Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/OWPbTOBRgtZUb4PhW4T80NqzeJM.roa
File: OWPbTOBRgtZUb4PhW4T80NqzeJM.roa (raw, json)
Hash identifier: 7rArmkgdH95k46bKrgcDwdoZlOpU/zt0KYWGomy8wMs=
Subject key identifier: 39:63:DB:4C:E0:51:82:D6:54:6F:83:E1:5B:84:FC:D0:DA:B3:78:93
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01944244980AFA72F585544AA87FF5DB0812
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/OWPbTOBRgtZUb4PhW4T80NqzeJM.roa
Signing time: Tue 07 Jan 2025 19:36:19 +0000
ROA not before: Tue 07 Jan 2025 19:36:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47741
IP address blocks: 95.214.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:42:44:98:0a:fa:72:f5:85:54:4a:a8:7f:f5:db:08:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 7 19:36:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3963db4ce05182d6546f83e15b84fcd0dab37893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:dc:ba:5a:7f:b2:d1:89:21:57:ce:ad:75:05:
0e:f8:74:13:10:e8:3d:90:50:4d:25:fe:98:4d:e0:
39:22:4e:f5:82:cf:74:05:44:ed:42:b0:37:67:23:
bc:f0:28:68:8c:f0:63:0c:ed:da:21:fb:ac:93:a7:
2d:4f:21:44:06:33:6a:ae:5a:d1:67:e4:ee:2f:d8:
b7:bd:36:db:9b:0e:08:5a:4a:15:2b:0d:0f:5e:37:
7a:ad:41:ef:ee:e9:b5:de:12:1c:13:73:41:91:e8:
3d:83:36:d0:42:75:d8:8f:69:56:bf:8e:af:18:67:
df:5a:c7:a1:e3:53:20:dc:7b:81:b7:7d:42:72:e8:
d9:82:24:89:1c:cc:5e:44:e6:f6:65:4b:21:fd:8b:
6c:02:3e:0e:26:14:73:dc:50:9b:d6:e6:17:46:6f:
54:25:ed:bc:a7:05:40:5a:28:be:05:99:18:e1:34:
3b:13:2c:27:d0:bc:e0:2a:d9:11:12:9e:ea:3f:10:
fd:b9:b5:05:7b:8c:a5:b0:6f:63:59:6e:33:1f:de:
6f:ed:7b:5d:5c:e6:e2:69:13:1b:f3:ea:a5:58:71:
fc:0b:0b:9e:85:f1:90:f6:4b:e9:3f:9c:20:0c:a0:
68:8f:76:72:5c:e4:26:7e:61:f9:f3:53:49:98:5c:
fe:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:63:DB:4C:E0:51:82:D6:54:6F:83:E1:5B:84:FC:D0:DA:B3:78:93
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/OWPbTOBRgtZUb4PhW4T80NqzeJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.181.0/24
Signature Algorithm: sha256WithRSAEncryption
42:7d:de:9b:b8:2c:c4:02:b9:45:c7:ca:b3:a3:88:8a:37:c3:
8d:a5:90:31:0e:f6:d8:7c:df:b3:79:87:fc:80:a2:01:50:71:
4b:10:2c:80:14:a3:6c:7f:45:3b:b6:27:51:71:2b:61:51:aa:
d8:ed:20:59:e0:f2:58:95:15:3e:ba:a4:c6:28:7c:29:bd:be:
f5:48:62:a3:99:38:10:66:36:95:d4:d5:45:96:a0:36:99:05:
a6:d1:ef:7f:df:88:bb:5f:2e:2f:59:b2:89:cc:43:f4:0e:b2:
a7:bb:8e:93:3c:e0:49:cc:8e:fe:9f:ee:ad:3b:42:18:5d:49:
73:09:b0:2f:6c:1b:54:28:0d:64:2c:d1:d6:4a:6f:2a:97:a3:
ad:88:68:d5:b0:ed:6e:06:f3:a5:14:d7:ac:69:53:02:54:38:
ad:25:83:14:82:ef:0d:b8:19:c2:2f:22:b3:e5:64:30:58:de:
b9:02:df:9b:3b:e3:59:6d:6b:23:bf:0d:5b:41:60:84:e6:26:
b5:03:57:af:56:90:3b:58:0c:b6:26:42:62:2f:11:be:7e:6c:
bd:8c:58:7c:b5:a1:7c:cd:a0:d7:7c:d2:88:2b:f6:54:1c:93:
73:77:7b:32:78:ec:ee:9e:b0:e3:85:c8:18:be:6a:61:42:9d:
85:52:40:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:24:55 2025 by rpki-client