Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/udVjWjtCw8-mpprcmzafPsXqAEg.roa
File: udVjWjtCw8-mpprcmzafPsXqAEg.roa (raw, json)
Hash identifier: 4jYyql/ul3ChaZUGCo2qkL0DtI4tuS2kYKNXsqMrYh4=
Subject key identifier: B9:D5:63:5A:3B:42:C3:CF:A6:A6:9A:DC:9B:36:9F:3E:C5:EA:00:48
Certificate issuer: /CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Certificate serial: 01942522364F35EFA36EDEC2422EE121D909
Authority key identifier: FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/udVjWjtCw8-mpprcmzafPsXqAEg.roa
Signing time: Thu 02 Jan 2025 03:49:46 +0000
ROA not before: Thu 02 Jan 2025 03:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49571
IP address blocks: 212.126.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 09:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:36:4f:35:ef:a3:6e:de:c2:42:2e:e1:21:d9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Validity
Not Before: Jan 2 03:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9d5635a3b42c3cfa6a69adc9b369f3ec5ea0048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0c:32:de:92:1b:23:db:9f:38:3c:6f:cc:d3:
61:6c:f5:99:61:23:b2:ad:ad:cc:e5:ea:22:16:66:
78:a3:e2:48:d6:01:f7:3a:f5:ad:5a:e0:2c:f7:a6:
40:86:88:7d:3f:c2:0a:d7:fe:56:8e:7c:f9:d3:fe:
40:7a:93:5c:46:ee:6a:51:2d:e3:63:a7:ab:f0:05:
76:d8:3c:3c:9b:87:a8:ed:36:15:62:dd:d4:43:8c:
bb:ef:86:dc:66:d8:20:f2:d9:a4:30:ab:b9:01:19:
55:4a:16:77:af:10:de:57:10:5d:33:0b:5f:a6:fd:
69:af:6e:7c:5f:fb:90:5d:1b:83:55:83:88:2e:00:
d0:75:e4:87:81:4b:89:bd:46:9e:5d:1a:32:86:e9:
c1:b7:26:ed:1a:7e:5d:af:80:de:40:78:97:a6:9c:
f7:59:6b:ad:af:63:6f:40:48:32:18:95:af:7b:79:
8c:58:f2:31:87:39:03:37:82:8a:52:e2:ce:73:c4:
85:05:c5:f7:fb:e3:37:8a:c8:66:06:bb:9a:44:c0:
dc:d2:cf:c4:82:39:62:4a:38:7c:a3:f1:8e:f6:8a:
c6:cc:03:ec:90:2c:37:d2:70:a6:d0:76:ab:aa:a0:
76:08:f7:2b:87:a5:74:00:a9:1f:6d:66:da:8f:eb:
6f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D5:63:5A:3B:42:C3:CF:A6:A6:9A:DC:9B:36:9F:3E:C5:EA:00:48
X509v3 Authority Key Identifier:
keyid:FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/udVjWjtCw8-mpprcmzafPsXqAEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.126.112.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a1:6f:43:55:85:ef:d6:4d:18:1b:f3:b5:75:30:e8:d2:1d:
00:00:35:2d:67:4a:79:a4:0a:f5:e7:7a:79:fb:97:b8:cc:d5:
99:2d:d1:a1:ab:ad:bc:82:c0:59:89:fc:a5:52:f2:ef:d7:8e:
8b:66:ff:fd:bd:aa:97:4b:f6:9f:61:a8:e6:51:69:ee:1b:4f:
aa:79:91:8f:6d:db:35:90:86:26:02:56:f2:7e:40:53:0f:6d:
4a:8b:43:46:83:6c:fe:54:d4:eb:df:9d:37:be:b0:ff:83:e4:
2c:73:02:51:a9:47:c7:57:06:4b:d6:2e:ac:20:5b:2f:a2:3f:
03:e8:5a:24:55:29:8c:b3:13:73:1b:dc:c9:1e:c5:f5:53:48:
3e:b9:68:53:ec:e7:6f:42:fb:f3:20:2d:e1:0a:b9:62:5e:9b:
fe:e8:4e:6b:38:70:71:c4:08:bc:d8:1b:e4:91:e0:a4:c8:87:
84:26:3c:a0:70:a0:f0:49:fc:b2:17:27:dd:7c:60:3c:f2:a5:
81:74:9a:ee:f0:90:4c:58:ef:3a:15:01:64:35:65:86:a4:33:
af:6e:97:bf:c4:24:e1:65:ef:07:55:7a:bd:e7:b4:14:4b:6c:
d3:25:d6:cf:13:da:c9:f0:83:58:3e:e1:7e:a7:10:50:6a:fe:
c5:d1:97:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:23:15 2025 by rpki-client