Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/vrn7liTWiOV54a6bn1xF4EHebFc.roa
File: vrn7liTWiOV54a6bn1xF4EHebFc.roa (raw, json)
Hash identifier: mJIlU8Z+TC1dGYbjGa/ajMktQWJNT60JPY6KVtsPkZI=
Subject key identifier: BE:B9:FB:96:24:D6:88:E5:79:E1:AE:9B:9F:5C:45:E0:41:DE:6C:57
Certificate issuer: /CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Certificate serial: 01947449E1BD035E5488C8E6EAF260577651
Authority key identifier: B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/vrn7liTWiOV54a6bn1xF4EHebFc.roa
Signing time: Fri 17 Jan 2025 12:43:06 +0000
ROA not before: Fri 17 Jan 2025 12:43:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214342
IP address blocks: 2a09:be87::/38 maxlen: 38
2a09:be87:400::/38 maxlen: 38
2a09:be87:800::/38 maxlen: 38
2a09:be87:c00::/38 maxlen: 38
2a09:be87:1000::/38 maxlen: 38
2a09:be87:1400::/38 maxlen: 38
2a09:be87:1800::/38 maxlen: 38
2a09:be87:1c00::/38 maxlen: 38
2a09:be87:2000::/38 maxlen: 38
2a09:be87:2400::/38 maxlen: 38
2a09:be87:2800::/38 maxlen: 38
2a09:be87:2c00::/38 maxlen: 38
2a09:be87:3000::/38 maxlen: 38
2a09:be87:3400::/38 maxlen: 38
2a09:be87:3800::/38 maxlen: 38
2a09:be87:3c00::/38 maxlen: 38
2a09:be87:4000::/38 maxlen: 38
2a09:be87:4400::/38 maxlen: 38
2a09:be87:4800::/38 maxlen: 38
2a09:be87:4c00::/38 maxlen: 38
2a09:be87:5000::/41 maxlen: 41
2a09:be87:5080::/41 maxlen: 41
2a09:be87:5100::/41 maxlen: 41
2a09:be87:5180::/41 maxlen: 41
2a09:be87:5200::/41 maxlen: 41
2a09:be87:5280::/41 maxlen: 41
2a09:be87:5300::/41 maxlen: 41
2a09:be87:5380::/41 maxlen: 41
2a09:be87:5400::/41 maxlen: 41
2a09:be87:5480::/41 maxlen: 41
2a09:be87:5500::/41 maxlen: 41
2a09:be87:5580::/41 maxlen: 41
2a09:be87:5600::/41 maxlen: 41
2a09:be87:5680::/41 maxlen: 41
2a09:be87:5700::/41 maxlen: 41
2a09:be87:5780::/41 maxlen: 41
2a09:be87:5800::/41 maxlen: 41
2a09:be87:5880::/41 maxlen: 41
2a09:be87:5900::/41 maxlen: 41
2a09:be87:5980::/41 maxlen: 41
2a09:be87:5a00::/41 maxlen: 41
2a09:be87:5a80::/41 maxlen: 41
2a09:be87:5b00::/41 maxlen: 41
2a09:be87:5b80::/41 maxlen: 41
2a09:be87:5c00::/41 maxlen: 41
2a09:be87:5c80::/41 maxlen: 41
2a09:be87:5d00::/41 maxlen: 41
2a09:be87:5d80::/41 maxlen: 41
2a09:be87:5e00::/41 maxlen: 41
2a09:be87:5e80::/41 maxlen: 41
2a09:be87:5f00::/41 maxlen: 41
2a09:be87:5f80::/41 maxlen: 41
2a09:be87:6000::/38 maxlen: 38
2a09:be87:6400::/38 maxlen: 38
2a09:be87:6800::/38 maxlen: 38
2a09:be87:6c00::/38 maxlen: 38
2a09:be87:7000::/38 maxlen: 38
2a09:be87:7400::/38 maxlen: 38
2a09:be87:7800::/38 maxlen: 38
2a09:be87:7c00::/38 maxlen: 38
2a09:be87:8000::/38 maxlen: 38
2a09:be87:8400::/38 maxlen: 38
2a09:be87:8800::/38 maxlen: 38
2a09:be87:8c00::/38 maxlen: 38
2a09:be87:9000::/38 maxlen: 38
2a09:be87:9400::/38 maxlen: 38
2a09:be87:9800::/38 maxlen: 38
2a09:be87:9c00::/38 maxlen: 38
2a09:be87:a000::/38 maxlen: 38
2a09:be87:a400::/38 maxlen: 38
2a09:be87:a800::/38 maxlen: 38
2a09:be87:ac00::/38 maxlen: 38
2a09:be87:b000::/38 maxlen: 38
2a09:be87:b400::/38 maxlen: 38
2a09:be87:b800::/38 maxlen: 38
2a09:be87:bc00::/38 maxlen: 38
2a09:be87:c000::/38 maxlen: 38
2a09:be87:c400::/38 maxlen: 38
2a09:be87:c800::/38 maxlen: 38
2a09:be87:cc00::/38 maxlen: 38
2a09:be87:d000::/38 maxlen: 38
2a09:be87:d400::/38 maxlen: 38
2a09:be87:d800::/38 maxlen: 38
2a09:be87:dc00::/38 maxlen: 38
2a09:be87:e000::/41 maxlen: 41
2a09:be87:e080::/41 maxlen: 41
2a09:be87:e100::/41 maxlen: 41
