Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/QAlZxJpPNS1rmQL4HuNAcE7lmik.roa
File: QAlZxJpPNS1rmQL4HuNAcE7lmik.roa (raw, json)
Hash identifier: S0+MsekOjpK1fn9TgliC/Ks4ugN2LoEukjLPMsOlGQY=
Subject key identifier: 40:09:59:C4:9A:4F:35:2D:6B:99:02:F8:1E:E3:40:70:4E:E5:9A:29
Certificate issuer: /CN=53bbbbaa3ee24c7ad9b2c60432e14eda3849b5e2
Certificate serial: 0194258F276A620CD6F11B3E8C5223797074
Authority key identifier: 53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/QAlZxJpPNS1rmQL4HuNAcE7lmik.roa
Signing time: Thu 02 Jan 2025 05:48:46 +0000
ROA not before: Thu 02 Jan 2025 05:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198022
IP address blocks: 185.92.160.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:27:6a:62:0c:d6:f1:1b:3e:8c:52:23:79:70:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bbbbaa3ee24c7ad9b2c60432e14eda3849b5e2
Validity
Not Before: Jan 2 05:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=400959c49a4f352d6b9902f81ee340704ee59a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:57:57:bc:e2:78:11:58:fa:c5:c6:ee:b8:f0:
16:0e:97:b1:13:b6:e2:cc:a0:c7:73:12:9b:7a:ed:
7d:b1:fe:22:84:cf:ab:4c:b9:b4:35:13:d4:1a:f6:
a2:c0:c4:d6:96:b4:32:93:18:f4:2f:15:42:41:fb:
37:f1:44:7d:19:b2:8e:0b:04:26:7d:be:f7:2e:f1:
c9:1e:76:21:38:21:db:d0:91:e2:a8:9c:c0:c4:76:
85:a2:86:b0:07:a7:59:59:f2:9a:1e:4b:02:c9:8c:
1b:43:ad:82:50:25:34:12:6f:13:eb:c4:f2:68:e2:
87:05:27:f4:8f:04:c4:0f:a9:6d:76:79:58:15:df:
df:50:0d:9a:0f:2c:f6:6c:14:c9:15:98:4f:c7:44:
fe:65:93:dd:60:26:1a:5c:ed:33:a1:3e:be:be:dc:
96:46:6d:69:df:3a:e5:48:e0:84:2e:ca:22:48:3d:
aa:ae:98:b6:8c:c9:55:f0:73:a7:a4:d9:c2:5a:36:
65:9a:8e:7f:b5:39:63:be:ab:b6:0f:90:f4:22:d9:
69:94:0d:a2:9f:f1:f0:51:37:bd:45:1c:5f:b0:97:
fe:ee:38:6b:a1:cd:24:46:e4:61:a7:6b:ad:05:3e:
86:6d:96:dc:6b:94:f5:13:fa:10:4c:a2:f9:5f:78:
22:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:09:59:C4:9A:4F:35:2D:6B:99:02:F8:1E:E3:40:70:4E:E5:9A:29
X509v3 Authority Key Identifier:
keyid:53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/QAlZxJpPNS1rmQL4HuNAcE7lmik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.160.0/23
Signature Algorithm: sha256WithRSAEncryption
26:16:eb:ac:43:3d:19:84:3c:ce:af:b7:ff:2a:f7:6c:9c:19:
88:ce:25:94:36:6d:78:cb:a3:1a:64:96:5d:d1:1a:60:dd:dc:
a1:2b:57:2a:54:41:b7:89:ba:ce:09:bc:72:31:d5:1e:e9:4c:
