Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/FvaY2JC2n4-TiAQuOZU_5GO_5_s.roa
File: FvaY2JC2n4-TiAQuOZU_5GO_5_s.roa (raw, json)
Hash identifier: xPHXsRQP/DIKA7I9gyneWFv8tHBKgYagEBYbr1lBlRQ=
Subject key identifier: 16:F6:98:D8:90:B6:9F:8F:93:88:04:2E:39:95:3F:E4:63:BF:E7:FB
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01942067DDC00C81525A88C8EA3CF7727F8E
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/FvaY2JC2n4-TiAQuOZU_5GO_5_s.roa
Signing time: Wed 01 Jan 2025 05:47:45 +0000
ROA not before: Wed 01 Jan 2025 05:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209880
IP address blocks: 212.243.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:dd:c0:0c:81:52:5a:88:c8:ea:3c:f7:72:7f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 05:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16f698d890b69f8f9388042e39953fe463bfe7fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:66:30:8f:6b:94:9e:41:23:a7:92:75:39:9d:
43:dd:1b:35:68:5c:e2:83:cb:8b:65:43:cd:3d:26:
fa:d8:17:cc:7b:ad:0e:8d:ef:84:7a:22:b9:1f:b1:
71:b7:c3:b9:85:35:4b:58:bf:75:46:b7:8e:e9:57:
6b:32:a4:e7:a3:79:98:21:75:32:e9:0a:33:2a:0b:
a2:13:76:7e:ff:aa:26:0b:32:13:21:9c:b6:00:65:
cf:04:6d:db:c6:35:10:00:33:04:b2:7a:ed:e2:17:
13:2e:87:db:d5:10:1c:f4:e5:d8:e7:85:be:6e:bc:
f9:ab:9f:66:db:c5:e3:97:e3:67:07:3f:42:f0:c4:
5e:97:c7:d3:7e:a1:99:28:d9:f5:1b:94:71:93:40:
7f:fa:d2:f5:16:c7:c3:01:d4:d1:5b:02:af:b8:85:
4c:a1:b8:fa:0a:46:99:12:4d:c4:58:55:48:3a:62:
a4:d7:a4:68:b2:f2:0a:a4:99:30:a4:ad:2d:de:f2:
16:0e:10:0c:b2:fa:15:d4:08:17:ea:ad:ac:ea:af:
e1:f0:92:b5:1e:0f:30:05:58:3a:f9:92:9c:5e:f4:
62:ff:d3:e2:21:77:f6:e6:f5:59:d1:f5:61:9d:38:
48:9e:15:92:e5:0f:75:76:8e:1e:1d:a0:1b:40:88:
4c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F6:98:D8:90:B6:9F:8F:93:88:04:2E:39:95:3F:E4:63:BF:E7:FB
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/FvaY2JC2n4-TiAQuOZU_5GO_5_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.125.0/24
Signature Algorithm: sha256WithRSAEncryption
27:31:7b:42:e1:c1:22:51:07:be:c8:d8:4a:7c:15:07:ca:bf:
0d:34:8f:40:0b:d4:ab:89:04:57:8b:98:1a:c6:83:8e:e6:b2:
3f:60:a0:cd:f9:e3:ce:86:88:9d:af:bd:25:f0:19:6e:2b:dc:
c3:cf:1d:a6:60:f1:a2:ea:ed:ad:31:b0:62:d1:73:d8:3f:59:
41:fb:46:2f:6f:02:e6:cf:9a:02:6c:a8:c4:4f:e3:c2:7c:b3:
ae:b9:81:9d:8c:6f:af:42:32:a1:f9:07:8d:41:32:ea:77:ec:
0c:7b:31:99:7d:46:8a:83:13:c3:90:5e:35:a4:b2:3e:a2:30:
47:d9:67:c8:dc:96:83:ba:cb:2e:5d:5a:e0:7e:a2:09:d5:6f:
0a:cc:4c:0a:23:00:ad:2d:08:3a:68:c8:85:b4:c5:32:05:fb:
82:a4:f8:0b:99:24:8b:05:66:51:d6:e4:42:de:e5:9a:d7:f0:
d7:4f:ad:df:15:8d:60:30:29:22:d2:ba:d5:36:a6:c5:ba:a2:
a5:ed:bc:2b:67:58:88:e3:6a:d1:69:c1:cc:6c:cc:9b:97:2c:
d9:5b:b5:05:77:0a:6f:47:16:fe:67:ef:6b:b0:1f:eb:99:8a:
43:03:ef:c2:b0:32:ae:2f:00:29:5e:9e:f6:39:c0:24:de:86:
45:44:be:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:03:36 2025 by rpki-client