Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/JUEJ1bnTf0kwNpf0XsZJp2QsJAo.roa
File: JUEJ1bnTf0kwNpf0XsZJp2QsJAo.roa (raw, json)
Hash identifier: VZTjh3lQnDMpevPygqIRVRGJtopvsnGmz6ycKHPoHw8=
Subject key identifier: 25:41:09:D5:B9:D3:7F:49:30:36:97:F4:5E:C6:49:A7:64:2C:24:0A
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 019541CD84A0084E4A1E8EC9F184EAB1CE9E
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/JUEJ1bnTf0kwNpf0XsZJp2QsJAo.roa
Signing time: Wed 26 Feb 2025 10:29:02 +0000
ROA not before: Wed 26 Feb 2025 10:29:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 136787
IP address blocks: 64.43.94.0/24 maxlen: 24
64.43.95.0/24 maxlen: 24
77.36.72.0/24 maxlen: 24
77.36.73.0/24 maxlen: 24
77.36.74.0/24 maxlen: 24
77.36.75.0/24 maxlen: 24
77.36.76.0/24 maxlen: 24
77.36.77.0/24 maxlen: 24
77.36.78.0/24 maxlen: 24
77.36.79.0/24 maxlen: 24
176.96.88.0/24 maxlen: 24
176.96.90.0/24 maxlen: 24
176.96.91.0/24 maxlen: 24
193.36.208.0/24 maxlen: 24
193.36.209.0/24 maxlen: 24
193.36.210.0/24 maxlen: 24
193.36.211.0/24 maxlen: 24
193.36.212.0/24 maxlen: 24
193.36.213.0/24 maxlen: 24
193.36.214.0/24 maxlen: 24
193.36.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft
rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 21:19:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:cd:84:a0:08:4e:4a:1e:8e:c9:f1:84:ea:b1:ce:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Feb 26 10:29:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=254109d5b9d37f49303697f45ec649a7642c240a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:62:c6:f5:d8:49:ba:30:a2:ce:61:3a:31:7b:
c0:59:20:56:8e:6c:08:4e:19:aa:e1:c8:b9:62:6f:
a4:0d:e1:d5:ce:50:ef:22:46:b5:72:cb:6b:50:82:
e0:c2:b6:05:18:67:b8:78:d4:1f:79:86:68:d6:4b:
03:31:f4:42:f0:51:35:ec:ad:96:d2:a6:ff:97:20:
05:25:88:10:37:5e:c7:ce:4f:48:7e:6e:76:4d:12:
1f:aa:63:a0:30:ef:6e:17:05:2f:31:05:c4:99:ef:
7f:0d:05:cf:be:39:eb:7a:66:6b:f3:85:30:22:1e:
66:e8:eb:cf:29:24:3e:5c:44:b4:e4:66:af:88:1e:
2a:7c:5b:08:13:8c:69:c4:a5:0e:6e:24:27:b8:01:
74:55:ae:2a:7e:ba:73:64:85:34:29:25:2a:f9:7d:
c4:82:fb:b5:c3:72:74:f1:d4:db:3f:a7:4b:67:4e:
49:d0:c6:91:8d:b6:94:67:0c:90:84:39:85:6b:f6:
6d:2b:af:5d:79:64:d5:14:41:79:28:24:d7:08:50:
27:f1:6a:15:28:2c:ab:15:7c:df:68:eb:ec:ff:1e:
b3:78:f5:9f:a2:53:d3:89:69:30:e7:8c:ed:f7:29:
d2:7b:ff:63:2a:91:52:c2:d3:b5:d8:0d:86:57:9b:
fb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:41:09:D5:B9:D3:7F:49:30:36:97:F4:5E:C6:49:A7:64:2C:24:0A
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/JUEJ1bnTf0kwNpf0XsZJp2QsJAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.94.0/23
77.36.72.0/21
176.96.88.0/24
176.96.90.0/23
193.36.208.0/21
Signature Algorithm: sha256WithRSAEncryption
45:8b:c8:8b:24:5e:6a:ae:54:e5:d6:c1:29:32:23:4a:fe:6f:
cb:c4:22:18:fd:4e:a7:3d:8b:e8:87:15:63:9e:7c:a4:b8:4a:
5f:50:b7:86:af:99:e9:02:c9:84:4a:02:d2:ea:bc:e1:64:01:
53:38:50:6f:77:53:01:a1:56:90:81:7c:73:1f:53:14:b0:35:
1c:fd:0b:f3:c5:ab:f3:fc:a6:7c:f0:ad:28:fb:5a:bc:e2:1b:
d4:d0:f1:8e:c6:a1:26:39:d8:88:10:12:c8:90:aa:96:bd:f7:
36:42:37:46:3b:b6:99:f5:52:19:e2:e6:43:2d:02:f4:96:ad:
b8:03:c4:69:9a:10:da:41:da:27:82:1a:69:22:b5:d0:c8:1b:
59:26:7c:af:2b:c4:f6:7f:5d:f7:49:29:63:1d:73:0a:02:49:
c2:8c:57:04:d5:b1:d3:56:32:b0:d3:4b:82:4f:41:a7:30:56:
1b:3e:49:92:4f:f6:31:ea:86:90:6d:dc:e1:27:b6:3e:bb:d9:
0a:c6:85:46:b6:ff:ce:79:25:7a:e0:f1:73:bc:ba:d2:5e:ee:
e4:8a:8c:f3:2d:b8:dc:1a:1b:63:b9:0e:7d:4b:d7:14:25:38:
b4:3e:cb:da:07:2b:b2:6c:31:3d:02:21:38:0e:b1:56:b2:ae:
9a:51:fa:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:49 2025 by rpki-client