e5:86:e5:7b:5e:81:0f:73:e2:f8:28:4e:d1:dc:0a:c1:31:28:
ad:a9:a9:2a:c2:c3:43:8a:6d:2e:30:3a:fa:d0:5c:1b:1f:9e:
7c:1f:bf:77:1a:1f:9a:6e:e6:9d:5d:7f:77:36:f7:b6:bd:db:
60:da:e0:e1:89:23:d4:da:d1:07:12:39:55:25:a7:06:e2:4b:
9c:16:3a:8b:15:94:18:0d:54:bb:04:d4:56:94:6d:a6:04:85:
ea:35:e7:bf:87:03:01:12:47:d8:50:37:fb:99:d9:7a:b7:01:
7a:69:ac:86:c8:19:13:10:23:3e:b2:ce:99:49:ed:1d:ad:72:
8c:cc:9b:07:ee:bc:7c:b4:b6:7b:ba:5a:44:f7:1f:e5:3f:ad:
fe:52:b7:ca:5c:9b:34:d6:81:40:86:77:3e:91:e4:0f:e9:98:
f3:cd:39:e8:55:d2:50:85:41:6c:d7:54:9d:64:4a:c5:77:e2:
de:b9:38:e4:5e:93:ea:73:1b:67:25:78:8c:9e:9d:ab:3c:00:
8e:78:50:47
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQljydqYgzW8Rs+jFIjeXB0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYmJiYmFhM2VlMjRjN2FkOWIyYzYwNDMyZTE0ZWRhMzg0
OWI1ZTIwHhcNMjUwMTAyMDU0ODQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDA5NTljNDlhNGYzNTJkNmI5OTAyZjgxZWUzNDA3MDRlZTU5YTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1dXvOJ4EVj6xcbuuPAWDpexE7bi
zKDHcxKbeu19sf4ihM+rTLm0NRPUGvaiwMTWlrQykxj0LxVCQfs38UR9GbKOCwQm
fb73LvHJHnYhOCHb0JHiqJzAxHaFooawB6dZWfKaHksCyYwbQ62CUCU0Em8T68Ty
aOKHBSf0jwTED6ltdnlYFd/fUA2aDyz2bBTJFZhPx0T+ZZPdYCYaXO0zoT6+vtyW
Rm1p3zrlSOCELsoiSD2qrpi2jMlV8HOnpNnCWjZlmo5/tTljvqu2D5D0ItlplA2i
n/HwUTe9RRxfsJf+7jhroc0kRuRhp2utBT6GbZbca5T1E/oQTKL5X3giZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEAJWcSaTzUta5kC+B7jQHBO5ZopMB8GA1UdIwQY
MBaAFFO7u6o+4kx62bLGBDLhTto4SbXiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTd1N3FqN2lUSHJac3NZRU11Rk8yamhKdGVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8zMzk0YzAtNDU4Ny00NDRlLTlhMjUt
MDBlY2YwYzRkMGVmLzEvUUFsWnhKcFBOUzFybVFMNEh1TkFjRTdsbWlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My8zMzk0YzAtNDU4Ny00NDRlLTlhMjUtMDBlY2YwYzRkMGVm
LzEvVTd1N3FqN2lUSHJac3NZRU11Rk8yamhKdGVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuVygMA0G
CSqGSIb3DQEBCwUAA4IBAQAmFuusQz0ZhDzOr7f/KvdsnBmIziWUNm14y6MaZJZd
0Rpg3dyhK1cqVEG3ibrOCbxyMdUe6UzlhuV7XoEPc+L4KE7R3ArBMSitqakqwsND
im0uMDr60FwbH558H793Gh+abuadXX93Nve2vdtg2uDhiSPU2tEHEjlVJacG4kuc
FjqLFZQYDVS7BNRWlG2mBIXqNee/hwMBEkfYUDf7mdl6twF6aayGyBkTECM+ss6Z
Se0drXKMzJsH7rx8tLZ7ulpE9x/lP63+UrfKXJs01oFAhnc+keQP6ZjzzTnoVdJQ
hUFs11SdZErFd+LeuTjkXpPqcxtnJXiMnp2rPACOeFBH
-----END CERTIFICATE-----
Generated at Tue Apr 15 05:19:56 2025 by rpki-client