Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/Ac8yCW76jjypSIwr49DhjSnaOfk.roa
File: Ac8yCW76jjypSIwr49DhjSnaOfk.roa (raw, json)
Hash identifier: gaiYHoRBsCjo/wa+gZx+98nPn1ClqUzYgwyhCRz/nXw=
Subject key identifier: 01:CF:32:09:6E:FA:8E:3C:A9:48:8C:2B:E3:D0:E1:8D:29:DA:39:F9
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019577B3B177AE7DB97F9DFB096DF2A2CAD2
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/Ac8yCW76jjypSIwr49DhjSnaOfk.roa
Signing time: Sat 08 Mar 2025 21:40:19 +0000
ROA not before: Sat 08 Mar 2025 21:40:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6939
IP address blocks: 2a13:c3c0::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 00:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:77:b3:b1:77:ae:7d:b9:7f:9d:fb:09:6d:f2:a2:ca:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Mar 8 21:40:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01cf32096efa8e3ca9488c2be3d0e18d29da39f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fc:ad:ff:8c:ad:81:ae:0c:a9:c6:5d:ae:d3:
da:3d:fd:cc:d6:4c:61:5c:e6:9a:7c:56:6f:78:0e:
3f:2b:68:b5:46:63:3f:4b:e5:6d:e0:45:b2:d4:ef:
b6:64:66:08:39:38:d2:eb:ce:2b:ff:a5:9d:61:f1:
a0:ef:51:ed:65:b7:52:6f:54:cd:4e:09:6c:4b:86:
af:e6:78:4c:c8:73:8b:ac:bb:c3:3b:47:e6:6a:69:
82:33:ba:8e:d9:41:98:0b:17:32:e9:02:d8:db:b7:
8c:46:20:56:2c:13:9e:4b:21:cf:0f:d8:8b:74:d8:
b2:71:6c:56:ac:cd:33:69:33:3e:10:4f:7f:00:41:
06:dd:2a:4c:01:f4:10:96:2f:07:b2:60:17:13:e2:
c9:50:a2:73:98:d5:53:3f:90:d9:cc:78:f5:44:28:
b0:52:f6:8d:2a:b7:a0:4e:cb:a2:14:fa:32:ec:ec:
70:46:1f:5f:82:a7:3e:68:46:96:5e:36:7e:db:94:
06:d8:b0:0c:fd:75:9d:30:7a:bd:5c:24:52:a3:bd:
83:66:58:9b:11:39:2a:59:f1:76:62:b1:db:7f:69:
cd:47:1f:1b:7e:d2:f3:70:f4:13:dd:27:b7:9f:7a:
21:43:c5:d2:93:31:9d:1e:3d:04:55:d9:07:0a:d3:
63:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:CF:32:09:6E:FA:8E:3C:A9:48:8C:2B:E3:D0:E1:8D:29:DA:39:F9
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/Ac8yCW76jjypSIwr49DhjSnaOfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c3c0::/29
Signature Algorithm: sha256WithRSAEncryption
d1:31:be:71:92:41:3d:3a:46:40:34:e3:7e:e0:d2:e5:c0:39:
28:fb:6f:fb:65:07:a5:0c:69:07:47:c7:97:3b:17:ef:2f:00:
c9:cc:d0:dc:70:38:72:43:4b:f2:1d:0d:2d:cd:b6:e7:2d:4b:
83:5a:b9:e4:19:a6:c3:4d:eb:76:bb:33:bb:7c:2b:f7:3e:d0:
9b:63:95:9e:bc:fe:a8:1d:70:75:68:a1:27:5a:99:41:aa:c1:
65:fb:af:12:7c:79:c0:dc:43:ea:8b:7d:e9:67:91:3f:3d:4c:
ec:d3:fa:f0:cc:aa:a3:1c:da:72:58:78:31:b1:67:96:f0:cc:
9c:f4:73:15:3f:1f:00:8c:cc:74:2b:25:88:4f:ac:23:5f:0c:
d3:40:db:f1:3e:f9:41:99:54:44:9c:62:a8:4d:c8:1a:b7:fb:
84:31:18:dc:8f:a3:3f:aa:4d:42:c2:90:aa:35:54:68:65:e3:
f4:41:f7:72:ac:67:ec:33:2d:3a:e5:1b:41:05:61:4c:93:2d:
7d:28:39:c3:f1:0d:41:e7:bc:34:4c:59:2b:bb:c2:72:fc:75:
93:7a:3a:9d:54:fc:a3:0d:9d:e8:ab:c9:a9:96:d7:12:e1:23:
2a:74:2c:2a:0c:68:48:ce:e1:bc:2a:b6:6e:2c:d3:64:28:c9:
06:36:32:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:52:01 2025 by rpki-client