Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/50a239-d5bc-42fe-95a5-1ac08e8a8cb4/1/1ttBSna0nLfwG1nJtSGf5q_JjKk.roa
File: 1ttBSna0nLfwG1nJtSGf5q_JjKk.roa (raw, json)
Hash identifier: m74pjqodozkLHsQi98B9EOi05a8gpyyAWgkyD/Vzf2c=
Subject key identifier: D6:DB:41:4A:76:B4:9C:B7:F0:1B:59:C9:B5:21:9F:E6:AF:C9:8C:A9
Certificate issuer: /CN=9a6c0b9fb13f4316ed6ca3f86ffc7185c09db3d7
Certificate serial: 019421439424E74B4D48418103630B97E104
Authority key identifier: 9A:6C:0B:9F:B1:3F:43:16:ED:6C:A3:F8:6F:FC:71:85:C0:9D:B3:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mmwLn7E_QxbtbKP4b_xxhcCds9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/50a239-d5bc-42fe-95a5-1ac08e8a8cb4/1/1ttBSna0nLfwG1nJtSGf5q_JjKk.roa
Signing time: Wed 01 Jan 2025 09:47:44 +0000
ROA not before: Wed 01 Jan 2025 09:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198134
IP address blocks: 193.161.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/50a239-d5bc-42fe-95a5-1ac08e8a8cb4/1/mmwLn7E_QxbtbKP4b_xxhcCds9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/50a239-d5bc-42fe-95a5-1ac08e8a8cb4/1/mmwLn7E_QxbtbKP4b_xxhcCds9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/mmwLn7E_QxbtbKP4b_xxhcCds9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:94:24:e7:4b:4d:48:41:81:03:63:0b:97:e1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a6c0b9fb13f4316ed6ca3f86ffc7185c09db3d7
Validity
Not Before: Jan 1 09:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d6db414a76b49cb7f01b59c9b5219fe6afc98ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f2:69:b0:14:07:8b:fc:71:1f:9f:d2:51:de:
a8:95:5d:57:9a:09:ad:9c:08:fd:d9:60:ff:31:ae:
5a:06:42:79:96:61:90:e9:09:84:f8:b1:02:65:0c:
1f:be:da:74:28:92:ad:74:8e:44:82:7c:2e:8e:51:
da:c9:d7:23:af:f9:41:98:e4:e5:fe:2c:c9:55:66:
03:12:c6:3f:26:da:5a:de:fe:78:a5:8f:1a:e3:14:
57:0a:ea:98:a7:ea:18:d5:0f:7f:f6:0e:c3:8b:84:
7c:1f:17:f3:d7:13:41:fc:23:3c:45:29:0c:92:4c:
29:05:0b:77:20:d4:57:2b:80:14:60:3e:1d:54:24:
06:03:a0:db:11:3a:94:a6:72:8c:05:b7:a8:c5:07:
60:06:48:43:e8:1c:ff:e2:4b:ed:97:6e:82:8e:0c:
9d:e0:84:7b:b6:42:03:1e:aa:02:d0:03:06:19:cc:
46:b0:a6:da:19:0d:f1:f0:ad:63:a8:44:df:72:ce:
2b:6e:63:ad:78:1c:b4:72:de:2e:aa:75:f6:4b:bf:
83:c8:54:85:0c:37:fd:23:26:e6:06:87:61:e1:9e:
8e:39:4f:8f:2d:7c:dd:c0:a7:0f:c5:6d:d2:c6:a9:
10:2d:83:7a:23:1b:88:c6:6a:7b:4c:03:0f:db:5a:
cb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:DB:41:4A:76:B4:9C:B7:F0:1B:59:C9:B5:21:9F:E6:AF:C9:8C:A9
X509v3 Authority Key Identifier:
keyid:9A:6C:0B:9F:B1:3F:43:16:ED:6C:A3:F8:6F:FC:71:85:C0:9D:B3:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mmwLn7E_QxbtbKP4b_xxhcCds9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/50a239-d5bc-42fe-95a5-1ac08e8a8cb4/1/1ttBSna0nLfwG1nJtSGf5q_JjKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/50a239-d5bc-42fe-95a5-1ac08e8a8cb4/1/mmwLn7E_QxbtbKP4b_xxhcCds9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.161.193.0/24
Signature Algorithm: sha256WithRSAEncryption
62:39:07:0f:2b:7a:86:15:f0:53:d1:4a:e4:9b:77:5b:0f:06:
95:e1:80:fa:32:e2:9d:8b:28:ad:4f:6c:c6:28:dd:db:ea:42:
ab:0d:75:ec:1f:50:4a:d9:63:2f:c4:bd:9b:bf:47:a6:0f:69:
0a:a7:95:cb:94:5d:5e:b5:c9:15:74:50:d4:ea:8d:73:19:97:
56:8d:f7:a3:ef:ea:83:73:61:9e:fd:f5:b1:d2:9b:03:46:1e:
4b:68:c3:29:52:c5:de:ca:8e:a5:5a:fc:95:e0:04:f5:c7:3f:
ca:5d:2e:f3:54:de:91:91:b8:c4:75:bc:1a:c1:af:0f:5c:34:
bf:41:a5:e1:ca:d4:5c:db:a7:9e:29:1a:7a:cc:07:e6:aa:b6:
0c:b5:65:f8:10:d4:f8:cc:9d:17:c4:f1:0a:6e:95:fc:d0:57:
67:61:e6:a6:db:c4:22:0f:71:db:38:a9:8e:15:f9:f4:7a:a2:
a3:cf:8f:29:84:d7:33:6e:e3:b7:18:62:75:30:f1:11:92:17:
27:6b:02:7f:14:ad:ab:a9:3e:27:23:9e:e8:aa:5b:9a:ef:0f:
f3:2a:87:5f:e8:28:4e:d9:fe:2c:45:d8:8e:55:47:64:17:0a:
9b:dc:4b:3c:63:1e:62:5d:40:b4:4c:56:6e:ce:4c:b5:da:0f:
ee:a9:11:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:27:56 2025 by rpki-client