Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/v-rqs7oKLAdttjzKh5X_lYEEDjk.roa
File: v-rqs7oKLAdttjzKh5X_lYEEDjk.roa (raw, json)
Hash identifier: yOJtrRQ6QxMyuem5lTDltD4HmX2wA9mBUwovNzlCxlk=
Subject key identifier: BF:EA:EA:B3:BA:0A:2C:07:6D:B6:3C:CA:87:95:FF:95:81:04:0E:39
Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c
Certificate serial: 0195CA0B402689EF2E80162B0709D5E400A7
Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/v-rqs7oKLAdttjzKh5X_lYEEDjk.roa
Signing time: Mon 24 Mar 2025 21:24:49 +0000
ROA not before: Mon 24 Mar 2025 21:24:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3320
IP address blocks: 144.56.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 10:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ca:0b:40:26:89:ef:2e:80:16:2b:07:09:d5:e4:00:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16055801b775e774306321455fd463fbd9273c4c
Validity
Not Before: Mar 24 21:24:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bfeaeab3ba0a2c076db63cca8795ff9581040e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:ad:18:12:ca:61:e1:a3:cc:c2:d0:09:91:
a6:b0:cc:41:c3:8a:9d:82:43:a3:1e:0c:dc:23:6f:
36:9c:9d:7f:ba:3d:f2:60:cc:70:1e:a2:89:bb:51:
58:71:7f:ec:7a:09:a8:0d:a5:32:18:a8:b0:be:d0:
f6:91:0d:fb:f0:19:b7:de:40:a3:5b:cb:1d:2c:ef:
9c:96:8f:4a:ca:54:72:44:40:74:38:09:be:c6:b6:
ed:4b:72:4c:f1:37:18:89:c9:0e:49:00:a0:6e:9c:
5d:7d:e5:2a:9f:59:99:fc:0c:8c:b7:03:9a:05:a3:
78:cf:98:fd:92:e9:59:56:e9:28:49:22:85:f0:f4:
3b:bc:fd:0f:f9:35:b7:05:62:ee:6a:2e:cd:4a:82:
be:1f:31:3a:c0:eb:bd:8a:f4:b8:e9:0a:a9:81:ac:
f4:ed:94:22:97:2d:2d:9d:bf:e2:f3:59:93:e7:ad:
43:a3:5a:ed:cc:14:32:3c:3b:4f:36:e2:0d:8d:52:
dd:a0:6a:b0:c8:66:46:a3:62:e9:da:50:94:14:58:
63:82:fe:5e:03:94:20:9b:a1:c9:1e:ab:1a:b8:00:
17:8b:e2:71:d6:78:3d:66:a8:37:32:eb:7c:a8:e0:
f7:79:3c:ce:c0:99:56:a5:cd:e5:36:df:62:40:a4:
16:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:EA:EA:B3:BA:0A:2C:07:6D:B6:3C:CA:87:95:FF:95:81:04:0E:39
X509v3 Authority Key Identifier:
keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/v-rqs7oKLAdttjzKh5X_lYEEDjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.56.29.0/24
Signature Algorithm: sha256WithRSAEncryption
79:86:e5:65:86:31:3c:21:66:96:2d:78:94:41:25:96:e2:8a:
27:dc:f8:9c:e6:3b:f7:27:e1:05:a5:66:f3:1d:d7:53:53:e6:
8f:0a:c2:af:18:cc:d5:16:a7:fa:22:07:35:59:59:69:ad:7a:
79:f5:0e:31:63:52:fe:47:04:c2:0d:4c:a4:21:56:93:00:c7:
bc:2c:3b:f2:df:e7:2f:25:b2:c3:d2:7f:7b:8d:2e:d8:fd:35:
47:b6:3d:52:ef:7f:7f:be:14:83:43:9b:34:3f:cd:52:27:27:
41:8c:58:8c:e7:cc:e6:e1:7c:0e:4d:85:3b:09:41:68:31:b7:
42:b7:bc:ba:c4:2d:2d:63:01:94:ce:26:2d:55:61:d1:08:9f:
cb:9d:47:a8:d0:a1:a3:64:8e:d2:e8:65:bf:02:8a:56:e2:ef:
bc:2e:95:3f:71:bb:0b:04:ce:ae:0d:ad:5d:e4:66:e6:66:e1:
d1:6f:88:c7:7a:94:bb:5d:cf:03:a3:5c:1f:14:0a:7b:4b:f8:
4a:8b:6e:35:dc:05:f5:ac:09:6c:a4:06:de:a6:34:be:3e:17:
98:0b:4c:df:60:a4:82:9d:db:3c:49:26:2d:83:31:c4:82:d6:
03:e1:82:19:e2:d9:7b:8c:5e:fd:fb:fe:31:0f:2f:bf:9d:20:
b5:60:22:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:54:41 2025 by rpki-client