Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/SwyqcdFRkJEqF2UeVODqF0e19gY.roa
File: SwyqcdFRkJEqF2UeVODqF0e19gY.roa (raw, json)
Hash identifier: blTWYMcyNa8O/hvaIc5Ugv/e2C4yadQ4O2kvj2HzZ+Y=
Subject key identifier: 4B:0C:AA:71:D1:51:90:91:2A:17:65:1E:54:E0:EA:17:47:B5:F6:06
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 019420D5C888B66AB9613C5F3BB546E69578
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/SwyqcdFRkJEqF2UeVODqF0e19gY.roa
Signing time: Wed 01 Jan 2025 07:47:48 +0000
ROA not before: Wed 01 Jan 2025 07:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41022
IP address blocks: 185.195.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:c8:88:b6:6a:b9:61:3c:5f:3b:b5:46:e6:95:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: Jan 1 07:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b0caa71d15190912a17651e54e0ea1747b5f606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1f:33:fa:ca:5c:70:34:1f:11:b9:47:aa:fa:
60:17:a5:a5:44:87:94:d7:35:c3:c9:af:29:ac:a8:
f3:74:08:f8:4f:71:70:98:6e:0a:ad:58:0e:28:6b:
41:5e:d3:47:7b:5c:0d:a7:b6:e5:b1:17:53:b0:1d:
48:95:5a:3e:c0:0c:f9:a2:8a:71:f6:20:9e:30:d6:
fe:88:0c:90:2d:be:8c:92:ec:39:13:7c:de:0a:d8:
85:38:f9:fe:50:2c:51:93:9b:5a:eb:96:c6:04:34:
30:cd:c6:69:84:6d:6a:d5:14:19:9a:c1:37:a9:8c:
d2:a5:73:46:1d:a4:9a:5b:b0:15:91:8e:6f:3c:8a:
6d:69:68:7c:f4:63:cb:e7:6a:f7:26:48:31:ae:09:
00:b5:5c:41:af:33:40:2a:9b:78:70:e4:b3:af:af:
73:f4:fa:bb:f3:be:e7:db:85:c5:00:c6:56:f3:26:
be:5c:a5:5d:0e:0f:18:e5:43:77:89:3e:69:20:34:
49:fd:06:76:d0:b0:8e:32:6a:83:75:52:cd:f8:11:
42:25:93:d6:5d:9f:e0:8f:66:12:d6:3b:90:99:6b:
bf:16:b9:d8:3e:0e:d1:75:8c:b5:10:75:9d:63:de:
18:38:8e:3d:e0:52:3e:b2:f7:60:27:19:ed:e7:3d:
6f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0C:AA:71:D1:51:90:91:2A:17:65:1E:54:E0:EA:17:47:B5:F6:06
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/SwyqcdFRkJEqF2UeVODqF0e19gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.241.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:aa:05:0e:c6:d0:44:43:38:28:47:aa:a6:c1:7d:75:51:fb:
60:24:cc:ef:5e:b5:1e:94:aa:a0:08:3c:4f:52:e6:b3:f6:37:
79:94:4a:29:d7:75:c4:ac:c6:c3:6c:e0:6b:e1:cc:55:18:c3:
4c:8b:ac:54:c6:42:e2:de:8d:cf:75:ed:d9:b5:45:73:69:15:
02:71:a1:df:9e:50:5b:26:c1:cc:38:b7:61:fc:a3:53:12:86:
32:c4:fc:59:f2:f7:0b:80:57:33:74:3d:f6:58:83:22:ac:fc:
26:f7:67:c9:2e:4c:b8:f9:2d:f5:91:64:3b:ea:18:6a:86:9c:
34:80:fc:47:a9:e7:f3:ea:7a:ac:bf:aa:39:ec:4a:7b:a9:2d:
46:c9:20:4a:7a:b4:9e:09:29:fd:97:6a:6b:6d:55:65:5e:da:
bc:3c:2f:3e:86:b1:45:9a:f7:2d:5e:28:e4:a3:08:ac:76:16:
88:40:d1:20:27:54:ab:c3:49:1d:83:3c:ee:88:1b:14:72:d0:
88:a4:e6:21:48:4a:89:41:51:be:67:75:45:09:ce:91:da:a4:
a2:70:9e:c6:c6:2d:d0:ba:39:ba:0f:17:e3:ca:02:fd:6e:81:
39:38:48:32:cd:f6:93:27:54:af:36:58:7c:eb:53:7c:51:66:
47:64:39:f7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1ciItmq5YTxfO7VG5pV4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMjJlMWMyYTUzMTUzMzRiNjZkODBmNzhkNWI1MGI0MmU0
ODBiOWMwHhcNMjUwMTAxMDc0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjBjYWE3MWQxNTE5MDkxMmExNzY1MWU1NGUwZWExNzQ3YjVmNjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmR8z+spccDQfEblHqvpgF6WlRIeU
1zXDya8prKjzdAj4T3FwmG4KrVgOKGtBXtNHe1wNp7blsRdTsB1IlVo+wAz5oopx
9iCeMNb+iAyQLb6Mkuw5E3zeCtiFOPn+UCxRk5ta65bGBDQwzcZphG1q1RQZmsE3
qYzSpXNGHaSaW7AVkY5vPIptaWh89GPL52r3JkgxrgkAtVxBrzNAKpt4cOSzr69z
9Pq7877n24XFAMZW8ya+XKVdDg8Y5UN3iT5pIDRJ/QZ20LCOMmqDdVLN+BFCJZPW
XZ/gj2YS1juQmWu/FrnYPg7RdYy1EHWdY94YOI494FI+svdgJxnt5z1v9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEsMqnHRUZCRKhdlHlTg6hdHtfYGMB8GA1UdIwQY
MBaAFGIi4cKlMVM0tm2A941bULQuSAucMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEt
NTczNzAxYzg0ODMzLzEvU3d5cWNkRlJrSkVxRjJVZVZPRHFGMGUxOWdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEtNTczNzAxYzg0ODMz
LzEvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucPxMA0G
CSqGSIb3DQEBCwUAA4IBAQCpqgUOxtBEQzgoR6qmwX11UftgJMzvXrUelKqgCDxP
Uuaz9jd5lEop13XErMbDbOBr4cxVGMNMi6xUxkLi3o3Pde3ZtUVzaRUCcaHfnlBb
JsHMOLdh/KNTEoYyxPxZ8vcLgFczdD32WIMirPwm92fJLky4+S31kWQ76hhqhpw0
gPxHqefz6nqsv6o57Ep7qS1GySBKerSeCSn9l2prbVVlXtq8PC8+hrFFmvctXijk
owisdhaIQNEgJ1Srw0kdgzzuiBsUctCIpOYhSEqJQVG+Z3VFCc6R2qSicJ7Gxi3Q
ujm6DxfjygL9boE5OEgyzfaTJ1SvNlh861N8UWZHZDn3
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:04:39 2025 by rpki-client