Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/mdhPoB9Xi_SvHQW0Npo5tBiYYRw.roa
File: mdhPoB9Xi_SvHQW0Npo5tBiYYRw.roa (raw, json)
Hash identifier: N1Pm29zQ5qNztRCN8wb+WCQ/lCg8dOrqcVoxO2AK6Sc=
Subject key identifier: 99:D8:4F:A0:1F:57:8B:F4:AF:1D:05:B4:36:9A:39:B4:18:98:61:1C
Certificate issuer: /CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Certificate serial: 019421B212179B8BA2F16C579DD8F21D09C7
Authority key identifier: 57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/mdhPoB9Xi_SvHQW0Npo5tBiYYRw.roa
Signing time: Wed 01 Jan 2025 11:48:25 +0000
ROA not before: Wed 01 Jan 2025 11:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39718
IP address blocks: 81.30.117.0/24 maxlen: 24
81.30.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:12:17:9b:8b:a2:f1:6c:57:9d:d8:f2:1d:09:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5758cb11e842bcaf1323647f3befeee2fc6f0e2c
Validity
Not Before: Jan 1 11:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99d84fa01f578bf4af1d05b4369a39b41898611c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3a:f0:9b:b0:10:ce:6e:ca:94:0d:a6:40:3c:
ab:95:9b:0e:0f:c9:65:13:3e:97:29:6f:88:a2:73:
88:68:64:cc:12:74:a2:3d:02:24:36:69:84:b0:b7:
72:3f:af:06:b7:c7:8c:fa:d4:f4:07:ef:0b:a3:9f:
6d:ab:a7:c9:e8:a9:87:1c:54:1e:60:4e:f8:73:c6:
07:f6:a4:f0:56:8e:bc:b1:08:7b:7e:75:cd:18:8a:
96:ae:71:3c:c4:22:da:a1:41:d1:9b:27:26:8d:0a:
6c:db:a4:be:2b:cc:b0:97:ea:46:36:ea:d3:fc:de:
40:ca:7b:97:e4:48:7f:a8:cc:de:49:df:0e:da:73:
e3:31:7b:20:bb:eb:58:09:89:9d:1d:c8:1c:2b:bf:
6f:b1:0e:b2:d1:68:e7:05:ef:d6:b6:e6:69:66:0d:
dc:dc:a5:5b:3d:ee:43:11:ee:89:e6:f3:96:08:55:
7b:98:08:57:3d:d7:11:55:24:d7:f8:c8:b2:b4:b8:
99:fd:23:b6:bd:14:9c:52:fc:72:76:d5:71:65:2a:
9f:35:9d:07:73:1c:4f:6e:6a:c2:b5:4d:23:27:10:
c4:31:df:4e:5f:8e:90:0d:4b:5d:2a:c6:74:18:6c:
03:f3:6e:59:06:85:77:7b:3b:fa:1a:b1:02:28:18:
0d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D8:4F:A0:1F:57:8B:F4:AF:1D:05:B4:36:9A:39:B4:18:98:61:1C
X509v3 Authority Key Identifier:
keyid:57:58:CB:11:E8:42:BC:AF:13:23:64:7F:3B:EF:EE:E2:FC:6F:0E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1jLEehCvK8TI2R_O-_u4vxvDiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/mdhPoB9Xi_SvHQW0Npo5tBiYYRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a28330-8ba0-4b88-a7ac-8bbf8bfc6d8e/1/V1jLEehCvK8TI2R_O-_u4vxvDiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.117.0/24
81.30.127.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:41:e0:c1:dd:39:9a:38:d1:c3:85:d6:43:a8:ca:9c:bb:9e:
4e:d4:41:53:e9:b0:a8:82:62:c5:55:30:ec:0a:55:22:b5:b7:
a7:f5:fd:79:2d:f6:42:b8:58:1a:17:21:6d:d8:de:33:f4:b0:
c7:a0:b0:13:d1:e4:73:1e:7c:28:54:14:59:d0:f1:90:eb:3f:
14:51:de:66:dd:4a:ef:60:92:9e:32:68:bf:e6:08:fe:ca:28:
51:96:a9:06:08:29:00:9e:6b:75:17:07:ca:b6:7a:e5:05:cf:
49:9d:d5:a1:3d:04:19:d8:c6:03:ed:3a:a9:8b:35:d4:02:34:
67:56:08:11:00:a6:8c:dc:a6:91:7c:f8:f9:bd:88:8a:2f:ae:
3c:5e:c8:19:b8:43:f4:06:b2:0c:aa:e9:59:af:2a:ca:25:36:
86:74:02:f5:0c:22:69:c5:30:98:e3:03:ae:9d:19:35:49:44:
06:82:58:e9:dd:d0:0c:72:60:3f:85:50:b3:ca:43:cc:f8:66:
96:6a:42:84:27:61:ac:4d:14:03:c4:ff:15:0a:81:db:04:27:
7b:2a:4b:01:37:23:fa:d4:58:83:81:b5:27:34:93:6a:27:28:
57:fc:01:82:37:79:4d:b7:a0:a2:df:c8:b9:5d:0b:9d:d2:40:
13:1f:35:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:04 2025 by rpki-client