Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/tV54uU3ZmCsg6sSy89lMnHmRMgw.roa
File: tV54uU3ZmCsg6sSy89lMnHmRMgw.roa (raw, json)
Hash identifier: xeN+Px8JR54zMIfmkNo/HGATdW5+cpBSYt40vhmLq5g=
Subject key identifier: B5:5E:78:B9:4D:D9:98:2B:20:EA:C4:B2:F3:D9:4C:9C:79:91:32:0C
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01942369F9E9F31FD7DB8725D77E360BB96D
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/tV54uU3ZmCsg6sSy89lMnHmRMgw.roa
Signing time: Wed 01 Jan 2025 19:48:55 +0000
ROA not before: Wed 01 Jan 2025 19:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211440
IP address blocks: 178.211.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 09:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:f9:e9:f3:1f:d7:db:87:25:d7:7e:36:0b:b9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 1 19:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b55e78b94dd9982b20eac4b2f3d94c9c7991320c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:b8:b6:ed:e2:9e:19:fc:f1:44:77:85:a4:46:
21:bc:d1:11:1d:c1:5b:43:2a:b9:12:d4:54:61:dd:
ea:b4:52:04:9f:ad:e5:5e:84:59:02:cc:39:6c:4b:
81:e8:b5:f9:ec:46:23:88:09:70:b7:e6:fd:91:f0:
f8:9c:88:f8:f7:ca:af:94:b5:7f:9e:17:73:0b:be:
b8:ce:f5:84:38:b8:f5:60:85:e6:c4:99:60:f5:e8:
10:74:5b:0d:1a:a1:b3:15:6d:2f:bf:b6:49:17:53:
fb:33:51:e2:50:36:56:a9:f0:56:f2:51:76:59:4d:
00:73:39:01:b9:dc:a1:18:5e:88:fb:55:78:a0:37:
ce:6a:4c:24:c7:1d:ac:41:8d:16:9e:19:be:c9:6a:
02:cc:8e:5d:4e:38:20:c0:e6:3b:d9:3f:74:14:2e:
2f:c3:df:ea:05:01:c3:80:a5:ff:16:50:c9:71:f2:
9d:42:2f:66:85:be:9e:cc:fa:24:ce:06:dc:c3:e7:
36:89:9a:ed:41:8f:74:99:c0:c3:bd:03:a8:a0:43:
3e:48:c5:4a:c8:91:08:bb:2f:42:96:1d:97:47:d1:
9e:13:1a:b4:5f:30:97:5a:4a:e5:f5:66:6e:9d:2b:
d0:fa:1e:17:2a:f0:30:f7:77:00:61:c2:6e:65:fd:
0d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5E:78:B9:4D:D9:98:2B:20:EA:C4:B2:F3:D9:4C:9C:79:91:32:0C
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/tV54uU3ZmCsg6sSy89lMnHmRMgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.132.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:e9:fa:d8:e1:5c:26:bb:cf:dd:da:8b:37:0b:9c:b9:c4:f8:
15:be:cf:f1:77:48:e9:56:7c:d2:48:b8:9d:90:aa:64:84:57:
6f:6c:ba:07:82:3f:dc:7c:77:0e:85:96:8a:5e:ca:71:fe:8e:
17:84:92:1b:94:6e:8c:31:61:68:56:ae:df:24:f5:44:a1:93:
c9:f6:ee:69:99:9b:82:6b:73:3d:e6:9a:76:19:8d:54:b5:c3:
ba:a5:f4:ca:95:45:5c:90:f2:88:80:35:21:86:34:77:b0:33:
6a:09:a5:8a:4b:ae:ed:4c:5e:8f:f0:0c:fb:d4:4a:9d:11:4a:
ab:be:64:94:d4:df:64:e2:a3:f1:cf:ba:95:07:3e:32:38:30:
ad:6e:3b:52:4c:19:ed:15:56:96:71:e9:71:94:73:c4:32:81:
ac:3c:33:87:8e:7c:d4:99:11:80:54:58:b5:32:3f:15:f7:70:
2e:54:b8:6b:68:79:2a:7b:fd:20:43:5f:06:73:72:c7:e6:c3:
7c:71:ae:56:7f:e3:1c:ee:9c:23:0f:c3:9c:c8:6e:b1:98:87:
7b:f4:d6:6c:a6:18:c8:a0:3a:4e:86:7a:16:27:19:03:d0:c8:
88:24:58:90:cf:39:0f:76:eb:94:23:15:23:0d:c4:1d:12:f8:
9b:c2:dc:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 12:44:15 2025 by rpki-client