Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/dW6kpj9-fDss9krGsyNnRo7GPlw.roa
File: dW6kpj9-fDss9krGsyNnRo7GPlw.roa (raw, json)
Hash identifier: MC/RuTNLsxTRiHjSMDXxONzocHzUmTJN5MOpvJWwnjQ=
Subject key identifier: 75:6E:A4:A6:3F:7E:7C:3B:2C:F6:4A:C6:B3:23:67:46:8E:C6:3E:5C
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFAAE4EEE1D63026DC88BA82EC779D8
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/dW6kpj9-fDss9krGsyNnRo7GPlw.roa
Signing time: Wed 01 Jan 2025 03:48:29 +0000
ROA not before: Wed 01 Jan 2025 03:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214139
IP address blocks: 2a0c:b641:d10::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 00:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:ae:4e:ee:1d:63:02:6d:c8:8b:a8:2e:c7:79:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=756ea4a63f7e7c3b2cf64ac6b32367468ec63e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f1:a0:7c:c5:f9:7f:56:37:3f:41:c8:a6:ae:
86:28:bd:7a:09:51:89:27:35:79:5e:fe:22:9c:23:
37:2b:fa:f0:45:20:af:76:dc:02:2d:fb:f5:7e:16:
28:96:a4:e1:5d:0b:18:5b:60:66:10:7f:75:37:c1:
11:80:44:38:25:1c:20:0f:02:3f:1d:80:bc:dc:58:
c7:5e:7c:75:03:72:b0:34:f0:b1:69:93:d0:75:37:
43:22:3c:4b:5a:67:1d:16:40:41:0f:e3:41:ba:68:
f8:74:80:7d:8c:5d:74:83:95:a8:58:4d:e6:c5:4c:
55:29:83:97:8a:0d:11:1a:3d:5a:c6:91:16:5e:71:
13:21:bb:05:fc:a4:d8:75:e4:45:96:6f:15:36:79:
b3:bf:43:2c:b7:d2:fc:b4:7f:86:4c:1c:2d:57:95:
80:aa:6c:15:27:3f:cc:de:c6:53:8f:fe:f4:4b:f9:
8d:70:0a:2f:2a:0b:97:c8:0e:f2:60:b9:81:07:8a:
a5:84:c4:16:fd:15:aa:15:3d:f4:ff:e8:3e:9d:00:
94:47:fa:33:10:81:b9:4c:01:c5:20:d3:c0:f0:34:
43:b7:b5:92:a9:dd:80:bf:24:3e:25:0d:08:51:2b:
5b:5a:c5:f1:92:ca:bd:39:d7:bf:9a:75:20:c2:a9:
14:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6E:A4:A6:3F:7E:7C:3B:2C:F6:4A:C6:B3:23:67:46:8E:C6:3E:5C
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/dW6kpj9-fDss9krGsyNnRo7GPlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:d10::/44
Signature Algorithm: sha256WithRSAEncryption
13:9b:f7:41:f6:df:f4:a5:70:c8:6b:af:4e:8c:8c:bb:bb:97:
51:f4:d1:13:e3:8b:cc:83:1f:77:f1:3b:06:3a:03:9d:36:72:
49:61:ad:cb:a0:8c:63:a9:87:a7:5e:d2:66:d2:ef:e3:bb:1c:
59:d3:ff:9e:de:6d:c6:cc:e3:ca:a7:62:8c:88:1b:c6:03:e5:
ad:ee:8c:9b:42:be:26:a2:5a:b1:96:42:91:de:be:92:16:e5:
3e:c9:85:90:e9:f7:f6:bf:e4:76:89:34:ac:a0:2e:74:d2:1f:
28:db:46:b7:84:6f:6c:d1:96:b6:aa:eb:81:a2:c7:ff:ee:44:
f2:34:60:fb:fb:a2:8c:19:6c:b8:a9:87:15:07:38:08:a7:d1:
76:18:78:28:c5:48:12:e2:ca:54:57:c9:9b:ca:80:fb:82:1e:
26:1c:d7:d2:c2:53:e7:45:bb:2e:c6:5d:19:bb:9c:1f:8d:b8:
a6:19:7b:cc:f6:67:d4:5b:c7:65:60:df:c7:2a:e6:09:d9:26:
6b:92:3a:11:1d:c3:41:c8:b4:02:08:c9:f0:1d:65:38:76:bc:
25:80:49:60:4e:8c:63:21:6c:d8:84:8b:20:36:8a:d9:2f:c0:
a9:aa:44:79:c5:c2:22:24:35:98:f5:2a:4d:d3:33:df:ad:9c:
b7:a6:92:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 07:11:57 2025 by rpki-client