Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/r-97pPvj-RimUl1469wxiEjOXHw.roa
File: r-97pPvj-RimUl1469wxiEjOXHw.roa (raw, json)
Hash identifier: BJihjsrYYxzSHh3xQ0PZJNW0AKvTbj8ZG/b/oUaGZaU=
Subject key identifier: AF:EF:7B:A4:FB:E3:F9:18:A6:52:5D:78:EB:DC:31:88:48:CE:5C:7C
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 019423D7EBA63F59B742867FE5D7241E6A0F
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/r-97pPvj-RimUl1469wxiEjOXHw.roa
Signing time: Wed 01 Jan 2025 21:49:00 +0000
ROA not before: Wed 01 Jan 2025 21:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215096
IP address blocks: 212.22.80.0/24 maxlen: 24
212.22.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:eb:a6:3f:59:b7:42:86:7f:e5:d7:24:1e:6a:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 21:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=afef7ba4fbe3f918a6525d78ebdc318848ce5c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a5:74:93:59:45:5f:28:cb:05:c1:12:0e:33:
29:30:00:28:69:c1:e3:05:6a:bf:8b:b7:f5:5f:29:
b3:b9:1b:9a:93:eb:c5:e4:78:f0:c5:37:67:ec:d7:
3b:55:46:52:e4:3c:ff:93:81:4d:04:5f:1d:46:4f:
17:15:bf:95:17:90:9a:5f:da:10:f6:62:5e:0f:79:
9c:83:92:dc:56:22:0c:8e:34:84:00:d7:04:b3:e5:
b5:3e:0a:c2:f6:a1:2c:b7:b0:a0:ae:ad:fa:77:e9:
bc:bc:93:b6:4e:2e:43:6d:0c:29:ef:25:61:57:28:
78:51:fc:3f:3b:ad:1c:3c:5c:70:a3:09:59:50:20:
65:77:d7:7a:56:49:85:2e:65:cc:60:fe:e3:be:16:
6b:c2:c8:28:76:82:9c:21:e9:93:d2:f8:b7:7c:66:
e2:29:93:28:40:b9:8f:23:67:9d:1c:5f:79:6e:73:
6b:60:7e:63:9d:e0:ff:62:63:47:69:55:07:aa:c7:
ba:4a:0d:43:c0:dc:01:f0:e6:84:cf:fb:76:d3:0f:
ec:c7:89:11:55:52:90:0a:3f:73:41:87:67:4b:f2:
62:25:b1:3a:b9:49:ae:96:5f:5f:c9:7b:8d:1f:55:
de:af:64:58:cb:4a:f0:85:24:ad:3a:b5:11:ab:84:
82:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:EF:7B:A4:FB:E3:F9:18:A6:52:5D:78:EB:DC:31:88:48:CE:5C:7C
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/r-97pPvj-RimUl1469wxiEjOXHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.80.0/24
212.22.86.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:1d:5f:b3:1f:52:07:c7:5a:c5:a0:bd:b1:9d:8a:f0:2a:6e:
df:36:58:29:99:4b:06:b0:62:48:e0:56:ca:b1:fe:04:b3:93:
a1:ef:a5:8a:15:64:1a:b7:cf:91:18:e8:2d:ee:ed:aa:91:c3:
3f:1c:dd:30:72:7f:cc:79:da:fa:e2:a3:af:b2:3c:9d:0b:64:
49:a1:a4:e9:20:c2:91:dd:10:97:b3:f4:5b:e0:a0:9e:71:f0:
2d:c7:75:b0:e5:a0:87:9d:46:92:f1:76:6f:c2:d8:73:10:33:
e2:00:77:b9:0e:6f:26:28:17:df:32:61:6d:5d:9e:cb:ac:0d:
57:3e:22:7d:1b:fc:cf:01:4e:62:fe:18:0f:18:2f:b1:e7:fb:
65:20:50:bc:e6:7c:48:49:e3:c7:e0:33:29:4a:69:44:71:47:
89:8f:18:c8:22:b8:4d:dd:ae:c8:b3:96:bb:ea:1d:e0:3d:52:
29:4d:12:82:24:c4:4b:bf:e4:5c:2e:c5:4f:58:67:2c:68:bc:
a3:bb:e7:8c:17:9d:5e:81:1f:b4:7d:74:20:72:7a:48:a4:62:
1e:03:ab:9d:53:20:81:06:77:c7:db:00:a8:3d:ba:6f:02:ae:
3c:bb:4e:b8:98:c9:b7:18:c0:2b:8b:a3:f8:8d:0d:00:ee:3e:
33:38:d3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:58:15 2025 by rpki-client