Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/elIaIJuXbpWatRWeZpRoJLAB6RM.roa
File: elIaIJuXbpWatRWeZpRoJLAB6RM.roa (raw, json)
Hash identifier: QMxGtNIR9eV06fnxcnLZU8NRPRckOjRHuOBGgCXj72Q=
Subject key identifier: 7A:52:1A:20:9B:97:6E:95:9A:B5:15:9E:66:94:68:24:B0:01:E9:13
Certificate issuer: /CN=568ae803b9ba38855401827b3eece14505a9c0f6
Certificate serial: 019421444B1C38E14E4C3ED7B5815B9E9B80
Authority key identifier: 56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/elIaIJuXbpWatRWeZpRoJLAB6RM.roa
Signing time: Wed 01 Jan 2025 09:48:31 +0000
ROA not before: Wed 01 Jan 2025 09:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44270
IP address blocks: 79.141.212.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:4b:1c:38:e1:4e:4c:3e:d7:b5:81:5b:9e:9b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568ae803b9ba38855401827b3eece14505a9c0f6
Validity
Not Before: Jan 1 09:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a521a209b976e959ab5159e66946824b001e913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ec:16:b3:28:fd:c8:0a:1b:b7:4c:2e:4d:ec:
22:69:74:55:f4:f6:1a:76:a2:b0:8d:b6:c2:59:cf:
81:30:30:b5:d8:a5:df:eb:42:30:31:e1:bb:b6:3d:
61:54:64:19:5d:32:e0:74:6b:ae:ca:68:53:6a:4d:
fb:55:9a:6c:fc:1b:5e:ab:b5:99:37:37:98:57:4d:
1e:ce:e0:04:cc:92:0e:19:44:15:6e:24:46:b9:58:
60:98:59:a4:06:cd:f9:47:31:5b:81:45:b8:9c:7b:
6a:a3:0e:8b:92:05:9f:c0:66:b4:d2:f6:8a:aa:7c:
b4:9b:96:3e:f3:8d:bd:cf:2e:87:57:8a:89:45:35:
5c:c3:09:01:31:ae:00:65:6b:47:3e:84:1d:fd:af:
89:50:ad:e4:d9:56:5b:85:4c:1b:41:15:b1:3e:5c:
41:f8:c4:91:20:3c:d2:06:c4:38:14:51:18:fd:cc:
3d:96:a5:a1:c0:86:c1:49:a1:aa:af:d0:10:44:1f:
96:c9:36:7a:46:f2:0e:97:0f:5c:07:0f:a5:ad:07:
c6:b1:2d:7d:bc:01:a4:9c:dd:74:2c:33:fb:08:50:
ec:3a:83:c0:a2:e6:3d:4b:f0:a0:4e:df:78:61:d4:
59:7a:c3:50:92:9a:ae:27:64:07:2e:f8:2d:c8:59:
46:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:52:1A:20:9B:97:6E:95:9A:B5:15:9E:66:94:68:24:B0:01:E9:13
X509v3 Authority Key Identifier:
keyid:56:8A:E8:03:B9:BA:38:85:54:01:82:7B:3E:EC:E1:45:05:A9:C0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VoroA7m6OIVUAYJ7PuzhRQWpwPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/elIaIJuXbpWatRWeZpRoJLAB6RM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/278d5f-9ee6-4477-9fe0-8eae8b75e9ca/1/VoroA7m6OIVUAYJ7PuzhRQWpwPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.141.212.0/22
Signature Algorithm: sha256WithRSAEncryption
00:7a:ac:18:db:fe:36:fc:94:4d:11:f7:b3:ae:7e:b3:e5:31:
84:ea:30:8f:35:36:b7:41:dc:92:c6:9c:0a:51:61:50:97:b9:
fa:4a:20:96:ca:e9:06:eb:d9:58:d9:c0:bd:8f:73:4c:0f:4a:
a5:5b:d3:35:f3:1e:7c:57:76:98:45:ce:71:9c:9e:c3:9c:67:
6f:fa:79:5d:e3:c3:c6:f8:7f:2c:e4:8c:22:41:3d:79:85:89:
cb:e1:52:f1:47:83:29:2e:82:e7:45:ff:0e:9d:15:02:0e:75:
b0:b3:7d:0e:dd:7f:8a:0b:0c:4c:47:4a:fc:ee:53:dc:26:df:
7d:46:ff:09:8a:1c:b5:06:95:7f:26:12:0b:c8:75:22:e4:01:
94:68:bf:de:32:1b:fa:6d:b9:41:61:86:6e:8c:0c:06:a9:c4:
a3:fa:9d:66:37:76:a9:ff:e3:b6:cd:3f:c5:ee:88:d0:ec:58:
32:25:80:c6:0d:a7:b6:42:a3:67:d8:05:b2:e2:0c:3e:cd:98:
a2:5f:23:52:64:1b:c9:ba:57:a2:d8:06:6b:d8:b2:c3:4d:93:
a8:6e:3a:14:c6:e0:67:51:df:20:41:46:36:18:9f:d7:24:5b:
89:36:c0:a9:4f:81:fc:58:18:7e:2f:70:a1:11:f4:63:3e:5d:
87:13:e1:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:42:59 2025 by rpki-client