Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/4ZMkun0YVKsQhMtugX5PoEy0_rI.roa
File: 4ZMkun0YVKsQhMtugX5PoEy0_rI.roa (raw, json)
Hash identifier: fKBmMFAsGdJAHOCtTHbLGukOIg/BNTMMvT6hLSCBWOk=
Subject key identifier: E1:93:24:BA:7D:18:54:AB:10:84:CB:6E:81:7E:4F:A0:4C:B4:FE:B2
Certificate issuer: /CN=b78cddbfc76bda26a029ea80c8987798745f1f02
Certificate serial: 019425223383FB4D922A8A6153013CF1F944
Authority key identifier: B7:8C:DD:BF:C7:6B:DA:26:A0:29:EA:80:C8:98:77:98:74:5F:1F:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4zdv8dr2iagKeqAyJh3mHRfHwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/4ZMkun0YVKsQhMtugX5PoEy0_rI.roa
Signing time: Thu 02 Jan 2025 03:49:45 +0000
ROA not before: Thu 02 Jan 2025 03:49:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 185.215.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/t4zdv8dr2iagKeqAyJh3mHRfHwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/t4zdv8dr2iagKeqAyJh3mHRfHwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/t4zdv8dr2iagKeqAyJh3mHRfHwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 18:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:33:83:fb:4d:92:2a:8a:61:53:01:3c:f1:f9:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b78cddbfc76bda26a029ea80c8987798745f1f02
Validity
Not Before: Jan 2 03:49:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e19324ba7d1854ab1084cb6e817e4fa04cb4feb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fb:64:56:57:09:8d:bd:a9:22:cb:17:02:39:
c6:4b:68:46:bf:67:b6:f9:3a:22:1e:eb:7d:85:58:
47:16:09:43:9b:93:80:4e:7f:60:f4:2d:7f:ee:f5:
ba:a7:be:11:22:4a:eb:69:bf:4f:3a:c2:be:54:65:
bf:b8:fa:0f:9d:05:85:ba:a9:94:f3:3e:55:3e:a4:
3b:3a:0a:5e:4d:7c:d2:c5:a1:57:33:f8:76:31:3d:
6d:c0:7c:10:6e:3b:0e:b2:19:b1:e7:25:65:ac:92:
3d:fe:0c:84:f1:22:22:99:5a:e3:b9:ff:2b:21:8a:
df:b7:9b:59:7b:aa:40:d3:e3:14:b3:4a:66:e1:17:
b7:90:02:38:35:bd:7f:9b:df:91:98:3e:9c:00:58:
0a:90:4f:1e:0e:16:79:63:50:bd:aa:0b:23:d4:01:
22:cf:ab:9f:dd:cf:fc:e4:b2:e8:c5:4d:51:6a:c6:
68:42:28:8d:b2:d3:60:02:39:c6:da:6e:bc:22:f1:
35:6e:5a:fc:d3:67:27:26:df:9e:5d:44:94:f3:48:
b1:53:61:4a:56:a5:76:25:e2:b9:fc:88:0a:04:e9:
e5:c2:ee:d7:59:25:ae:27:8a:b5:60:0d:16:5e:f3:
4d:6e:e8:0b:3a:b3:be:39:f7:07:89:91:7c:2d:3e:
2c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:93:24:BA:7D:18:54:AB:10:84:CB:6E:81:7E:4F:A0:4C:B4:FE:B2
X509v3 Authority Key Identifier:
keyid:B7:8C:DD:BF:C7:6B:DA:26:A0:29:EA:80:C8:98:77:98:74:5F:1F:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4zdv8dr2iagKeqAyJh3mHRfHwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/4ZMkun0YVKsQhMtugX5PoEy0_rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/30b8e9-e7d4-40cc-ad5f-3c741220ea00/1/t4zdv8dr2iagKeqAyJh3mHRfHwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.115.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:cb:03:a5:0a:75:d2:36:78:59:96:55:63:aa:74:10:c5:79:
b5:b5:a7:07:ac:60:fc:75:4f:87:62:61:29:30:1a:19:52:01:
d5:d4:21:6b:58:63:ca:d4:70:ea:ac:5c:6a:c3:c8:15:57:07:
69:0b:b5:bc:ef:f6:e3:c4:cd:33:e0:f1:3b:5a:a5:69:14:e9:
8f:49:2d:10:0a:81:db:61:15:c4:b9:b0:c8:18:e1:63:89:ba:
1e:d1:1e:6b:34:c4:1f:3e:36:ad:cc:42:e9:38:39:d4:46:39:
08:eb:a8:ed:c5:8b:c3:93:b0:28:d5:ad:c8:59:16:6c:1b:25:
76:32:02:47:e1:49:03:42:86:38:a5:3f:39:22:40:e7:9a:d7:
fe:81:d1:0d:4c:19:e7:ab:d6:01:41:0a:4d:b3:6c:92:71:c1:
49:5c:c8:30:31:70:89:5a:da:8c:3e:af:00:ff:e8:4b:61:21:
51:dc:4b:cf:ec:43:fa:9e:e4:07:ab:2a:d3:1c:f3:60:36:19:
7a:9a:77:51:27:22:b1:cd:89:b0:fd:47:ca:15:32:3b:ab:0e:
95:66:d5:37:68:8a:22:c5:14:d7:7a:1b:d4:c4:dc:ec:6c:45:
9b:ab:fc:28:45:db:5a:02:10:a8:16:fa:5a:c8:c7:ae:c7:78:
8a:2a:c8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:50:22 2025 by rpki-client