Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/V-9Vf25ME713gWWRuJDXtJT_1eo.roa
File: V-9Vf25ME713gWWRuJDXtJT_1eo.roa (raw, json)
Hash identifier: zvq6sfp47HgPwOm1LondelnvEUG3aXAXkn7pLpXCu4E=
Subject key identifier: 57:EF:55:7F:6E:4C:13:BD:77:81:65:91:B8:90:D7:B4:94:FF:D5:EA
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 01942827C52AC53AB6EC536DAF1F5568AE47
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/V-9Vf25ME713gWWRuJDXtJT_1eo.roa
Signing time: Thu 02 Jan 2025 17:54:42 +0000
ROA not before: Thu 02 Jan 2025 17:54:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201237
IP address blocks: 79.172.227.0/24 maxlen: 24
87.229.67.0/24 maxlen: 24
178.238.215.0/24 maxlen: 24
178.238.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 10:53:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:c5:2a:c5:3a:b6:ec:53:6d:af:1f:55:68:ae:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 2 17:54:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57ef557f6e4c13bd77816591b890d7b494ffd5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:80:8c:5c:dc:45:32:8e:7a:f6:24:5e:60:92:
dd:bb:96:e9:94:77:9b:c8:c8:68:02:f3:29:6d:34:
dc:f9:11:92:e0:08:c9:d2:dd:0e:b4:3e:7c:15:3c:
35:79:07:7e:7b:eb:2b:6f:fb:5f:dc:78:7a:12:09:
e9:53:cb:77:ba:05:f0:e4:05:f3:37:1f:ad:00:0f:
91:a8:64:f2:6c:3a:86:9f:3a:65:b5:6c:20:d9:89:
39:b3:9d:54:8b:29:a1:36:b5:6d:1f:b2:ff:69:3f:
48:8d:ba:78:61:a2:fa:65:68:f1:29:93:46:55:02:
39:5d:99:18:ff:3f:a8:bb:44:e5:15:99:a2:c0:92:
4c:d7:1e:1c:79:81:55:ac:8a:e0:66:85:90:65:e6:
b9:c3:dc:24:3b:e6:5f:5b:13:5b:34:e2:9d:29:3d:
18:d2:fd:25:c4:7d:3e:f8:3e:1b:cd:f4:58:b4:42:
d4:4c:59:78:5d:bb:57:f0:ff:39:d8:08:ce:8c:0a:
02:71:3f:fe:1c:19:78:34:21:b7:6d:4a:9a:fa:83:
d2:fe:8b:d8:71:f6:af:f3:60:e5:43:ea:50:2e:6c:
2d:59:90:3b:a6:42:cf:27:64:e8:9d:06:59:03:ad:
9e:bb:16:1e:93:18:40:79:0c:cb:1c:aa:9e:5b:cc:
ec:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:EF:55:7F:6E:4C:13:BD:77:81:65:91:B8:90:D7:B4:94:FF:D5:EA
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/V-9Vf25ME713gWWRuJDXtJT_1eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.227.0/24
87.229.67.0/24
178.238.215.0/24
178.238.220.0/24
Signature Algorithm: sha256WithRSAEncryption
24:80:85:da:2a:39:ec:78:c5:c9:1c:19:50:4f:84:d1:95:9f:
f2:ad:72:66:1a:1e:63:f5:f5:92:c4:fe:ff:21:ed:be:60:ff:
ad:b6:a8:2d:b0:e7:c9:8b:47:e9:a3:54:6a:43:ae:d5:6b:33:
4c:09:f1:2f:6a:fa:cc:e1:88:9b:00:13:49:db:7a:24:b0:49:
1e:00:4e:03:3d:e5:2b:eb:39:c5:81:96:2c:d8:4d:b1:ac:37:
9d:61:8e:1b:94:9a:69:60:4e:fd:5e:36:75:0c:2b:2f:05:fc:
04:f0:c6:04:2a:d3:d1:e7:43:68:a4:2e:66:b8:8f:7d:8a:f4:
89:06:1e:f8:78:b0:1b:36:5d:08:b8:4e:e8:4e:b4:2d:a0:08:
fa:5a:85:4f:71:58:64:18:82:91:6d:5e:15:b9:7d:a0:5e:12:
63:fc:37:48:44:e4:1f:ec:c7:1c:b2:5d:a0:b0:e3:84:8a:e9:
e8:a9:07:27:ef:63:fd:ed:f4:16:a8:c3:48:00:2a:86:94:23:
fe:9a:21:34:b6:e8:23:ab:48:63:39:18:39:b4:32:56:58:3d:
34:c7:67:66:92:cb:2f:c3:11:33:7a:75:79:aa:7d:f8:2c:e4:
57:2e:e1:5e:9e:5c:e7:71:31:9f:ed:83:7b:02:5c:64:1b:3c:
64:04:4a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:11:11 2025 by rpki-client