Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/m6E5AD8wpEBEEQ77d1tMbWvBITQ.roa
File: m6E5AD8wpEBEEQ77d1tMbWvBITQ.roa (raw, json)
Hash identifier: mggrbaaSW2ESSjaD/emCk5C8EL7zyXuegQnueWT+nQk=
Subject key identifier: 9B:A1:39:00:3F:30:A4:40:44:11:0E:FB:77:5B:4C:6D:6B:C1:21:34
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 0196AA61AE99C814F10E03DD6D1AA3FFA979
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/m6E5AD8wpEBEEQ77d1tMbWvBITQ.roa
Signing time: Wed 07 May 2025 10:54:10 +0000
ROA not before: Wed 07 May 2025 10:54:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42337
IP address blocks: 46.148.38.0/24 maxlen: 24
46.148.41.0/24 maxlen: 24
46.148.43.0/24 maxlen: 24
46.148.44.0/24 maxlen: 24
46.148.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:61:ae:99:c8:14:f1:0e:03:dd:6d:1a:a3:ff:a9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: May 7 10:54:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ba139003f30a44044110efb775b4c6d6bc12134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:49:9b:19:a9:ce:53:09:4f:58:fc:88:08:75:
3a:82:bc:f5:1e:e8:41:27:27:e9:4e:ea:f4:98:4f:
2f:97:4c:05:a1:ec:f4:2a:84:99:09:74:35:5a:16:
fb:e0:c9:5e:30:bf:1e:55:92:89:c9:05:ab:57:1d:
6a:ed:f4:3a:e9:1f:14:03:f5:dd:5d:e8:ad:54:9c:
11:14:06:7e:6b:65:a8:56:6f:94:86:dd:4a:cf:c4:
6b:8f:f4:3d:f0:aa:b4:85:7d:f3:d0:88:c0:38:9b:
d7:9b:8f:eb:3f:0a:da:17:41:d7:3f:33:50:de:cf:
6d:27:f0:36:26:6b:1a:11:df:92:2e:6b:c8:bb:1b:
b3:64:87:0e:8f:6e:1d:4b:5c:b0:37:62:f6:50:3a:
3f:79:c8:2b:a0:06:4b:b4:0b:ed:58:a2:1e:41:90:
18:18:a9:c9:a7:fc:21:fe:31:8c:48:b5:c2:75:10:
4e:e2:38:76:19:d2:e6:f4:f0:0b:2d:17:a1:92:5f:
6d:3b:72:4e:7f:13:eb:ff:54:c8:75:17:bf:29:a0:
40:38:c3:c5:88:47:38:d2:0d:be:c2:54:15:f1:17:
09:a4:74:94:a2:ca:86:c0:ab:5f:22:59:31:39:0c:
df:58:53:18:99:e9:b7:93:63:b1:17:4e:1d:eb:15:
cb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A1:39:00:3F:30:A4:40:44:11:0E:FB:77:5B:4C:6D:6B:C1:21:34
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/m6E5AD8wpEBEEQ77d1tMbWvBITQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.38.0/24
46.148.41.0/24
46.148.43.0-46.148.44.255
46.148.46.0/24
Signature Algorithm: sha256WithRSAEncryption
06:7e:d5:40:e4:69:0e:cd:e6:32:a6:a7:8b:f3:69:92:94:bb:
a0:a5:ac:aa:e3:d1:0a:2f:de:4c:dd:5f:37:93:38:39:23:f3:
1a:de:00:56:ec:5a:e7:c0:a6:41:9d:bc:f5:f7:38:c3:8d:bf:
1f:2e:47:7b:47:a2:1f:49:e0:ef:1f:b1:03:e0:68:ba:f2:8b:
d8:aa:02:d7:b2:5b:e4:0a:75:f7:8c:cc:cc:53:14:17:cb:86:
c5:26:a2:2c:51:be:48:a6:6d:72:7e:71:ea:c2:41:44:58:99:
44:c7:09:24:ab:a7:5e:2c:9d:b9:51:2c:64:5e:cc:4f:c1:b9:
0f:85:27:63:99:c2:95:21:2d:a1:87:6f:46:17:e5:0a:02:28:
01:4c:30:63:02:0f:e6:5a:d9:91:8a:de:6f:bd:63:9c:52:5c:
7b:61:70:17:cd:78:77:4a:29:d9:5b:b1:98:8f:5b:cd:a7:fd:
b7:ea:2b:78:4b:ff:74:53:cd:5d:b3:04:82:1b:7b:20:51:02:
51:92:cf:18:56:77:3d:61:0f:a4:44:df:e1:9b:0e:28:8c:a1:
86:27:13:0e:b4:2c:06:a7:ff:86:a8:22:31:1b:1a:99:40:ed:
31:6e:dd:43:12:d5:5a:bd:6c:b0:f9:08:bc:ea:1c:2b:8c:38:
27:83:d3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:18:34 2025 by rpki-client