Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NruOfkRMQft-fKgNSVVQdTLOwh4.roa
File: NruOfkRMQft-fKgNSVVQdTLOwh4.roa (raw, json)
Hash identifier: 2cdbe4bVK+lp5wzKw4/5c4D6ZMyJgQlIVv/JNmW+6LM=
Subject key identifier: 36:BB:8E:7E:44:4C:41:FB:7E:7C:A8:0D:49:55:50:75:32:CE:C2:1E
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01942748564B5A6C67B4939CBA87DCEADE85
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NruOfkRMQft-fKgNSVVQdTLOwh4.roa
Signing time: Thu 02 Jan 2025 13:50:39 +0000
ROA not before: Thu 02 Jan 2025 13:50:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 273098
IP address blocks: 185.181.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:56:4b:5a:6c:67:b4:93:9c:ba:87:dc:ea:de:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 2 13:50:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=36bb8e7e444c41fb7e7ca80d4955507532cec21e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:81:93:a7:a7:b1:75:4b:7f:75:e8:1f:bd:1f:
d3:4d:e4:e9:06:73:8b:31:47:21:43:76:86:5f:ce:
f5:58:d9:30:43:38:d4:1a:be:7d:99:ff:60:b7:8b:
78:d5:85:bf:ac:9b:72:85:75:75:e9:33:45:d3:67:
ba:a3:5b:56:85:1e:83:c6:a7:61:bd:10:b7:f7:2e:
dd:e0:2f:9f:5c:62:db:33:10:07:68:ab:20:52:b9:
19:65:c3:84:74:df:66:c9:3d:52:95:96:da:0b:39:
80:27:12:f1:8e:30:2c:5d:09:a1:9a:d6:b2:48:d1:
29:81:a9:0d:ad:c0:42:3f:9d:0a:8e:1c:2a:b9:cf:
ee:b6:c2:7b:65:40:df:f7:1a:76:d7:ea:85:23:e6:
d0:e6:30:fb:1e:76:08:84:2d:6e:08:21:0e:47:49:
35:2b:df:32:fd:60:1d:70:1d:ad:46:bd:55:4d:6b:
8a:ae:cb:72:2e:6c:fd:a6:7b:23:ed:f4:1c:b9:c9:
24:1f:66:e6:3b:f4:45:90:6c:0a:48:99:14:61:57:
66:15:63:89:00:53:38:ce:b1:3f:3b:9e:94:46:b0:
48:8d:0a:8c:1f:bf:5a:f0:31:7c:37:a9:6e:a7:bf:
cc:b4:e7:74:3f:13:27:6c:5f:3e:9c:af:22:72:3d:
cd:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:BB:8E:7E:44:4C:41:FB:7E:7C:A8:0D:49:55:50:75:32:CE:C2:1E
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NruOfkRMQft-fKgNSVVQdTLOwh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.33.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:52:95:04:13:6b:8d:85:fa:42:56:d6:d3:86:d9:bf:11:50:
d1:db:cc:8e:ed:30:1b:40:c4:9e:9c:ec:f0:f7:8d:74:3b:0a:
f1:9d:2f:2a:4e:bf:0d:45:93:92:19:d2:7b:8d:37:98:91:54:
c5:26:71:ee:93:a0:87:b1:59:c1:69:94:f4:81:5d:1e:b5:88:
07:7a:90:47:73:61:52:36:93:16:86:3a:99:86:e7:6a:3a:8a:
11:06:b1:82:89:48:e8:d9:d5:af:46:69:13:36:b3:28:13:00:
0a:ac:88:41:58:82:97:27:c9:93:0f:e4:63:a6:e7:08:26:93:
ca:e0:8d:e0:ba:18:64:41:e5:7e:ee:14:51:8a:8e:ef:7b:98:
db:ca:80:8a:82:8d:01:d4:ad:5a:ff:bc:25:85:46:a7:3c:ce:
92:5e:2f:1f:fd:61:7c:c8:19:c2:c9:55:57:58:12:07:70:2b:
ff:e9:3c:9d:14:e0:00:63:87:48:45:ea:e7:87:62:aa:fe:89:
60:f9:7c:17:c2:84:f5:69:f1:b1:de:06:55:fc:2c:10:c4:2c:
81:d2:9e:21:c9:e4:e8:cc:bb:32:b6:1f:df:03:01:ed:83:83:
02:17:5a:17:e4:06:fe:28:3b:fd:6a:48:05:8b:68:9d:b2:8e:
93:0a:62:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:27:03 2025 by rpki-client