Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/m095Z-7KR0K5gXucbWhKiz12Uqg.roa
File: m095Z-7KR0K5gXucbWhKiz12Uqg.roa (raw, json)
Hash identifier: pKKUCvxcyqiDYUVY3jhLgvu4uMJ7RTYnDW2HPLpWkkY=
Subject key identifier: 9B:4F:79:67:EE:CA:47:42:B9:81:7B:9C:6D:68:4A:8B:3D:76:52:A8
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 019423D7E3C4C9E12B03003BFF09D4E8CA87
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/m095Z-7KR0K5gXucbWhKiz12Uqg.roa
Signing time: Wed 01 Jan 2025 21:48:58 +0000
ROA not before: Wed 01 Jan 2025 21:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49107
IP address blocks: 185.126.182.0/24 maxlen: 24
185.126.183.0/24 maxlen: 24
185.255.176.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:e3:c4:c9:e1:2b:03:00:3b:ff:09:d4:e8:ca:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 21:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b4f7967eeca4742b9817b9c6d684a8b3d7652a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:de:70:62:24:35:33:93:18:47:86:8b:af:f9:
72:3d:f8:a2:62:04:d3:fd:f6:a9:99:1b:36:1c:fb:
a2:ff:f9:c7:8a:21:35:48:62:24:6a:b1:53:6c:7c:
57:b2:1d:18:ae:bc:53:ab:df:44:97:0c:3d:9d:07:
f2:f3:3b:1a:28:5f:9c:e6:43:81:4f:18:21:aa:87:
fd:f9:88:89:36:55:15:73:7a:f2:b5:91:5f:ab:ac:
bc:9d:9b:7d:a1:cf:6d:82:a7:67:c0:48:68:6f:69:
24:4e:40:f0:cb:21:59:3c:22:11:e3:36:2e:2e:85:
3d:db:ac:7a:43:5d:91:cf:4e:6f:0e:64:e6:38:20:
d8:c6:da:9f:e5:da:33:ee:31:14:a8:c4:ba:d9:94:
24:37:f8:cc:45:24:96:74:3a:c7:be:19:0d:16:39:
9b:9c:3b:6c:2e:59:3b:32:49:9e:0d:4a:9c:84:e6:
8c:d3:fc:a3:cc:c0:99:1c:19:17:74:6f:23:0b:6f:
79:e3:7f:bc:74:a2:f5:ff:35:2d:cb:b7:e5:62:27:
a8:11:8c:b3:bc:07:ac:7f:2a:4b:95:0f:98:ed:a6:
80:b5:c8:9b:8b:7d:ab:93:38:43:a4:7a:6e:72:20:
1d:f5:9a:d7:f0:a4:9b:10:b2:a6:c6:01:6e:f4:90:
38:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:4F:79:67:EE:CA:47:42:B9:81:7B:9C:6D:68:4A:8B:3D:76:52:A8
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/m095Z-7KR0K5gXucbWhKiz12Uqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.182.0/23
185.255.176.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:ff:16:a6:e3:41:68:3c:71:96:5c:d2:ca:13:78:a4:7f:a7:
fa:f2:84:21:6d:3d:71:8e:c4:bf:2d:ee:47:92:e1:0e:79:55:
7e:5d:79:65:cc:24:66:24:32:cc:12:ed:24:c0:74:d4:ff:9b:
9c:f5:ef:a1:89:89:bd:cb:67:e0:62:e1:35:23:86:65:70:df:
9b:83:50:a0:fd:4b:95:fb:ad:9b:ad:4c:4d:bd:dc:be:ce:c7:
95:1c:6e:e4:c6:37:0c:f8:bc:ba:c4:e2:a5:dd:a4:67:cb:b4:
e7:c6:d2:74:95:1f:59:17:77:4b:72:96:af:5a:4a:da:15:ce:
57:e3:6e:12:40:fc:7c:4b:21:0e:af:23:b6:85:50:4a:7b:55:
30:e1:ea:01:9e:26:30:53:73:bb:1e:46:27:97:2f:34:05:20:
1d:b6:a1:13:f4:62:ea:1a:6d:78:57:37:fa:49:3a:9d:9e:37:
0f:45:79:f4:71:35:d2:0b:10:d0:28:fb:16:42:a0:a1:6d:55:
63:87:aa:96:71:a5:61:d0:69:7a:89:53:b5:e5:81:00:82:6d:
87:6c:9d:a0:f6:32:60:6a:9e:b6:fc:43:36:2a:60:32:fd:a7:
f7:4a:dc:b2:86:e5:46:3d:61:c1:34:25:d4:86:e6:7a:18:b5:
28:bd:51:bd
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQj1+PEyeErAwA7/wnU6MqHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjM2NTM1NWI2NjU1NjRhMjEwYzM1OGM2OGEwMTE3Yjdm
YmViOWEwHhcNMjUwMTAxMjE0ODU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjRmNzk2N2VlY2E0NzQyYjk4MTdiOWM2ZDY4NGE4YjNkNzY1MmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxN5wYiQ1M5MYR4aLr/lyPfiiYgTT
/fapmRs2HPui//nHiiE1SGIkarFTbHxXsh0YrrxTq99Elww9nQfy8zsaKF+c5kOB
Txghqof9+YiJNlUVc3rytZFfq6y8nZt9oc9tgqdnwEhob2kkTkDwyyFZPCIR4zYu
LoU926x6Q12Rz05vDmTmOCDYxtqf5doz7jEUqMS62ZQkN/jMRSSWdDrHvhkNFjmb
nDtsLlk7MkmeDUqchOaM0/yjzMCZHBkXdG8jC29543+8dKL1/zUty7flYieoEYyz
vAesfypLlQ+Y7aaAtcibi32rkzhDpHpuciAd9ZrX8KSbELKmxgFu9JA4LQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJtPeWfuykdCuYF7nG1oSos9dlKoMB8GA1UdIwQY
MBaAFHRjZTVbZlVkohDDWMaKARe3++uaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGIt
NmE0ZWNhZjhiM2IxLzEvbTA5NVotN0tSMEs1Z1h1Y2JXaEtpejEyVXFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGItNmE0ZWNhZjhiM2Ix
LzEvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBuX62AwQB
uf+wMA0GCSqGSIb3DQEBCwUAA4IBAQAs/xam40FoPHGWXNLKE3ikf6f68oQhbT1x
jsS/Le5HkuEOeVV+XXllzCRmJDLMEu0kwHTU/5uc9e+hiYm9y2fgYuE1I4ZlcN+b
g1Cg/UuV+62brUxNvdy+zseVHG7kxjcM+Ly6xOKl3aRny7TnxtJ0lR9ZF3dLcpav
WkraFc5X424SQPx8SyEOryO2hVBKe1Uw4eoBniYwU3O7HkYnly80BSAdtqET9GLq
Gm14Vzf6STqdnjcPRXn0cTXSCxDQKPsWQqChbVVjh6qWcaVh0Gl6iVO15YEAgm2H
bJ2g9jJgap62/EM2KmAy/af3StyyhuVGPWHBNCXUhuZ6GLUovVG9
-----END CERTIFICATE-----
Generated at Tue Apr 8 10:15:44 2025 by rpki-client