Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ARPOR4w5C56twXv0UOdYph__Xi4.roa
File: ARPOR4w5C56twXv0UOdYph__Xi4.roa (raw, json)
Hash identifier: JURGDr0gPg4Q3jfQmklkWuZiIjDPN/WZaiImaFDf+fg=
Subject key identifier: 01:13:CE:47:8C:39:0B:9E:AD:C1:7B:F4:50:E7:58:A6:1F:FF:5E:2E
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01942826AD0B736D856D10B2AE3B2D5B083C
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ARPOR4w5C56twXv0UOdYph__Xi4.roa
Signing time: Thu 02 Jan 2025 17:53:30 +0000
ROA not before: Thu 02 Jan 2025 17:53:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19437
IP address blocks: 84.32.40.0/24 maxlen: 24
88.216.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 02:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:ad:0b:73:6d:85:6d:10:b2:ae:3b:2d:5b:08:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 2 17:53:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0113ce478c390b9eadc17bf450e758a61fff5e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ba:08:34:f7:e1:cf:c4:75:07:37:f0:66:c7:
22:01:2b:3e:1d:26:83:73:68:1b:da:b5:da:27:5f:
31:dd:ac:18:fb:02:ba:d5:36:4e:b3:9a:a1:29:9f:
15:f8:f2:3e:c5:f4:2e:e5:02:13:1f:fd:a1:46:d1:
95:23:79:ba:7a:2c:57:3b:d7:96:5e:0e:dc:f1:20:
43:57:cb:7f:3e:d4:1e:7e:b6:e2:b4:82:bd:d9:1d:
f8:7b:22:84:39:07:fc:9e:9a:1d:7b:74:aa:0f:fe:
99:5e:93:c6:be:83:ef:32:cd:aa:41:4b:2f:a7:ca:
d0:86:54:a1:49:2a:ca:28:d5:87:83:5c:9f:bf:f0:
6d:fe:56:de:ef:fa:86:ae:1c:e2:29:2b:7a:d0:04:
2d:66:35:cf:52:3e:f5:ec:1b:86:34:0c:8c:8e:dd:
c9:b6:82:23:fa:e7:87:74:1e:4a:d7:b9:a1:7b:99:
10:06:e4:68:bd:5f:8a:66:53:c0:60:9d:01:42:10:
91:ae:8b:89:bb:55:7f:1b:09:81:01:76:00:f1:b9:
65:42:76:e5:e6:bd:48:95:f8:12:41:06:28:63:f4:
38:7a:51:1c:51:09:1b:87:a9:63:34:05:cb:3d:ee:
71:16:b8:fa:5c:c0:87:b6:36:bd:c1:18:89:1d:11:
81:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:13:CE:47:8C:39:0B:9E:AD:C1:7B:F4:50:E7:58:A6:1F:FF:5E:2E
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ARPOR4w5C56twXv0UOdYph__Xi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.40.0/24
88.216.133.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:19:4a:57:6a:09:b8:d5:52:a4:ef:6c:1d:a6:65:6d:f5:3a:
8b:a2:fb:59:1b:0e:03:36:d0:c8:55:ff:5a:c5:43:1a:9d:6a:
97:d9:a6:45:15:e3:ea:88:33:1d:ff:10:03:75:95:5d:ea:6c:
a6:06:25:c2:b4:c5:0d:9b:d6:77:a5:fa:50:22:c2:32:0d:98:
d3:ec:bf:a1:db:f1:a9:37:6c:83:1e:8b:ae:a2:82:4b:cc:1c:
a7:a6:ff:70:1c:af:6e:55:7c:0f:c2:7d:ea:2a:ac:2c:f6:33:
bc:91:1f:d3:b9:06:1f:23:20:2f:26:72:94:cf:e9:63:82:d3:
dc:c0:7f:d5:63:3c:68:97:98:da:02:0a:6f:ff:54:c4:a0:d0:
d9:55:00:9e:9a:03:4d:f3:35:5e:de:63:71:52:13:07:9f:94:
5a:8f:c2:ea:4e:df:48:66:02:6e:f4:a4:6d:46:b8:95:d4:db:
02:55:3b:5a:ac:8b:01:16:3e:d6:a6:7f:53:c3:ba:a7:6c:dd:
a2:11:e8:b2:f5:e2:6e:26:49:83:4e:7a:34:58:0b:93:75:0d:
d3:9d:a1:01:6c:bd:7b:0f:c7:3a:11:c9:d9:07:15:06:ea:26:
a7:bc:79:6f:3a:64:a3:02:21:6b:f3:4d:8d:96:35:b7:ed:b0:
7d:dc:48:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:38:25 2025 by rpki-client