57:52:62:4c:31:9b:04:50:a2:b1:b0:40:fb:10:e5:a2:
8e:aa:c8:dc:23:f3:c8:4a:86:4e:cb:ce:7b:f7:cc:7d:35:ab:
ef:fc:fe:3c:cf:1b:86:df:af:82:f2:a1:13:b9:69:de:52:7a:
96:af:1e:d2:17:09:94:0d:10:82:c8:18:34:3b:71:1f:f5:ef:
8b:f3:f3:ba:0d:fe:fc:0d:d7:d1:8d:6e:02:5a:ac:17:74:58:
56:3c:a2:12:0a:b0:40:9d:6f:3e:dd:bc:6c:dc:2f:08:bd:17:
fb:42:d7:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:42:57 2025 by rpki-client