Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/25b7b8-c302-4dda-898a-4825e18d7301/1/uWoPBSuKtZ2HO_WxNhkewE8kmNI.roa
File: uWoPBSuKtZ2HO_WxNhkewE8kmNI.roa (raw, json)
Hash identifier: QJNvWDQRN2z0KaQFQt1TsEZSkKfsSbNz4FWIaeOeQG0=
Subject key identifier: B9:6A:0F:05:2B:8A:B5:9D:87:3B:F5:B1:36:19:1E:C0:4F:24:98:D2
Certificate issuer: /CN=79bb7749abde6f5da4eb1c6ed1c57681617846b0
Certificate serial: 01942747793E9CB1DB18A8FE5FEFE9324FC5
Authority key identifier: 79:BB:77:49:AB:DE:6F:5D:A4:EB:1C:6E:D1:C5:76:81:61:78:46:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ebt3Saveb12k6xxu0cV2gWF4RrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/25b7b8-c302-4dda-898a-4825e18d7301/1/uWoPBSuKtZ2HO_WxNhkewE8kmNI.roa
Signing time: Thu 02 Jan 2025 13:49:43 +0000
ROA not before: Thu 02 Jan 2025 13:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13030
IP address blocks: 185.157.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/25b7b8-c302-4dda-898a-4825e18d7301/1/ebt3Saveb12k6xxu0cV2gWF4RrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/25b7b8-c302-4dda-898a-4825e18d7301/1/ebt3Saveb12k6xxu0cV2gWF4RrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ebt3Saveb12k6xxu0cV2gWF4RrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 21:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:79:3e:9c:b1:db:18:a8:fe:5f:ef:e9:32:4f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79bb7749abde6f5da4eb1c6ed1c57681617846b0
Validity
Not Before: Jan 2 13:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b96a0f052b8ab59d873bf5b136191ec04f2498d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c4:0c:e1:7a:4a:fd:6c:23:0a:4e:d2:aa:06:
66:59:eb:31:df:bf:bf:1a:81:09:ed:93:fb:c1:f1:
0b:99:77:3d:85:aa:24:98:dd:6e:7c:b8:78:f1:52:
76:df:53:a0:f2:8d:48:ca:a9:81:92:06:20:8f:d7:
b6:8d:f9:91:71:7e:4a:af:80:3f:a9:73:e0:f4:76:
bb:cd:38:e8:91:3a:c5:af:04:9c:e7:d1:16:06:0b:
78:0f:10:a7:45:db:8a:79:63:d2:09:2e:04:5c:b8:
2b:8a:4b:e6:0a:5f:6e:0e:ff:5a:ad:62:5d:4f:41:
b1:dd:fa:d8:67:aa:54:be:46:fb:46:72:5f:6d:b1:
49:94:b2:85:dd:7a:03:90:5f:25:f2:25:7e:3c:ee:
20:dc:54:86:a0:0f:b1:e1:5e:5d:4f:66:2f:b0:6e:
93:e7:23:86:24:7c:2f:b7:d2:90:e9:08:33:18:fc:
e5:8a:f3:b7:37:d6:db:57:e4:bc:5c:89:50:c0:60:
51:c1:2d:6d:a6:43:d3:4c:16:30:26:8c:a7:3e:cf:
9c:ea:dc:dd:2c:72:a6:fd:44:3f:10:9f:15:c9:bd:
15:3c:f7:e9:37:8b:71:0c:a3:e1:1c:9d:3b:d0:b7:
fe:7f:82:49:c1:7f:a4:0a:4a:1f:eb:7e:ab:f6:63:
63:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6A:0F:05:2B:8A:B5:9D:87:3B:F5:B1:36:19:1E:C0:4F:24:98:D2
X509v3 Authority Key Identifier:
keyid:79:BB:77:49:AB:DE:6F:5D:A4:EB:1C:6E:D1:C5:76:81:61:78:46:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ebt3Saveb12k6xxu0cV2gWF4RrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/25b7b8-c302-4dda-898a-4825e18d7301/1/uWoPBSuKtZ2HO_WxNhkewE8kmNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/25b7b8-c302-4dda-898a-4825e18d7301/1/ebt3Saveb12k6xxu0cV2gWF4RrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.3.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:a3:77:43:82:7b:3c:32:97:34:f6:4b:f9:fb:93:11:82:38:
be:31:fb:e3:69:cf:fa:2f:81:f8:cc:c9:b1:a8:68:ff:90:df:
e9:6b:5f:7d:53:30:24:32:9d:30:27:74:ad:40:0c:c4:8b:da:
b6:89:82:89:00:50:da:3b:c5:0f:af:4a:01:51:7d:5d:01:22:
23:78:1f:21:75:4a:3b:14:4d:37:ef:fd:93:62:6d:25:22:24:
eb:4f:d5:87:09:72:5f:d0:5b:87:1a:50:9e:98:3c:f5:8c:78:
2e:83:e1:0e:8d:0b:20:91:ec:ac:c5:2e:86:c3:d5:29:e7:52:
f9:8e:4e:17:6f:0d:d7:07:f0:81:64:92:91:66:dd:24:42:34:
ba:17:57:8e:b2:52:0f:c9:0d:37:e6:86:23:91:4c:07:e3:05:
0b:04:3a:a9:a9:fa:06:ef:0d:2d:e9:33:e5:67:72:0a:ab:31:
47:29:ec:6a:20:33:d1:78:9b:65:46:4b:4a:dd:f2:49:82:d5:
49:09:4a:94:d4:7f:47:9d:bf:19:8c:d0:e8:a3:3c:6d:f0:50:
f9:3b:c2:50:02:05:aa:b3:82:55:06:bd:7f:44:a6:66:94:69:
ed:f8:57:a3:12:6a:51:fb:bc:75:c7:c7:39:9c:50:7a:da:e2:
c0:5f:4f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:41:01 2025 by rpki-client