Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/29c8eb-61e2-4aad-9aa4-3279137fde44/1/eNjKHdv8IHiSMT5DlWURZ12GtE8.roa
File: eNjKHdv8IHiSMT5DlWURZ12GtE8.roa (raw, json)
Hash identifier: 0PyZvOHXEJvjs+fUIrJG3NCT3v2ngertxaHruNIycnQ=
Subject key identifier: 78:D8:CA:1D:DB:FC:20:78:92:31:3E:43:95:65:11:67:5D:86:B4:4F
Certificate issuer: /CN=34380cfba34b61f5db4565145928d9e4add930eb
Certificate serial: 0196EDA614A91BDC300D6BE352E25462A0D8
Authority key identifier: 34:38:0C:FB:A3:4B:61:F5:DB:45:65:14:59:28:D9:E4:AD:D9:30:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDgM-6NLYfXbRWUUWSjZ5K3ZMOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/29c8eb-61e2-4aad-9aa4-3279137fde44/1/eNjKHdv8IHiSMT5DlWURZ12GtE8.roa
Signing time: Tue 20 May 2025 12:23:26 +0000
ROA not before: Tue 20 May 2025 12:23:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39794
IP address blocks: 194.50.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/29c8eb-61e2-4aad-9aa4-3279137fde44/1/NDgM-6NLYfXbRWUUWSjZ5K3ZMOs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/29c8eb-61e2-4aad-9aa4-3279137fde44/1/NDgM-6NLYfXbRWUUWSjZ5K3ZMOs.mft
rsync://rpki.ripe.net/repository/DEFAULT/NDgM-6NLYfXbRWUUWSjZ5K3ZMOs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ed:a6:14:a9:1b:dc:30:0d:6b:e3:52:e2:54:62:a0:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34380cfba34b61f5db4565145928d9e4add930eb
Validity
Not Before: May 20 12:23:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78d8ca1ddbfc207892313e43956511675d86b44f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2e:9a:70:97:1f:76:b3:01:50:aa:fa:70:51:
d6:d8:4e:db:f5:35:2c:35:8f:62:ca:2f:da:65:0c:
54:36:99:46:bb:7c:1e:bb:35:e7:c1:4e:a8:e0:20:
8a:f3:6b:b6:d6:8f:ba:21:51:df:1b:81:9a:9e:fa:
aa:b9:21:aa:4b:32:55:1d:e4:72:4d:d8:92:f2:48:
06:68:0c:f6:b7:18:c7:ea:21:65:f3:28:63:aa:68:
b4:e9:c2:27:c2:cb:44:23:bf:fe:85:c3:ff:91:e2:
d5:ef:63:7d:a7:a4:28:de:a5:33:ce:4c:ee:ee:e6:
cb:1f:75:d7:c9:30:54:d2:75:e4:e3:36:22:dc:fb:
4d:24:88:9a:73:3b:7a:2c:04:ad:a9:e3:b4:be:c4:
e4:61:18:2e:1a:6f:6f:20:9e:35:8c:27:6e:ae:15:
9b:66:25:a0:98:2b:56:4b:b8:c9:7e:d4:2b:4d:21:
c7:f4:5b:52:b5:12:52:12:0f:cb:78:ec:3c:bf:dd:
5e:2a:df:c4:0b:6f:7c:62:50:7a:7e:19:34:8f:9e:
cd:6a:c0:7b:57:13:57:88:63:28:4e:35:db:66:e3:
0b:48:3e:88:76:2e:01:1a:a4:d2:ea:f6:67:34:83:
f3:2a:b9:9b:e8:22:35:22:f1:b7:65:ea:d0:7a:08:
7d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D8:CA:1D:DB:FC:20:78:92:31:3E:43:95:65:11:67:5D:86:B4:4F
X509v3 Authority Key Identifier:
keyid:34:38:0C:FB:A3:4B:61:F5:DB:45:65:14:59:28:D9:E4:AD:D9:30:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDgM-6NLYfXbRWUUWSjZ5K3ZMOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/29c8eb-61e2-4aad-9aa4-3279137fde44/1/eNjKHdv8IHiSMT5DlWURZ12GtE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/29c8eb-61e2-4aad-9aa4-3279137fde44/1/NDgM-6NLYfXbRWUUWSjZ5K3ZMOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.214.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:07:b5:da:a7:2d:d0:b6:be:5c:a6:c9:c9:4f:50:eb:c6:86:
34:8f:f6:54:ec:fa:58:7b:a1:5a:aa:53:07:68:87:43:b4:b5:
2b:b5:7e:16:5b:e0:92:ce:cc:76:94:5a:96:99:fe:86:fd:51:
cc:24:96:20:8d:92:65:3b:c6:ff:0b:9b:35:3d:47:4b:cc:a6:
b0:7e:94:70:30:f1:20:a9:a3:cf:2b:6f:34:2b:b6:57:6e:47:
c8:db:42:bb:bc:84:a1:61:13:99:ad:33:6a:b5:d1:ac:e0:92:
bc:4b:49:61:da:e5:4f:81:b3:3c:75:56:8c:e0:0f:ee:fb:42:
2a:54:0b:d6:34:3a:ca:da:a2:c8:30:9e:fb:f9:b9:f6:53:d3:
75:a7:99:36:5c:7f:89:87:c4:f1:7c:d1:fd:a2:fd:b2:80:77:
09:70:94:f7:81:0e:b2:9b:5b:da:98:a1:ef:40:4e:bf:1b:ae:
76:db:0e:e9:3b:01:da:77:68:60:b6:96:5a:46:76:96:fd:e3:
eb:80:b0:23:cd:40:9e:0d:60:92:7d:41:4a:46:5d:b6:b2:8a:
55:45:cf:a2:30:b5:3a:15:2d:ae:5f:43:f0:fc:ff:46:67:ea:
67:8e:9e:28:5d:b5:ac:0b:59:1e:0b:5f:4b:d8:56:05:e4:80:
55:c9:f3:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:42:05 2025 by rpki-client