Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/vATMWnOROvqwj7Arlr6Fn1rGVzA.roa
File: vATMWnOROvqwj7Arlr6Fn1rGVzA.roa (raw, json)
Hash identifier: g+SOXxMEXOuyhniiidgY516t6TKGEEtZYtbh4vxG6wY=
Subject key identifier: BC:04:CC:5A:73:91:3A:FA:B0:8F:B0:2B:96:BE:85:9F:5A:C6:57:30
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0194222001A63E769815868B5A52B75224A2
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/vATMWnOROvqwj7Arlr6Fn1rGVzA.roa
Signing time: Wed 01 Jan 2025 13:48:30 +0000
ROA not before: Wed 01 Jan 2025 13:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58061
IP address blocks: 212.80.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:01:a6:3e:76:98:15:86:8b:5a:52:b7:52:24:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 1 13:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bc04cc5a73913afab08fb02b96be859f5ac65730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:50:bb:eb:9d:ca:e2:2f:96:d0:d6:a7:a1:e0:
c2:da:95:b1:38:e1:23:fc:66:95:0c:60:9d:4d:1e:
da:fd:a2:1e:08:27:27:f5:d7:50:e4:d6:61:e8:66:
b0:41:4f:3a:4a:5f:8a:68:56:12:45:e0:97:88:94:
28:95:72:8d:22:8e:b2:4a:a7:0c:6d:ce:bd:4d:4c:
4b:64:06:aa:68:a3:d9:c1:dc:8e:96:73:b4:36:ae:
ba:eb:89:7b:09:08:49:e9:85:7a:43:9b:9b:1a:5a:
9b:e0:2c:cd:9e:07:3a:70:77:05:fc:87:c6:f5:71:
3f:7c:2c:58:c5:00:e0:16:ed:7e:0e:b5:1a:85:67:
63:31:da:e3:87:17:42:0a:67:f5:a4:d5:28:3e:1d:
c8:f9:87:be:98:6d:57:0b:53:3c:92:ff:65:5f:91:
83:9c:73:23:89:4d:4e:b7:40:5c:5a:dd:5d:9e:40:
80:b0:cb:80:52:a7:96:2b:7d:f9:3d:9d:72:34:aa:
57:32:28:5d:f5:80:8c:eb:27:60:de:45:a1:cd:86:
50:a2:11:0b:59:b0:37:20:5d:90:48:d2:7d:58:f3:
6d:04:be:a1:40:69:bd:a1:63:e5:a7:90:ad:13:4b:
6e:90:d3:f5:4a:00:26:40:73:0f:1b:08:2c:03:98:
a2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:04:CC:5A:73:91:3A:FA:B0:8F:B0:2B:96:BE:85:9F:5A:C6:57:30
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/vATMWnOROvqwj7Arlr6Fn1rGVzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.80.0.0/24
Signature Algorithm: sha256WithRSAEncryption
40:da:39:59:8a:0e:3e:03:be:8d:d7:32:78:6a:43:63:6b:8e:
1d:ea:1e:a9:de:4c:c1:5e:7d:1d:1c:e8:df:f4:ce:cd:7a:32:
76:44:2b:04:b2:8f:b8:ef:23:7e:11:d5:05:72:48:fa:30:f6:
d9:78:89:32:1e:2b:df:6b:aa:c9:57:f2:8a:2d:9e:81:9d:9c:
2e:1b:4e:73:53:c3:10:57:78:62:f5:94:58:20:28:e4:ea:fe:
91:59:4d:60:26:c0:95:c5:d6:a7:92:85:a1:00:10:03:dd:e3:
b8:83:ed:cc:ac:ee:ea:13:75:a6:3a:12:dc:aa:e7:a7:4a:75:
99:8f:c2:11:bc:1d:65:e7:f5:13:56:65:b9:46:18:39:94:89:
cd:2c:aa:f4:ae:f2:a3:9f:71:3e:34:73:4e:77:ae:87:fe:99:
92:8f:70:f6:83:00:63:5a:b2:ef:f9:0d:5e:fc:fd:5a:70:23:
5a:30:72:bf:2d:45:52:0e:62:f3:49:c3:b5:55:c5:40:d1:80:
c2:e6:aa:fd:85:49:3b:1f:03:ec:20:f3:d1:47:29:c1:cf:a3:
a6:aa:52:df:f3:0c:34:20:35:cb:f2:d4:50:f0:cc:e8:63:20:
31:bc:ba:42:fd:05:cf:39:77:1c:3a:e9:f7:c8:ef:2d:2f:2b:
ec:d0:7d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:28:25 2025 by rpki-client