Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/_Eyc6D1PMpzSDym0GGbxlzfVNCo.roa
File: _Eyc6D1PMpzSDym0GGbxlzfVNCo.roa (raw, json)
Hash identifier: Of+qHUG14F0K6BZaQOzP4V8cN5qjh3oUgIrbS33yunw=
Subject key identifier: FC:4C:9C:E8:3D:4F:32:9C:D2:0F:29:B4:18:66:F1:97:37:D5:34:2A
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 01942827BEEBE2C6637C367172B843B2A1AC
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/_Eyc6D1PMpzSDym0GGbxlzfVNCo.roa
Signing time: Thu 02 Jan 2025 17:54:40 +0000
ROA not before: Thu 02 Jan 2025 17:54:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47325
IP address blocks: 87.229.6.0/24 maxlen: 24
87.229.115.0/24 maxlen: 24
87.229.127.0/24 maxlen: 24
95.138.193.0/24 maxlen: 24
217.113.49.0/24 maxlen: 24
2a02:730:7000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:be:eb:e2:c6:63:7c:36:71:72:b8:43:b2:a1:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 2 17:54:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fc4c9ce83d4f329cd20f29b41866f19737d5342a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:83:08:77:33:a6:7e:ea:cf:5f:34:04:63:11:
b0:a1:24:79:08:4f:47:29:77:cf:13:c1:8e:90:cb:
d7:3d:0e:bd:19:3c:88:db:b8:bb:25:f5:07:74:46:
09:a3:6a:1f:5d:3a:83:71:a8:ad:ef:ff:36:e9:1f:
46:f2:21:c7:77:61:16:69:f6:d3:35:12:c8:e7:67:
29:2d:20:7c:f6:04:d7:d1:ee:a6:13:d6:bf:70:b1:
47:1a:92:8b:86:1a:2b:b0:dc:e7:15:df:9c:84:9b:
d9:cf:ce:da:ea:94:a5:4b:03:3d:b9:ff:fa:a9:46:
ac:18:dd:19:f5:84:91:18:91:dd:bb:c2:09:3d:ff:
8a:a5:d9:9b:ad:d3:7b:c8:65:3a:3a:fb:49:d0:01:
35:f9:62:b1:b9:98:26:03:73:f7:5b:49:6e:d0:91:
01:f2:0d:dc:5c:e5:22:06:d9:1f:8e:26:b6:e6:c7:
28:1a:c1:7c:01:3a:e8:3a:ec:1c:7b:87:4f:cd:17:
f8:dc:64:dc:2e:38:48:d4:54:53:35:a4:b0:01:ff:
42:fa:cb:d8:db:ca:18:e6:eb:ba:fa:36:f2:1b:ed:
7f:bc:81:13:c8:f6:ed:e9:de:73:58:78:84:08:63:
0c:0c:bd:07:3e:b6:6e:d3:94:0f:a1:2e:9f:89:31:
70:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:4C:9C:E8:3D:4F:32:9C:D2:0F:29:B4:18:66:F1:97:37:D5:34:2A
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/_Eyc6D1PMpzSDym0GGbxlzfVNCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.6.0/24
87.229.115.0/24
87.229.127.0/24
95.138.193.0/24
217.113.49.0/24
IPv6:
2a02:730:7000::/48
Signature Algorithm: sha256WithRSAEncryption
8c:ed:0b:6c:8f:41:e1:40:67:3a:32:90:bf:4d:33:b1:0c:a3:
e1:b5:4e:6d:22:cf:fa:e6:87:84:7f:54:0a:6c:d8:c1:63:ae:
7b:2f:98:d6:ad:44:67:9f:0f:5a:e9:00:5b:90:6b:7c:05:64:
c4:9b:fe:d4:88:b9:de:b4:8c:ec:c9:de:68:4b:e8:4c:84:9e:
71:27:d5:c8:64:70:d0:68:ec:e1:b9:50:79:cb:f0:ac:f7:ca:
dc:b4:78:dc:63:a6:48:08:87:d0:57:9a:9d:e7:e6:8b:25:89:
54:a9:1c:1b:c6:68:17:3c:31:9a:e3:29:92:68:fd:44:5f:19:
02:d2:0e:b8:ee:a5:9f:fb:75:ef:a6:c3:c2:64:9b:61:46:fe:
a4:b2:93:0d:b9:e6:60:e8:d8:32:12:17:7e:97:1e:e2:f1:cb:
3f:af:3e:e2:89:60:4c:b7:f1:6e:68:91:37:97:d4:3a:ac:06:
32:60:f1:d3:a9:4a:c6:eb:88:32:27:79:4f:1a:60:76:40:78:
bb:1f:1e:70:f0:ac:d2:9d:4b:a0:92:7f:9d:ed:0a:39:2c:9f:
0e:24:07:3b:13:4d:e6:84:05:2f:51:9a:b2:97:e9:22:91:bf:
a2:7b:a3:8d:00:82:3c:93:9a:56:44:99:d7:24:63:c5:78:44:
2a:52:ae:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:18:00 2025 by rpki-client