Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/f55jTIdQsHwVwkpSlpByg0fWwy8.roa
File: f55jTIdQsHwVwkpSlpByg0fWwy8.roa (raw, json)
Hash identifier: 25acZzU2K48rff6CSQnqCSvHpfoM5LhDm4D2D9V3Y28=
Subject key identifier: 7F:9E:63:4C:87:50:B0:7C:15:C2:4A:52:96:90:72:83:47:D6:C3:2F
Certificate issuer: /CN=ef583686464c533d4152bca2edf3a01b487eea92
Certificate serial: 019424B3C420531EB2E1C382623D6C56A699
Authority key identifier: EF:58:36:86:46:4C:53:3D:41:52:BC:A2:ED:F3:A0:1B:48:7E:EA:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71g2hkZMUz1BUryi7fOgG0h-6pI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/f55jTIdQsHwVwkpSlpByg0fWwy8.roa
Signing time: Thu 02 Jan 2025 01:49:08 +0000
ROA not before: Thu 02 Jan 2025 01:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21263
IP address blocks: 5.154.177.0/24 maxlen: 24
5.154.178.0/24 maxlen: 24
178.157.88.0/23 maxlen: 24
2a0e:1d00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/71g2hkZMUz1BUryi7fOgG0h-6pI.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/71g2hkZMUz1BUryi7fOgG0h-6pI.mft
rsync://rpki.ripe.net/repository/DEFAULT/71g2hkZMUz1BUryi7fOgG0h-6pI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 22:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:c4:20:53:1e:b2:e1:c3:82:62:3d:6c:56:a6:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef583686464c533d4152bca2edf3a01b487eea92
Validity
Not Before: Jan 2 01:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7f9e634c8750b07c15c24a529690728347d6c32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:9a:dd:49:f1:27:1f:1b:b7:a1:55:02:ea:
57:c1:5d:a5:a3:4b:40:b3:4d:25:18:a2:79:6e:e8:
1a:a9:4e:7f:1f:bd:e6:d6:5e:95:47:0f:25:93:8d:
b7:1e:93:40:82:9d:84:a2:db:93:e5:91:a9:d9:f7:
ad:18:1d:b5:4d:50:25:82:be:0f:a9:6f:d5:94:27:
a7:a2:68:a6:76:2b:40:8a:cb:82:aa:d4:d3:1b:1c:
43:83:5f:5e:0c:0b:bb:db:c0:98:46:cb:1c:ac:58:
68:8e:4f:dc:32:6d:cd:95:68:38:22:a3:8f:cc:0b:
b9:38:21:1b:b3:05:6b:9d:58:9a:40:20:8c:c1:ef:
84:85:00:0d:30:b0:65:38:cc:86:01:ae:36:b1:d0:
5a:89:73:42:93:f8:1b:ee:cb:92:c1:c3:97:02:11:
f3:b3:7a:55:27:a7:cd:0d:02:fc:1a:07:8d:17:10:
2c:7e:40:a5:91:7e:fc:b7:86:13:cf:48:34:9a:de:
f3:22:20:03:f0:84:f7:47:6f:52:11:09:1c:c8:24:
ca:6c:69:09:55:7f:f9:0e:f3:8d:ca:39:ea:f3:54:
53:0a:bf:23:d7:d5:48:2a:72:9c:eb:3e:d2:84:0e:
59:32:65:3c:11:71:06:f1:89:2e:9f:b6:39:dd:82:
b7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:9E:63:4C:87:50:B0:7C:15:C2:4A:52:96:90:72:83:47:D6:C3:2F
X509v3 Authority Key Identifier:
keyid:EF:58:36:86:46:4C:53:3D:41:52:BC:A2:ED:F3:A0:1B:48:7E:EA:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71g2hkZMUz1BUryi7fOgG0h-6pI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/f55jTIdQsHwVwkpSlpByg0fWwy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/71g2hkZMUz1BUryi7fOgG0h-6pI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.177.0-5.154.178.255
178.157.88.0/23
IPv6:
2a0e:1d00::/32
Signature Algorithm: sha256WithRSAEncryption
00:ae:71:d0:fc:f2:c0:7f:62:4c:22:73:56:69:3a:69:f8:08:
31:1c:5b:a5:d7:83:1a:60:4e:6c:9b:a5:57:13:8c:22:51:f8:
ad:b6:b3:58:ad:8c:3f:56:df:8d:be:f3:d8:38:f6:b5:05:2a:
a4:9e:04:0d:4a:35:f8:15:bc:f0:23:c8:42:b0:f8:92:be:3c:
89:6d:4e:1b:05:36:80:d9:8e:e5:fd:c6:5b:c0:bf:07:80:3c:
ad:9b:a2:45:99:d0:0f:e4:65:08:07:16:0c:2e:6e:81:6d:46:
73:25:7c:b8:c1:35:66:5c:8b:6a:1c:8f:5c:44:43:13:05:26:
a0:a7:81:6c:a3:a1:af:b1:24:77:81:76:c4:ac:bd:69:02:b2:
28:fd:b3:15:36:20:60:16:3e:fb:96:e1:db:82:36:56:1e:28:
71:75:63:7c:bc:0d:39:79:67:4d:f4:8a:bb:27:2a:53:e1:ee:
d6:89:67:f7:a7:ea:e5:b5:60:92:00:0f:37:91:ba:c3:3c:89:
c8:2a:07:d3:15:a2:7f:75:6e:90:56:68:a8:07:a3:ba:98:fa:
a6:94:3f:31:06:cb:1a:59:0e:21:54:02:5d:ba:fa:ec:04:a1:
36:f7:43:f2:1b:95:b1:1c:57:02:de:93:e3:58:bf:d0:9f:9a:
37:88:c6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:10:32 2025 by rpki-client