Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/g1JpgBl3f_UTJYdQywYz02ewkmo.roa
File: g1JpgBl3f_UTJYdQywYz02ewkmo.roa (raw, json)
Hash identifier: /WVZrIIU3ayWKhaWFI17hhv3+SjYLyhaEgwSAFC78SE=
Subject key identifier: 83:52:69:80:19:77:7F:F5:13:25:87:50:CB:06:33:D3:67:B0:92:6A
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01942369F5B66480DD0043EF10A13E2FE36F
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/g1JpgBl3f_UTJYdQywYz02ewkmo.roa
Signing time: Wed 01 Jan 2025 19:48:54 +0000
ROA not before: Wed 01 Jan 2025 19:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206092
IP address blocks: 45.155.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 09:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:f5:b6:64:80:dd:00:43:ef:10:a1:3e:2f:e3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 1 19:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8352698019777ff513258750cb0633d367b0926a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a4:9d:09:d6:8a:42:44:53:38:02:ce:17:ce:
33:69:e8:6e:d4:f2:ea:f5:58:48:70:96:9e:91:67:
64:16:32:ba:ce:ef:54:06:2f:8e:76:af:ff:aa:fd:
16:0b:58:2d:a0:b0:6f:0d:a4:11:5c:02:59:ed:74:
7c:f5:73:0c:93:37:e5:cc:36:3e:68:fb:0b:e2:59:
99:de:ab:65:c6:66:94:bc:25:a5:13:b5:15:f1:38:
50:bc:b0:3d:3d:ef:2c:1d:0d:35:58:d2:31:0f:dd:
86:1f:62:05:42:c6:cb:d9:75:28:b7:1b:15:ff:95:
41:1a:14:87:f4:94:88:d7:dc:e5:6b:66:f6:ba:53:
20:8f:8a:cb:b6:b8:db:9e:6e:cb:ac:db:34:05:61:
7c:b7:57:be:53:d0:08:8d:67:e7:b1:52:e3:53:ea:
ce:ad:56:f2:8a:b4:a6:d5:62:8b:60:c3:89:8f:2c:
70:56:4f:e1:5c:1a:a8:10:f2:1f:20:6e:22:d7:19:
1b:5e:de:ff:47:98:90:c0:4c:29:78:15:da:a9:0f:
9f:1d:9e:6c:04:20:3e:e6:70:3a:4f:44:d6:08:49:
56:16:72:8c:21:f1:84:dd:3c:c1:d8:33:cc:31:f2:
b4:78:29:24:17:af:46:ba:ab:8c:16:c5:ba:d8:9d:
1f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:52:69:80:19:77:7F:F5:13:25:87:50:CB:06:33:D3:67:B0:92:6A
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/g1JpgBl3f_UTJYdQywYz02ewkmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.64.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:59:eb:a3:32:1c:dc:ed:3d:06:9f:09:38:08:0a:da:77:58:
78:ec:fd:3d:c7:73:2f:1a:9e:e7:34:ba:85:4c:7a:c4:fd:1b:
a0:19:5c:7e:bd:5c:79:3c:fb:d3:e4:26:12:1d:c5:5d:4e:2a:
a1:93:75:70:14:06:19:42:95:bd:7f:dd:bf:3d:a2:e3:af:dc:
06:5f:5b:42:56:96:93:82:88:f1:7e:ee:e6:35:9f:16:d6:e7:
96:79:f8:6b:ea:42:b8:69:56:f3:c4:14:03:e9:70:b9:12:ad:
20:9f:e9:e5:b3:05:66:c1:e1:2c:5c:75:77:f3:3a:11:cd:3f:
f6:1c:70:0d:89:b0:b1:24:78:2d:ad:a1:e2:ce:b4:07:b4:18:
c1:cf:74:02:66:c3:1d:28:51:1d:bf:e0:ba:09:0f:d7:74:d1:
69:9f:87:01:ab:47:79:cf:46:2d:b4:4d:8c:b0:2b:65:46:ae:
cf:c0:e2:de:20:1c:e1:15:c4:ed:74:eb:4d:37:37:1e:45:b0:
bc:c4:e7:51:b1:1c:4f:d1:df:1a:fc:2d:0b:c8:f0:78:87:57:
aa:83:b0:f2:59:aa:66:d3:55:ea:2d:0a:27:bc:b8:eb:62:d9:
4f:2c:ce:95:4b:dc:81:ed:97:72:35:56:e3:9a:a7:76:26:3e:
88:2b:b5:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 13:03:37 2025 by rpki-client