
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/qtSFhSVXD3loe4iYCp27H6WqPO8.roa
File: qtSFhSVXD3loe4iYCp27H6WqPO8.roa (raw, json)
Hash identifier: dM5n2vL+0Slh2GrDt9ahN7jhYGcuB7d0O5MXI/IkDvE=
Subject key identifier: AA:D4:85:85:25:57:0F:79:68:7B:88:98:0A:9D:BB:1F:A5:AA:3C:EF
Certificate issuer: /CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81
Certificate serial: 0194228DB8053D8CF04684D352A9D81FF1A6
Authority key identifier: 69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/qtSFhSVXD3loe4iYCp27H6WqPO8.roa
Signing time: Wed 01 Jan 2025 15:48:20 +0000
ROA not before: Wed 01 Jan 2025 15:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 2a01:e281:b100::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.mft
rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:b8:05:3d:8c:f0:46:84:d3:52:a9:d8:1f:f1:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69dbe1e7d9e87d68701a4035a76c51bfecd88d81
Validity
Not Before: Jan 1 15:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aad4858525570f79687b88980a9dbb1fa5aa3cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:db:42:1e:fa:22:e2:1a:f0:21:90:b3:65:95:
1a:55:77:71:52:39:26:cd:b9:b7:49:36:1d:d7:27:
cb:97:df:63:19:cd:ba:35:f6:68:41:06:01:62:16:
92:4d:81:53:81:23:39:43:82:00:88:4e:7c:92:80:
cf:93:2b:fe:f5:e9:10:1d:3b:37:e4:02:c7:9b:0d:
06:f3:40:97:db:ea:96:85:24:10:54:f0:74:03:87:
a0:d9:5d:fc:cf:78:f8:f0:fe:28:a7:67:59:eb:63:
24:a8:bb:00:f5:16:93:aa:17:40:89:1a:92:be:2d:
6e:5c:4c:b1:b0:71:c1:ef:eb:69:25:43:72:16:7a:
5c:2d:16:2f:c0:9d:f3:e0:64:57:c2:7f:81:4c:ba:
de:86:ad:09:53:2a:92:d1:ab:33:c6:5d:22:43:83:
db:e8:d1:98:ab:0e:7e:bd:26:d5:9d:4b:38:f6:4f:
bb:6c:43:aa:26:4a:84:98:ee:dc:7a:7d:e4:4f:70:
38:d0:a5:cc:70:f9:49:64:b5:ab:4e:18:eb:6b:75:
94:5e:6f:02:12:aa:a7:34:0f:ff:76:9b:1e:88:ca:
d9:2e:d7:c3:82:f7:fb:e0:fa:04:81:5c:bf:57:fd:
71:ec:47:c0:96:8c:9d:17:d9:c5:d4:a6:87:c2:c1:
02:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D4:85:85:25:57:0F:79:68:7B:88:98:0A:9D:BB:1F:A5:AA:3C:EF
X509v3 Authority Key Identifier:
keyid:69:DB:E1:E7:D9:E8:7D:68:70:1A:40:35:A7:6C:51:BF:EC:D8:8D:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/advh59nofWhwGkA1p2xRv-zYjYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/qtSFhSVXD3loe4iYCp27H6WqPO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/727015-e14e-4d41-b05b-8d94553b75e1/1/advh59nofWhwGkA1p2xRv-zYjYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:e281:b100::/40
Signature Algorithm: sha256WithRSAEncryption
50:75:91:99:7a:e2:c3:99:4b:dc:91:70:78:31:b3:58:f4:6c:
28:76:43:c8:53:ff:10:5b:a2:9d:d3:3f:cf:43:d9:b9:e2:69:
53:84:63:27:2f:11:9a:aa:6d:5d:3f:20:c4:f5:a6:22:f1:bc:
59:8d:2c:cc:6e:30:7b:7f:d0:af:01:22:1c:92:a7:f9:00:78:
a1:fe:50:e1:fb:2a:4f:ed:65:f9:c1:9d:15:3b:6d:fd:41:64:
e5:a5:e6:09:34:53:79:30:c8:98:e4:7f:e1:a5:97:0d:39:e0:
24:7b:3c:fa:f0:07:a5:6f:81:85:c0:1b:3f:5d:96:38:5b:d5:
cc:66:cd:6b:c4:07:fb:28:27:e6:1b:70:47:68:37:09:58:cb:
9a:9d:32:eb:cf:7e:9d:ee:b9:8b:04:69:57:5f:5c:a8:0a:d8:
57:e5:8d:bb:11:5a:e2:6b:8a:60:7e:c6:39:ab:86:8a:bf:4f:
35:e8:54:d3:5c:32:78:e5:1f:cf:3e:73:bc:9a:b8:3e:9a:9b:
73:ef:5f:44:49:09:7a:b7:ae:84:3a:21:15:4e:93:8c:b1:cf:
67:91:7b:8b:ff:43:9d:47:24:ac:c2:e5:0a:ce:e9:05:56:79:
78:9e:f7:f4:d0:3b:5d:b2:bd:3a:0a:cc:f3:1f:7c:8a:39:c5:
42:13:3a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:15:13 2025 by rpki-client