Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/u3Gm6l2xEryYp2Hjv5EZHS-8JWs.roa
File: u3Gm6l2xEryYp2Hjv5EZHS-8JWs.roa (raw, json)
Hash identifier: pFBOXJ7Esc39OQ26JOyW4DMUlulYCetq6fGsY/MF+5Q=
Subject key identifier: BB:71:A6:EA:5D:B1:12:BC:98:A7:61:E3:BF:91:19:1D:2F:BC:25:6B
Certificate issuer: /CN=68d24addcc3d5b77a099a907122252a47c8f6310
Certificate serial: 019423D6E1301BE0C4072ED31D2AF5C4B9CF
Authority key identifier: 68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/u3Gm6l2xEryYp2Hjv5EZHS-8JWs.roa
Signing time: Wed 01 Jan 2025 21:47:52 +0000
ROA not before: Wed 01 Jan 2025 21:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200504
IP address blocks: 178.183.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 09:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:e1:30:1b:e0:c4:07:2e:d3:1d:2a:f5:c4:b9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d24addcc3d5b77a099a907122252a47c8f6310
Validity
Not Before: Jan 1 21:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb71a6ea5db112bc98a761e3bf91191d2fbc256b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:05:41:6f:f8:d3:dc:43:41:26:16:d2:f8:a9:
4c:f2:fa:43:43:9a:96:07:f9:9e:97:24:fd:a3:fd:
86:7c:f9:ba:60:c3:5b:5a:f2:7a:81:86:58:1e:a4:
5d:8e:3d:ac:15:2e:38:1e:d6:91:5e:2d:6f:ca:6d:
04:d4:f6:3f:8f:d3:ef:65:40:58:d0:d6:24:db:b0:
6e:f7:e5:0e:68:25:b8:46:14:01:2a:78:a9:01:35:
2c:68:d6:2d:6c:3c:1c:6d:8e:03:46:dd:ab:73:45:
6a:5b:3b:a9:cf:49:a3:58:d1:d6:93:00:14:eb:4f:
23:3f:8a:87:7d:f7:6b:f6:62:af:da:f1:b4:09:2c:
73:d8:95:6e:ec:9c:1d:7e:cf:09:7b:0c:82:78:28:
32:5e:9a:e8:e3:18:84:ec:59:a5:e5:e3:bd:b7:17:
59:66:f0:de:52:60:dc:37:dd:ce:8f:10:4d:e7:57:
ef:e7:b0:07:26:b9:d9:e5:fe:16:3e:9b:89:65:c7:
31:70:30:7d:23:2a:6f:16:be:0c:ec:b8:e1:74:b1:
e0:d9:59:b5:05:76:6a:4d:13:82:1f:95:16:b5:15:
94:68:a7:6f:54:4e:b9:17:75:14:8e:27:c4:2a:0b:
de:5b:3d:1c:18:1b:21:45:48:85:9d:04:93:67:58:
4a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:71:A6:EA:5D:B1:12:BC:98:A7:61:E3:BF:91:19:1D:2F:BC:25:6B
X509v3 Authority Key Identifier:
keyid:68:D2:4A:DD:CC:3D:5B:77:A0:99:A9:07:12:22:52:A4:7C:8F:63:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNJK3cw9W3egmakHEiJSpHyPYxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/u3Gm6l2xEryYp2Hjv5EZHS-8JWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/51a655-2735-49ef-80df-b316db5938ff/1/aNJK3cw9W3egmakHEiJSpHyPYxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.183.21.0/24
Signature Algorithm: sha256WithRSAEncryption
76:35:30:7f:8e:3f:23:4a:05:95:1b:2b:5c:e3:1e:83:25:1d:
e9:53:5a:73:ab:32:c5:bf:79:0d:3a:03:cd:7e:a9:64:30:ce:
65:b2:60:e8:19:75:e3:a0:4f:35:9f:c3:2e:84:58:4e:e4:2f:
34:0f:60:bf:b7:38:8b:cf:80:4d:8d:08:78:d1:5d:63:a5:5d:
7b:b1:1c:eb:b7:eb:39:56:77:e4:11:75:ce:90:e7:87:2c:df:
b6:b8:30:4d:ad:10:b0:bb:89:c0:6e:14:05:26:1f:e3:2b:85:
fe:7a:d9:32:03:6a:66:55:7f:06:fb:f6:f9:95:08:dc:17:2c:
ee:7b:4d:39:29:42:50:4e:a5:76:d9:28:13:25:8d:e2:ff:7e:
ea:40:fe:dc:f3:92:88:8d:b5:56:9c:98:a8:f9:8b:6e:cf:30:
f6:e6:db:93:53:58:21:ea:bd:98:1f:3d:a4:e2:b4:5d:88:ad:
ca:d7:99:35:24:68:3a:9d:21:68:93:e4:69:42:80:86:3c:e4:
d9:e7:5f:49:7a:96:50:01:6f:29:1e:7b:eb:9d:3a:5b:96:3d:
cb:b3:1d:28:be:03:5b:8d:41:2d:a9:37:53:2d:ce:d8:72:77:
28:b7:80:d0:9d:da:95:af:c8:1b:ef:8e:4a:79:fb:32:63:5e:
fa:fa:81:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 19:20:23 2025 by rpki-client