Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/d2wksXhCd5wl5AD5yX7cxgOMqWE.roa
File: d2wksXhCd5wl5AD5yX7cxgOMqWE.roa (raw, json)
Hash identifier: d845mWomVKLCLy4AeHi3nVtLKMNrF2F8tv4m480Itc0=
Subject key identifier: 77:6C:24:B1:78:42:77:9C:25:E4:00:F9:C9:7E:DC:C6:03:8C:A9:61
Certificate issuer: /CN=22c5a0c2ac3b1679499a96be31e43be85cf09953
Certificate serial: 019424B289D701D4A8711279E1EDD88CEC15
Authority key identifier: 22:C5:A0:C2:AC:3B:16:79:49:9A:96:BE:31:E4:3B:E8:5C:F0:99:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsWgwqw7FnlJmpa-MeQ76FzwmVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/d2wksXhCd5wl5AD5yX7cxgOMqWE.roa
Signing time: Thu 02 Jan 2025 01:47:47 +0000
ROA not before: Thu 02 Jan 2025 01:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20546
IP address blocks: 193.25.224.0/24 maxlen: 24
193.25.225.0/24 maxlen: 24
193.25.226.0/24 maxlen: 24
193.25.227.0/24 maxlen: 24
193.25.228.0/24 maxlen: 24
193.25.229.0/24 maxlen: 24
193.25.230.0/24 maxlen: 24
193.25.231.0/24 maxlen: 24
193.25.232.0/24 maxlen: 24
193.25.233.0/24 maxlen: 24
193.25.234.0/24 maxlen: 24
193.25.235.0/24 maxlen: 24
193.25.236.0/24 maxlen: 24
193.25.237.0/24 maxlen: 24
193.25.238.0/24 maxlen: 24
193.25.239.0/24 maxlen: 24
2001:678:9fc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/IsWgwqw7FnlJmpa-MeQ76FzwmVM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/IsWgwqw7FnlJmpa-MeQ76FzwmVM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsWgwqw7FnlJmpa-MeQ76FzwmVM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 19:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:89:d7:01:d4:a8:71:12:79:e1:ed:d8:8c:ec:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c5a0c2ac3b1679499a96be31e43be85cf09953
Validity
Not Before: Jan 2 01:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=776c24b17842779c25e400f9c97edcc6038ca961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e8:c3:0b:b0:56:9f:6b:e4:76:58:b2:74:31:
c8:6e:b5:0e:84:3e:05:67:f4:d8:77:f5:a4:2f:4f:
b0:2c:bf:37:ed:3e:a9:02:97:3e:24:56:22:23:9f:
a6:0f:fb:a3:88:88:09:d0:3d:c9:a2:8c:22:03:ff:
f0:64:a0:f7:1b:0c:3c:1e:c7:af:fc:50:45:40:c7:
d3:eb:2c:32:79:3f:b0:d2:11:38:b8:89:9e:d4:b4:
6d:02:92:ce:93:72:46:7d:eb:70:b4:dc:65:39:70:
c6:56:5f:f4:e0:a1:da:7c:55:7e:68:42:76:0b:d8:
c5:2c:7a:8e:90:5a:2b:69:9c:20:ef:f8:0c:35:89:
b3:b1:14:9d:50:a6:55:7c:1d:04:40:4b:58:d6:fe:
2c:c2:97:0b:13:cf:15:56:8c:b8:fa:3e:13:38:81:
43:b8:e3:7d:ae:ef:f8:44:9c:81:02:3e:42:75:85:
97:d2:1d:b8:c7:9a:52:df:51:93:38:23:73:f0:83:
ab:e7:a2:a3:40:80:6f:25:6e:8d:0d:94:6c:3b:ac:
84:8b:8c:b1:07:71:04:61:10:2b:cd:61:77:8d:2e:
ba:da:ef:7b:80:3c:8d:dc:2c:34:26:f9:a6:54:98:
ca:53:46:db:dd:a2:e8:54:1b:d3:40:41:2e:55:72:
02:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6C:24:B1:78:42:77:9C:25:E4:00:F9:C9:7E:DC:C6:03:8C:A9:61
X509v3 Authority Key Identifier:
keyid:22:C5:A0:C2:AC:3B:16:79:49:9A:96:BE:31:E4:3B:E8:5C:F0:99:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsWgwqw7FnlJmpa-MeQ76FzwmVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/d2wksXhCd5wl5AD5yX7cxgOMqWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/eeedf6-52c1-4a01-9097-a6cf16c85ce4/1/IsWgwqw7FnlJmpa-MeQ76FzwmVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.224.0/20
IPv6:
2001:678:9fc::/48
Signature Algorithm: sha256WithRSAEncryption
44:bd:a4:5a:7b:c5:6e:6b:98:b6:2b:f0:d6:6f:dd:e9:13:25:
69:7d:dc:fe:45:03:f8:c9:82:4b:03:ca:23:6c:3b:50:33:f8:
17:84:ae:bc:7d:c1:6f:99:c7:04:8b:3b:4b:3c:a1:da:9a:bf:
c5:54:da:ef:12:e1:00:9e:2a:6b:b6:8b:c2:97:02:7d:23:38:
3c:69:a7:5d:77:2e:a2:e0:31:87:aa:ae:04:a4:fb:a1:e5:f3:
61:95:33:1a:7e:2f:ba:aa:3e:2a:4c:38:fc:95:1e:a9:46:bd:
c4:93:c6:40:44:86:77:3f:71:87:46:3c:56:2b:47:14:4b:b2:
d5:a9:74:c2:38:99:1c:69:39:72:5e:46:ab:35:74:38:66:12:
6c:47:00:8a:48:bb:1b:92:4d:9e:2a:66:e1:79:ac:31:fd:ae:
3e:3c:5e:5a:f4:46:e5:1b:ec:54:2f:7e:81:70:00:85:a7:62:
f0:7a:ba:42:52:48:14:4f:19:bf:05:b7:aa:58:45:db:df:e9:
98:e7:08:e3:7a:61:af:3e:4b:81:0e:39:07:59:6b:b6:40:10:
69:62:60:d0:bf:3b:b8:26:dc:f1:82:39:6f:df:6d:c9:d1:46:
21:45:99:62:dd:a1:cb:97:f8:05:00:4b:54:41:ba:83:bf:9a:
d6:d7:3b:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:13:19 2025 by rpki-client