Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/Ed4loudndsjYSXqY4Q8xs6ER8Q4.roa
File: Ed4loudndsjYSXqY4Q8xs6ER8Q4.roa (raw, json)
Hash identifier: Lr3T5aakdnBMwcWrCBXcMU2w7PGSM6aH6wthEb/gTIw=
Subject key identifier: 11:DE:25:A2:E7:67:76:C8:D8:49:7A:98:E1:0F:31:B3:A1:11:F1:0E
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01942369F0F00A7E969779FFC3E31C6E883D
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/Ed4loudndsjYSXqY4Q8xs6ER8Q4.roa
Signing time: Wed 01 Jan 2025 19:48:53 +0000
ROA not before: Wed 01 Jan 2025 19:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20860
IP address blocks: 193.37.72.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 09:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:f0:f0:0a:7e:96:97:79:ff:c3:e3:1c:6e:88:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 1 19:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=11de25a2e76776c8d8497a98e10f31b3a111f10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9e:97:97:e8:c6:65:36:88:af:fa:3d:cd:81:
ab:b8:42:f3:b9:77:86:65:01:fb:79:b2:f0:03:86:
ca:39:e1:c9:86:5c:95:81:f6:57:ee:ff:f4:2e:a5:
58:27:6f:42:5e:84:05:eb:b2:32:01:58:3a:4e:e8:
b8:dc:9d:32:f0:27:ac:d7:4b:76:c6:e2:de:65:ea:
60:e0:1c:87:f1:76:5b:28:8c:b0:c0:6d:34:19:e2:
db:9b:af:01:05:ed:21:7a:f0:f0:61:ca:3b:17:4b:
29:37:c1:8a:17:3e:56:8e:eb:18:6f:d4:0f:b5:95:
0f:cd:c9:29:fc:10:76:5f:a6:fd:97:ff:fb:e0:7e:
3f:1e:92:04:9f:31:a2:b1:3b:fd:e8:d9:78:dd:6e:
35:b4:80:45:60:83:42:55:50:5b:ba:9f:18:a0:18:
af:64:d0:5b:60:db:4f:42:29:94:20:8c:06:6b:aa:
f0:33:e6:c1:4c:15:32:dd:a3:9c:26:fb:13:c6:07:
03:5c:8c:e8:20:8c:44:cd:39:3d:ff:a3:ec:ed:fe:
45:e1:99:f8:d2:cc:48:69:9b:4a:8b:7c:ea:de:05:
b0:22:5e:9e:47:e7:ed:c7:3c:76:9e:f4:ae:89:ff:
53:53:e3:d6:27:75:48:3e:1c:71:31:e4:48:83:1e:
16:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:DE:25:A2:E7:67:76:C8:D8:49:7A:98:E1:0F:31:B3:A1:11:F1:0E
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/Ed4loudndsjYSXqY4Q8xs6ER8Q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.72.0/22
Signature Algorithm: sha256WithRSAEncryption
03:5c:0f:e5:fe:11:37:55:23:8f:8f:85:44:64:ee:8a:10:6e:
ba:cc:fa:fd:61:f0:62:7c:82:db:9e:f2:4e:1f:67:ce:00:d6:
e3:e8:c9:5d:fd:b5:3b:d9:c3:bb:46:e2:7e:a0:58:e8:d2:1a:
4f:0e:ca:27:be:05:40:ad:56:1e:e2:79:90:f5:ba:4f:2f:1b:
29:db:99:b3:56:6a:f0:c4:1c:21:1a:e2:37:e5:01:ec:95:04:
e2:76:02:08:7f:b7:df:9d:f8:75:14:34:9f:5f:d6:e3:91:d7:
53:83:28:4a:73:3c:8a:4a:0a:f8:81:64:d2:ad:8a:cb:8a:2d:
b1:b7:3c:8f:6b:13:35:cd:fc:f1:86:40:b5:b1:04:3b:86:6c:
99:6b:26:c1:b9:be:1c:99:86:1e:9b:4c:3d:43:f8:8c:90:6d:
b6:cf:a6:7b:f7:aa:60:b3:5f:4a:c3:2a:4d:3a:cc:48:72:b5:
1d:84:c2:50:cd:4f:70:7d:d9:ca:6c:2f:be:e7:da:cc:00:07:
14:ee:29:4a:a4:1b:ae:1a:9d:f1:d2:5a:cb:1a:c4:79:0f:66:
29:39:a1:86:21:10:c2:c1:87:74:3c:9f:3e:a0:0d:7d:e0:fa:
1e:bc:fe:1c:ab:dd:13:0d:29:ec:d7:5f:cc:0a:8c:07:ed:d0:
e3:9e:50:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 12:51:05 2025 by rpki-client