Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/90hJmYT4NFNzXCPpXd9gE9yj3yc.roa
File: 90hJmYT4NFNzXCPpXd9gE9yj3yc.roa (raw, json)
Hash identifier: 4nzWqW1vS5cDLDVGrmlpycQ2lErAAx6OQU2Ja7pMxc8=
Subject key identifier: F7:48:49:99:84:F8:34:53:73:5C:23:E9:5D:DF:60:13:DC:A3:DF:27
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 019427484584553198ADB077408E697EBBDD
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/90hJmYT4NFNzXCPpXd9gE9yj3yc.roa
Signing time: Thu 02 Jan 2025 13:50:35 +0000
ROA not before: Thu 02 Jan 2025 13:50:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5511
IP address blocks: 85.203.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:45:84:55:31:98:ad:b0:77:40:8e:69:7e:bb:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 13:50:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f748499984f83453735c23e95ddf6013dca3df27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9f:ba:cf:e6:3d:b0:84:ac:73:87:be:e5:97:
e8:41:60:ca:65:99:c5:b4:6e:94:ef:f3:14:e7:0d:
05:63:6a:93:93:35:09:f8:92:62:80:7c:fb:21:da:
fa:e5:62:0a:8c:99:ca:d5:70:56:9e:7d:1e:a4:39:
d3:a9:7a:1f:a2:1c:62:11:1e:dd:18:1d:b2:35:be:
97:28:2b:9f:0d:40:5f:7d:f5:6e:ac:ca:7b:78:9f:
d2:89:a1:a5:1f:c0:44:07:7d:6a:1d:63:e6:da:59:
63:44:86:26:3a:d4:8d:cf:c3:d9:f6:6f:27:e5:b5:
3c:b6:11:6a:da:f4:da:4f:5f:6c:c1:2f:0d:f1:d1:
f3:20:cc:fa:90:f8:5e:6e:d6:c3:40:d3:3e:7a:1c:
2d:5f:8d:20:ed:cb:48:96:d4:31:91:0e:50:5c:4e:
88:0a:d9:16:a1:1b:12:51:ee:e9:6a:31:5a:bf:26:
c7:87:ff:68:2a:0c:31:e7:14:b3:38:13:77:87:fd:
99:2e:16:e6:f8:9f:83:9b:9b:e0:10:6e:e8:1f:d5:
cb:dd:92:87:88:65:76:1f:e6:29:eb:a9:38:22:73:
2e:9f:d7:49:9b:2c:22:49:0a:c6:ea:06:0a:39:69:
a3:9c:01:f5:37:a1:e9:6e:83:2d:4f:43:d0:02:fc:
f3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:48:49:99:84:F8:34:53:73:5C:23:E9:5D:DF:60:13:DC:A3:DF:27
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/90hJmYT4NFNzXCPpXd9gE9yj3yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.27.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ab:43:91:9f:be:6e:97:db:7b:63:e8:79:b1:97:90:55:91:
85:30:f2:4c:6e:f3:1a:9b:44:0b:46:78:fd:da:36:c7:9e:6c:
a1:2f:95:aa:51:83:5f:50:4b:f7:b1:99:da:5c:36:cb:70:56:
13:02:6e:fd:13:84:92:c4:76:de:8a:c9:4a:a9:71:bf:c6:92:
d2:d5:90:74:ef:88:80:b3:39:5e:40:4c:05:46:7f:be:d3:0b:
c5:c1:4d:12:7b:6b:91:be:ae:9c:98:7a:b4:a4:58:d1:2e:38:
66:af:05:a1:66:ee:41:50:a1:5e:6f:0f:e1:9b:eb:c5:98:83:
a2:7a:54:2c:ae:c1:e5:d3:79:6e:0a:c6:00:d7:13:cb:c9:2c:
b3:f3:e3:d5:53:1d:a2:5f:a2:9d:1f:55:77:04:3c:dd:56:18:
3c:d2:79:83:5a:9d:4b:3a:ec:26:7e:06:0a:b1:0e:e4:3f:38:
40:c1:1f:3f:f5:96:21:a9:5b:ad:24:ab:f8:a1:e2:3e:e3:c1:
d9:8a:f8:f4:33:9a:91:b6:e0:37:18:85:da:c9:c6:8d:19:20:
1c:5a:cd:ab:0d:46:b4:6d:bf:c2:2e:78:bc:87:ac:49:3c:44:
10:8f:c8:1d:42:97:cd:c4:1b:eb:1f:6e:bb:42:90:7b:f2:a7:
22:0a:0c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:13:42 2025 by rpki-client