Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/50QBDzaaWAWirDv35AlJpGDh488.roa
File: 50QBDzaaWAWirDv35AlJpGDh488.roa (raw, json)
Hash identifier: U9zp626nKKun30mCMXd5d52t9o6/HWZq00zHsZoBgiw=
Subject key identifier: E7:44:01:0F:36:9A:58:05:A2:AC:3B:F7:E4:09:49:A4:60:E1:E3:CF
Certificate issuer: /CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81
Certificate serial: 0194228DB388BB6476BBC8C92D4A5B2BE5C9
Authority key identifier: 69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/50QBDzaaWAWirDv35AlJpGDh488.roa
Signing time: Wed 01 Jan 2025 15:48:19 +0000
ROA not before: Wed 01 Jan 2025 15:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 2a01:e287::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.mft
rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 09:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:b3:88:bb:64:76:bb:c8:c9:2d:4a:5b:2b:e5:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81
Validity
Not Before: Jan 1 15:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e744010f369a5805a2ac3bf7e40949a460e1e3cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8a:8e:2f:33:6e:4b:10:de:7d:0d:22:99:9a:
60:cd:81:19:15:6b:84:b1:88:d4:d7:21:3e:23:72:
57:a4:9a:e8:53:13:b7:db:7f:2b:b9:be:88:c9:06:
1d:52:01:b5:68:96:88:ab:d0:a7:69:e6:84:51:c4:
d3:89:f7:14:89:2d:40:a7:32:28:ab:3c:64:86:4c:
8c:2f:2c:1e:76:50:8d:c5:42:8a:b5:94:bb:c7:1c:
94:a0:48:82:49:69:53:94:9a:6e:94:fd:2a:da:39:
d9:64:b7:a5:ae:39:6c:8d:44:2a:b0:97:5d:af:86:
da:70:b7:30:19:ae:0a:f8:44:b2:17:e5:02:52:f6:
db:1c:7b:2c:cb:db:34:9a:51:6f:76:8c:2d:cb:c5:
0a:19:30:3b:cf:e0:5a:e8:cf:da:75:2f:ae:3e:b1:
dc:29:af:40:aa:6a:57:dd:08:1c:2d:69:f9:26:31:
58:5b:65:90:a3:d3:ce:dc:a3:4f:1b:06:34:90:e6:
eb:76:12:16:7a:c6:ed:43:f6:5f:2a:9f:5b:2c:2a:
da:43:52:3d:b5:dc:9e:61:c6:a7:2c:6a:9a:6d:dd:
60:40:4b:49:a3:4d:22:d6:b0:ed:d9:3f:84:38:c8:
b9:e4:cd:f3:20:27:10:64:a9:79:9e:b6:04:4d:81:
12:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:44:01:0F:36:9A:58:05:A2:AC:3B:F7:E4:09:49:A4:60:E1:E3:CF
X509v3 Authority Key Identifier:
keyid:69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/50QBDzaaWAWirDv35AlJpGDh488.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:e287::/32
Signature Algorithm: sha256WithRSAEncryption
7c:9e:82:18:9b:20:14:14:73:b8:ea:42:fd:05:7b:6b:20:67:
84:63:7a:c6:20:53:21:fb:fe:9d:38:e4:51:20:a1:e2:95:3d:
53:94:f9:39:46:11:1f:a5:36:82:a3:ab:51:7f:3f:11:09:0d:
10:73:33:fd:5d:57:a0:0d:bf:18:a6:07:ef:cc:e9:80:9b:aa:
06:5b:e5:61:15:c6:ad:35:41:6c:68:b4:ac:1d:ea:8c:f2:8a:
07:f3:b1:4e:a5:21:b2:fd:aa:e2:04:37:04:8e:4c:94:65:2a:
b0:19:4f:14:cc:2d:33:4d:83:5d:c9:56:aa:2b:b1:79:2b:7e:
aa:b2:ba:1b:13:20:62:fd:e4:ba:39:62:9c:2a:ab:e2:a4:ca:
61:ae:65:c1:a0:01:b2:18:82:96:8a:e8:46:4c:ea:b6:3c:6c:
4f:e6:18:d0:fb:7b:3f:ee:74:01:9a:20:05:fd:35:57:00:6b:
fe:f5:1d:6a:2b:0b:23:e1:e7:13:ed:2d:10:40:db:66:75:47:
44:4a:7a:65:a2:43:d8:49:db:54:0b:d4:a9:d1:4a:6d:da:15:
d2:59:30:40:37:66:5b:c8:d4:80:c5:18:61:5f:a5:a2:da:3d:
ab:94:b5:6f:72:aa:19:37:aa:02:97:eb:d7:b8:f2:d2:86:48:
63:b6:2b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:45:58 2025 by rpki-client