Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e0925e-47bf-4907-bcbc-fd9f36a8ba6e/1/qzYfqleKMXziWfjI2OhKWSLGXWI.roa
File: qzYfqleKMXziWfjI2OhKWSLGXWI.roa (raw, json)
Hash identifier: TK9bijwIRNWSf6A7SMNJb8WGXN3cTGP9yogtHb8815I=
Subject key identifier: AB:36:1F:AA:57:8A:31:7C:E2:59:F8:C8:D8:E8:4A:59:22:C6:5D:62
Certificate issuer: /CN=331e7784f60ac8d969b81cf5231cd9dc087ced32
Certificate serial: 019425FCC7143C41FDF7E7DEB86B7EAE04FD
Authority key identifier: 33:1E:77:84:F6:0A:C8:D9:69:B8:1C:F5:23:1C:D9:DC:08:7C:ED:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mx53hPYKyNlpuBz1IxzZ3Ah87TI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e0925e-47bf-4907-bcbc-fd9f36a8ba6e/1/qzYfqleKMXziWfjI2OhKWSLGXWI.roa
Signing time: Thu 02 Jan 2025 07:48:30 +0000
ROA not before: Thu 02 Jan 2025 07:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39545
IP address blocks: 46.247.0.0/19 maxlen: 19
46.247.110.0/23 maxlen: 23
46.247.112.0/20 maxlen: 20
77.89.128.0/18 maxlen: 18
77.89.145.0/24 maxlen: 24
89.105.96.0/19 maxlen: 19
2a00:f18::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/e0925e-47bf-4907-bcbc-fd9f36a8ba6e/1/Mx53hPYKyNlpuBz1IxzZ3Ah87TI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/e0925e-47bf-4907-bcbc-fd9f36a8ba6e/1/Mx53hPYKyNlpuBz1IxzZ3Ah87TI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mx53hPYKyNlpuBz1IxzZ3Ah87TI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:c7:14:3c:41:fd:f7:e7:de:b8:6b:7e:ae:04:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331e7784f60ac8d969b81cf5231cd9dc087ced32
Validity
Not Before: Jan 2 07:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ab361faa578a317ce259f8c8d8e84a5922c65d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7f:4a:05:d5:de:6c:73:1b:46:f6:d4:60:78:
6a:eb:1b:2a:f7:5d:08:b3:c7:ff:e1:fd:ba:8d:ef:
f6:a6:c6:6d:7f:55:f6:79:df:4d:1a:de:bc:a4:81:
0a:2a:a0:70:78:96:a6:87:44:9b:cc:91:da:56:1c:
e7:f1:40:22:cf:b6:dd:94:63:78:1e:9f:d2:84:eb:
dd:ab:cb:c1:78:da:b5:53:49:c8:8b:58:00:c6:22:
f1:12:e7:8a:fd:71:c4:86:fb:f6:1f:ec:e1:07:5a:
db:39:1d:de:c3:5d:92:92:bb:b1:50:29:da:11:1b:
6e:f2:2b:b0:29:e5:ce:25:9b:a5:c3:89:85:61:01:
90:df:a7:7d:5a:b5:19:a9:68:12:ee:8a:26:28:3e:
72:01:24:30:33:2c:99:6f:c8:51:67:2b:d1:49:df:
bf:c0:be:a8:25:ba:cf:8c:7d:00:a9:be:f2:d9:03:
5b:13:6d:97:12:6a:ee:3e:d7:75:fe:77:47:57:01:
f7:b9:21:f3:97:71:43:85:0c:38:9b:db:22:e9:c9:
66:81:83:07:1d:71:d7:03:3c:8f:8f:f8:17:11:5e:
cf:35:67:8b:de:8a:35:c5:2f:f9:4b:dc:e3:f8:8d:
ad:06:c5:31:9f:da:8c:7a:42:84:cc:08:2b:cb:62:
a8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:36:1F:AA:57:8A:31:7C:E2:59:F8:C8:D8:E8:4A:59:22:C6:5D:62
X509v3 Authority Key Identifier:
keyid:33:1E:77:84:F6:0A:C8:D9:69:B8:1C:F5:23:1C:D9:DC:08:7C:ED:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mx53hPYKyNlpuBz1IxzZ3Ah87TI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e0925e-47bf-4907-bcbc-fd9f36a8ba6e/1/qzYfqleKMXziWfjI2OhKWSLGXWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e0925e-47bf-4907-bcbc-fd9f36a8ba6e/1/Mx53hPYKyNlpuBz1IxzZ3Ah87TI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.247.0.0/19
46.247.110.0-46.247.127.255
77.89.128.0/18
89.105.96.0/19
IPv6:
2a00:f18::/32
Signature Algorithm: sha256WithRSAEncryption
7b:c9:4b:3b:d3:a8:5d:fc:c1:a3:28:98:94:0b:6e:06:b0:74:
6b:eb:f1:c2:68:47:86:08:e6:ed:a1:97:f5:ae:4e:61:64:d0:
91:8f:8b:9b:2f:9b:19:fb:d5:d5:3b:e6:97:03:d6:c1:30:98:
e5:c4:5f:76:5c:cd:60:ce:3c:ef:6f:81:0d:25:ba:fd:c6:4f:
fc:2f:91:6f:bd:3f:0f:bf:b1:c6:04:08:b3:c8:66:62:39:7d:
01:b0:e2:1c:de:4e:b9:99:f9:27:4f:7e:6f:2b:b9:a2:d2:e1:
49:f3:a2:e3:26:e0:03:9a:b7:c8:21:65:1f:00:08:a4:b6:bb:
d0:78:8d:ee:99:e3:21:ce:6f:57:3d:bc:57:b6:9c:45:49:f1:
31:2b:04:da:f8:da:a7:5f:57:69:09:c2:d6:35:f6:16:1b:68:
dd:8a:1c:8b:b9:ed:2c:5e:56:a0:84:55:f6:d0:b9:22:a0:d7:
c0:8e:e8:8a:44:00:7e:a5:93:4b:57:a5:c3:44:8f:1f:79:da:
8b:32:b6:24:97:ae:2b:d0:4e:9c:39:de:d5:2c:fa:7e:c6:12:
fc:97:f9:64:ce:1a:06:04:6a:72:3c:2f:98:25:e0:1d:b6:e7:
f8:69:41:84:46:68:32:1f:03:36:f2:4a:15:76:14:61:91:c0:
e0:34:ec:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:44:27 2025 by rpki-client