Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/EMr3DkLplhEJl2YhOG6efXKNjAE.roa
File: EMr3DkLplhEJl2YhOG6efXKNjAE.roa (raw, json)
Hash identifier: frqgOfKVJ1BodqgebcUDIrNavZGnLMAIF/aS6q96TvU=
Subject key identifier: 10:CA:F7:0E:42:E9:96:11:09:97:66:21:38:6E:9E:7D:72:8D:8C:01
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019427484CA83518879614D015A62B0A10B3
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/EMr3DkLplhEJl2YhOG6efXKNjAE.roa
Signing time: Thu 02 Jan 2025 13:50:37 +0000
ROA not before: Thu 02 Jan 2025 13:50:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209835
IP address blocks: 185.227.100.0/23 maxlen: 23
185.227.100.0/24 maxlen: 24
185.227.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:4c:a8:35:18:87:96:14:d0:15:a6:2b:0a:10:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 2 13:50:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=10caf70e42e9961109976621386e9e7d728d8c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5c:16:96:68:a1:1a:13:25:fc:2b:9a:d8:e0:
a7:2b:e0:98:ca:ef:6b:5b:9a:14:b6:2a:b0:64:54:
1e:96:05:59:7d:ab:73:8b:f7:fe:7f:79:6b:44:57:
19:ca:9c:7f:b7:52:e8:30:af:3e:2b:7e:a0:f8:ef:
1e:8c:ac:eb:55:79:19:40:e8:c6:18:da:c3:ad:95:
31:40:78:31:15:05:49:6d:57:33:ac:a6:c3:09:12:
8a:97:05:70:1a:d2:2c:a8:84:2c:3a:f5:23:59:c8:
4b:84:cd:58:48:36:7b:b0:7f:7b:45:3c:d8:6b:4f:
c3:ed:36:43:5d:50:2e:bd:01:68:7c:cb:f4:df:6e:
30:20:6b:96:9f:d7:86:1e:5d:77:23:6b:f5:d6:51:
80:38:15:81:2e:74:06:bb:ba:7f:b9:7e:99:90:ae:
97:0d:f7:e5:fa:ff:a7:13:58:9e:45:8a:5e:4d:92:
5b:3c:9b:d1:f9:27:19:2b:09:a7:89:77:38:4f:96:
b2:98:de:14:9e:f4:1b:31:2b:f1:d4:89:7c:d7:ab:
9e:27:49:69:98:e2:ca:0b:32:66:42:95:bd:43:4c:
dc:dd:c9:64:7e:5f:b3:47:f7:6a:b1:ee:d4:d4:55:
92:4a:7c:7b:62:ba:7f:b9:5b:24:a4:02:f7:5a:f4:
a7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CA:F7:0E:42:E9:96:11:09:97:66:21:38:6E:9E:7D:72:8D:8C:01
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/EMr3DkLplhEJl2YhOG6efXKNjAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.100.0/23
Signature Algorithm: sha256WithRSAEncryption
85:1c:ad:1e:1a:c6:fe:65:55:86:68:92:7a:90:77:42:b0:6c:
c6:8d:03:4d:cf:fa:1c:09:7c:ce:27:05:f5:80:9c:4b:50:cf:
ff:aa:4e:45:1e:f3:55:5d:70:b2:b2:34:67:d1:d0:b7:3c:02:
38:b2:d9:c5:da:4e:07:8d:f2:1c:44:ef:b0:15:09:e4:04:61:
a1:de:66:3a:11:54:86:d3:99:e9:d2:25:e7:e8:48:8c:44:b0:
72:84:d4:2e:2b:d7:fe:59:e8:f4:ca:8b:53:0b:a2:ef:7f:90:
70:de:33:7b:e0:a8:a0:bf:3d:48:5a:2b:56:35:fa:47:ee:bd:
cc:c3:55:fd:0b:5f:a1:fc:e8:17:db:6a:4a:50:ce:ec:b0:86:
4b:b0:3b:85:66:1c:a6:cc:90:e1:cb:84:fd:27:bd:05:f3:25:
2d:ed:2a:37:cc:07:c8:5b:fd:f4:fb:4c:c3:df:ad:95:4c:1d:
39:8d:2f:5f:4c:4d:6f:c1:43:96:3c:fa:1a:5e:9f:8d:2e:06:
1d:e0:34:35:e7:9d:12:7b:af:7a:70:1c:56:42:b2:bc:b7:71:
0f:1f:26:37:c3:c6:cb:b3:39:82:7c:a0:4d:7a:97:83:67:63:
03:1c:63:f6:c0:ce:1a:d6:0f:09:28:d0:bb:bb:28:f6:75:2e:
34:30:18:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:24:37 2025 by rpki-client