2a09:be87:e180::/41 maxlen: 41
2a09:be87:e200::/41 maxlen: 41
2a09:be87:e280::/41 maxlen: 41
2a09:be87:e300::/41 maxlen: 41
2a09:be87:e380::/41 maxlen: 41
2a09:be87:e400::/41 maxlen: 41
2a09:be87:e480::/41 maxlen: 41
2a09:be87:e500::/41 maxlen: 41
2a09:be87:e580::/41 maxlen: 41
2a09:be87:e600::/41 maxlen: 41
2a09:be87:e680::/41 maxlen: 41
2a09:be87:e700::/41 maxlen: 41
2a09:be87:e780::/41 maxlen: 41
2a09:be87:e800::/41 maxlen: 41
2a09:be87:e880::/41 maxlen: 41
2a09:be87:e900::/41 maxlen: 41
2a09:be87:e980::/41 maxlen: 41
2a09:be87:ea00::/41 maxlen: 41
2a09:be87:ea80::/41 maxlen: 41
2a09:be87:eb00::/41 maxlen: 41
2a09:be87:eb80::/41 maxlen: 41
2a09:be87:ec00::/41 maxlen: 41
2a09:be87:ec80::/41 maxlen: 41
2a09:be87:ed00::/41 maxlen: 41
2a09:be87:ed80::/41 maxlen: 41
2a09:be87:ee00::/41 maxlen: 41
2a09:be87:ee80::/41 maxlen: 41
2a09:be87:ef00::/41 maxlen: 41
2a09:be87:ef80::/41 maxlen: 41
2a09:be87:f000::/38 maxlen: 38
2a09:be87:f400::/38 maxlen: 38
2a09:be87:f800::/38 maxlen: 38
2a09:be87:fc00::/38 maxlen: 38
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 06:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:74:49:e1:bd:03:5e:54:88:c8:e6:ea:f2:60:57:76:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Validity
Not Before: Jan 17 12:43:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=beb9fb9624d688e579e1ae9b9f5c45e041de6c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5e:e2:4e:82:50:cf:e0:87:af:25:18:0f:23:
74:53:ef:51:97:dc:d7:0d:41:21:9c:be:c2:63:e3:
02:06:34:01:e1:58:2f:61:2c:bb:2b:c3:b6:5f:08:
2b:5c:04:84:77:40:2e:c9:a1:93:fd:53:d8:17:67:
38:11:0e:2e:7e:97:74:bc:b0:06:7f:72:c6:b3:48:
66:18:11:d8:34:63:30:df:18:af:b2:43:b7:93:aa:
c6:35:93:07:1f:e2:c6:7b:2a:8c:14:85:b7:7c:0f:
79:84:4f:c0:f4:ca:fa:61:d8:bf:f1:7a:a8:eb:ec:
64:71:0d:24:af:ce:16:20:55:50:cd:7f:8f:af:4a:
2f:77:9e:b7:54:f8:a6:b3:be:e6:b6:6e:db:e1:eb:
6e:c3:f7:1b:41:a9:72:47:86:02:90:7e:69:e7:63:
b6:ac:63:fa:f9:e9:30:ac:a9:f6:e5:3b:96:11:ce:
78:f6:a8:80:42:07:e3:cf:7a:5d:5d:18:ab:86:80:
65:f5:c9:55:92:3e:b6:2a:61:d0:dc:17:58:85:6e:
dd:cd:24:7f:16:5b:03:c7:3b:3f:c6:50:69:b6:0f:
9c:06:c7:7d:a6:c3:61:c7:2e:98:8f:50:a5:fb:82:
13:0d:6f:3c:05:b4:a4:82:d6:5b:3b:55:11:b4:b5:
80:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B9:FB:96:24:D6:88:E5:79:E1:AE:9B:9F:5C:45:E0:41:DE:6C:57
X509v3 Authority Key Identifier:
keyid:B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/vrn7liTWiOV54a6bn1xF4EHebFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:be87::/32
Signature Algorithm: sha256WithRSAEncryption
95:84:11:5c:3e:af:85:b3:22:f9:3f:a1:b2:fd:1a:b2:0e:44:
21:d2:54:bb:23:b5:8d:89:79:5c:45:eb:cc:df:37:cf:f3:25:
57:17:4d:59:d5:63:ed:7e:de:f0:f8:a2:36:16:5c:d7:82:7f:
f6:0c:90:22:b2:f0:e9:8f:c6:1c:69:40:56:be:e2:a5:a7:29:
55:a5:96:56:b2:08:c9:74:01:9f:bf:89:a6:6e:cf:1c:4d:ca:
23:64:85:43:38:08:02:c7:4d:c2:57:7a:12:8d:6d:44:c7:34:
83:18:95:da:61:0a:47:e3:cd:69:a6:09:c4:f5:42:87:7b:57:
5b:e5:58:5f:e2:ca:0b:2c:f3:a0:f3:b4:68:0d:29:48:51:ed:
87:7f:83:8e:a8:32:29:f1:a3:42:8d:b2:ba:49:75:9c:00:2b:
c0:59:55:e4:69:93:17:84:44:b6:b9:b8:b0:fe:f0:5c:d2:39:
d9:81:e4:90:87:34:b2:9f:fa:bf:96:25:d0:73:ae:72:1c:a1:
c5:37:c2:56:11:15:bc:9b:e4:88:d2:fe:05:09:ce:5e:e4:54:
d9:a3:a9:01:d6:ad:c5:52:f6:e2:4c:e3:7a:e7:a4:4a:09:47:
61:b8:a0:ee:54:86:fe:1a:50:82:d0:d3:b7:66:de:09:dd:01:
f5:47:d1:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 16:08:53 2025 by rpki-client