Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/RHaqCa3foLeK111Elk9eU5wfg94.roa
File: RHaqCa3foLeK111Elk9eU5wfg94.roa (raw, json)
Hash identifier: iAfyL5dTq5UngblKePQqf6zUyIIzYxwFVThGGfvY11s=
Subject key identifier: 44:76:AA:09:AD:DF:A0:B7:8A:D7:5D:44:96:4F:5E:53:9C:1F:83:DE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258FC4ECD1912EEB35FA044B2CD56639
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/RHaqCa3foLeK111Elk9eU5wfg94.roa
Signing time: Thu 02 Jan 2025 05:49:26 +0000
ROA not before: Thu 02 Jan 2025 05:49:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57562
IP address blocks: 93.171.166.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:c4:ec:d1:91:2e:eb:35:fa:04:4b:2c:d5:66:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4476aa09addfa0b78ad75d44964f5e539c1f83de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:43:1b:d6:40:38:9a:37:d0:89:23:57:5a:98:
0b:74:7a:80:2c:d2:ba:1a:cf:88:d4:9c:63:41:b3:
30:e5:b9:28:fa:48:6a:a9:7c:5d:53:a6:1a:0b:0d:
4c:b0:83:f0:c3:d6:c0:f4:ff:ed:90:02:dd:3a:dc:
cb:1f:1b:d9:3a:37:24:b7:ce:e9:bc:12:12:97:53:
71:aa:75:c6:62:f1:cc:f7:e5:6d:06:5a:c4:2a:1f:
37:49:20:fd:da:b0:b3:7b:74:fa:d9:c2:23:ea:6c:
fe:00:95:d7:b9:52:44:5f:f6:1e:88:fb:3a:e9:13:
6e:8a:03:ac:38:1b:ff:d4:8d:2b:f6:f7:25:07:95:
e1:f3:ca:80:3c:1e:02:32:fc:a2:76:b6:cb:9a:21:
17:aa:8c:03:84:98:1c:45:ae:5a:7c:13:19:87:60:
e2:e1:45:bb:b2:25:25:28:8a:11:be:06:e3:da:3d:
07:57:b2:0e:0c:08:8e:5e:43:6c:43:0c:fb:32:01:
f1:b8:f6:6d:e1:5c:65:cf:cd:86:33:69:9d:fe:07:
62:ea:22:48:34:11:a8:6c:b0:e0:6e:1c:75:d7:18:
b5:b6:f3:7c:7e:24:84:47:9f:58:3c:1f:05:aa:e5:
e2:b7:17:7b:8f:c0:70:60:35:ac:3b:47:64:79:9b:
b2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:76:AA:09:AD:DF:A0:B7:8A:D7:5D:44:96:4F:5E:53:9C:1F:83:DE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/RHaqCa3foLeK111Elk9eU5wfg94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.166.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:33:31:54:08:85:40:49:40:8d:2d:21:4a:f4:59:ed:e1:5a:
67:04:4d:3f:c4:86:c3:bc:83:07:cf:f5:11:6f:b9:1b:32:06:
f4:3c:3a:53:54:44:e2:d0:e9:50:1b:c3:10:d5:47:e2:3e:0a:
07:17:b8:89:01:6c:d6:25:90:3a:27:20:75:37:39:80:ab:76:
c2:f4:61:3b:33:ab:49:36:ce:89:a1:14:20:e1:d9:aa:87:1e:
e4:0a:6d:2d:6b:88:fe:78:4b:70:69:d1:5f:9d:63:f4:78:fa:
93:a8:8c:5e:fa:ac:c1:1f:42:a7:35:1a:fc:ce:72:92:1a:92:
53:0d:3a:9b:82:7a:93:87:70:e7:bb:ff:e9:33:80:c1:04:10:
24:a6:19:57:f9:f0:35:5a:f1:01:c7:8e:46:40:91:45:23:26:
f8:7a:61:b0:ea:a1:ad:06:25:6b:05:9a:64:39:45:36:4a:f0:
24:11:0f:76:7a:d7:01:b1:33:98:02:47:dd:69:23:5c:9a:b0:
1d:96:a7:f6:4f:ac:ed:11:8f:29:1b:3c:23:c8:52:5a:fd:9d:
b8:29:45:7a:d0:ce:18:44:6e:6b:96:4e:1e:74:b2:60:de:02:
73:a0:56:6c:24:72:48:45:d6:9b:e4:7f:b4:4f:93:93:25:60:
66:db:48:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:20 2025 by rpki-client