Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/g0tJ6HAhOEXfRw9hpwjv9qGtrPM.roa
File: g0tJ6HAhOEXfRw9hpwjv9qGtrPM.roa (raw, json)
Hash identifier: zh4s24WsuFFY5gPWDTRufukEWHpAkIbH1s15tmhjBvk=
Subject key identifier: 83:4B:49:E8:70:21:38:45:DF:47:0F:61:A7:08:EF:F6:A1:AD:AC:F3
Certificate issuer: /CN=c2fd2c74ad6fae2ddd0f6e9c39fde831893ae6f9
Certificate serial: 019421B1848FBA6DBC08F1E4BC5B7DDE049C
Authority key identifier: C2:FD:2C:74:AD:6F:AE:2D:DD:0F:6E:9C:39:FD:E8:31:89:3A:E6:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/g0tJ6HAhOEXfRw9hpwjv9qGtrPM.roa
Signing time: Wed 01 Jan 2025 11:47:49 +0000
ROA not before: Wed 01 Jan 2025 11:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21409
IP address blocks: 185.110.64.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/wv0sdK1vri3dD26cOf3oMYk65vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/wv0sdK1vri3dD26cOf3oMYk65vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:84:8f:ba:6d:bc:08:f1:e4:bc:5b:7d:de:04:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2fd2c74ad6fae2ddd0f6e9c39fde831893ae6f9
Validity
Not Before: Jan 1 11:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=834b49e870213845df470f61a708eff6a1adacf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:34:e0:57:39:a7:8d:3a:97:36:2a:16:03:e7:
67:b0:97:95:be:ac:f9:42:eb:4f:99:d9:07:df:3c:
39:3d:ee:11:02:33:e3:00:da:21:24:25:26:b4:54:
e5:30:e5:14:4b:66:96:bb:87:69:d3:ed:16:52:0f:
0d:73:c3:6a:e3:0a:b9:a5:2c:22:71:ac:fd:d2:30:
d7:52:90:cd:f5:fe:85:ee:1a:bc:24:5f:f7:89:04:
b1:b9:4a:50:55:25:74:33:25:c4:32:02:6d:35:b0:
ef:11:95:7c:67:00:11:2d:54:8b:26:89:52:04:89:
3e:93:49:89:95:b8:98:d8:0e:3d:22:60:24:10:05:
b9:98:e6:a4:cd:26:41:5f:91:8b:0c:e5:28:55:a8:
42:d9:81:20:cf:91:02:84:e6:30:4b:01:e9:2b:fd:
95:7a:0a:24:2d:73:78:33:70:dd:b3:d8:6d:26:c1:
fb:b7:b3:32:ab:ad:e9:a0:a9:a9:e1:96:ee:eb:19:
e7:28:de:c5:20:6e:12:3d:2d:61:13:56:2e:e6:80:
6e:b4:f7:c4:a4:1e:e1:19:7e:81:5f:b1:a0:47:58:
c2:8a:eb:d6:e7:7f:cb:66:50:96:20:d6:2f:9c:68:
8e:ed:19:71:a0:53:e9:8d:46:11:0e:22:51:0e:fb:
12:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4B:49:E8:70:21:38:45:DF:47:0F:61:A7:08:EF:F6:A1:AD:AC:F3
X509v3 Authority Key Identifier:
keyid:C2:FD:2C:74:AD:6F:AE:2D:DD:0F:6E:9C:39:FD:E8:31:89:3A:E6:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/g0tJ6HAhOEXfRw9hpwjv9qGtrPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/wv0sdK1vri3dD26cOf3oMYk65vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.64.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:6f:ae:0d:6e:dc:4f:09:41:74:1b:ca:62:41:d3:01:6c:39:
2f:eb:1e:d8:ac:91:80:71:d7:65:a6:51:59:cb:29:04:50:86:
78:01:c9:bb:fc:a6:be:7b:d8:2a:17:5b:20:a0:d1:57:9b:cd:
eb:ae:72:ed:92:41:35:ae:1f:74:86:46:b7:05:69:5e:20:6e:
ca:d3:e7:6b:30:c5:f5:5a:12:9e:51:8d:8b:2b:a4:f8:55:fd:
34:f2:1d:21:ce:30:8c:16:bb:47:fb:39:b6:c9:4d:cc:f0:cd:
d0:83:70:cd:0b:74:be:a9:b4:6d:e9:81:2e:3c:e6:7c:02:34:
6a:54:58:ec:f5:d4:9b:00:8c:fd:0f:9a:2d:eb:8c:f4:68:0b:
c6:e5:0b:96:5d:8c:64:b6:d8:25:1c:2a:f1:62:c6:74:09:11:
23:31:02:92:ca:74:b1:ba:20:20:34:2c:92:ba:d0:a2:ff:29:
0c:f6:79:68:d0:ec:cd:f6:96:91:52:5c:53:43:e9:52:0e:28:
8b:98:76:33:df:8f:5b:fa:85:3a:c0:5d:16:7e:b4:c4:b6:b0:
9a:91:27:dc:96:23:f5:d8:1e:ed:d6:b9:da:e1:81:d2:88:1c:
34:70:b4:54:c0:24:5c:39:07:63:e6:3d:4f:9c:86:6d:56:10:
cf:58:7a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:53:43 2025 by rpki-client