Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MrjD41CFIa3pQVcvEZ0zP5tdIp8.roa
File: MrjD41CFIa3pQVcvEZ0zP5tdIp8.roa (raw, json)
Hash identifier: nGc6QRpJKxqfHRDsxiaOLKdRV0muiqTZYXwUKg+Zrcg=
Subject key identifier: 32:B8:C3:E3:50:85:21:AD:E9:41:57:2F:11:9D:33:3F:9B:5D:22:9F
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0195AAC4F80C8CD444ABA91D607150365E9A
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MrjD41CFIa3pQVcvEZ0zP5tdIp8.roa
Signing time: Tue 18 Mar 2025 19:39:50 +0000
ROA not before: Tue 18 Mar 2025 19:39:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19318
IP address blocks: 155.2.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:aa:c4:f8:0c:8c:d4:44:ab:a9:1d:60:71:50:36:5e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Mar 18 19:39:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32b8c3e3508521ade941572f119d333f9b5d229f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cd:90:e2:c0:fe:c1:6e:4a:9f:1e:5f:d5:43:
13:76:b5:d3:14:0a:74:82:5a:c4:09:8e:9d:66:aa:
21:9e:89:de:dd:81:0b:d8:76:7c:98:5e:b9:08:92:
26:81:e9:5b:ee:54:1b:db:47:45:8d:fa:2d:8e:1d:
d2:4f:63:7f:16:61:2e:27:bc:48:0c:53:25:d0:0f:
10:09:ad:a1:66:3f:28:23:1a:cb:75:cb:5b:07:ec:
46:71:60:05:95:10:5e:cc:a5:4a:44:53:e9:92:20:
76:c7:a8:09:35:74:1b:ee:56:c6:11:3c:75:1c:73:
f5:a1:b2:69:79:53:2d:42:be:66:79:62:ba:68:94:
48:a3:e3:2b:6b:3a:68:63:b1:d5:95:03:2b:cc:b4:
41:48:b1:e7:48:90:09:3c:35:80:bc:a1:01:d4:00:
0a:c5:46:b7:a6:d8:24:7e:47:1d:d4:86:6e:a7:59:
5a:e2:26:e7:b0:19:1a:88:c0:63:45:ce:5c:40:ee:
ac:41:e7:49:b8:30:cb:9f:6d:e3:9d:44:25:ba:14:
17:b6:78:62:f7:6f:fa:0c:2d:7d:e3:8f:bf:b6:d1:
20:04:55:df:c2:2a:9e:41:f5:61:52:5e:33:d2:01:
f9:81:d7:6b:33:c5:cd:c2:bc:8a:99:d5:cd:5c:f7:
03:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B8:C3:E3:50:85:21:AD:E9:41:57:2F:11:9D:33:3F:9B:5D:22:9F
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/MrjD41CFIa3pQVcvEZ0zP5tdIp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.2.192.0/24
Signature Algorithm: sha256WithRSAEncryption
58:0f:2c:e4:fd:cc:45:1b:ca:d4:ed:bd:b6:16:07:fe:ae:3d:
f1:5a:3a:45:3f:b7:2e:71:15:f3:98:fc:cf:9f:2c:4e:e1:1a:
74:66:da:5e:4b:89:9f:8f:e9:3e:c8:2b:01:47:ad:d6:ea:81:
04:f2:0c:6a:c8:cf:c6:d2:ed:75:aa:cd:82:46:2d:7a:b7:3f:
4e:34:99:bb:25:83:4f:a9:f7:81:91:93:23:84:f4:dd:a7:81:
49:67:02:ff:cf:c4:89:1e:19:64:90:0f:35:7a:b3:36:55:14:
4d:35:94:4e:a5:3a:d1:1f:ce:ad:cb:6a:61:75:47:71:a0:a9:
fe:76:b8:5e:e1:67:33:f8:ff:16:5b:40:22:7c:0f:17:30:73:
93:49:7c:70:b0:0c:d2:32:8b:f1:ad:b3:52:21:c9:c1:73:67:
52:55:be:39:a0:12:09:02:28:fc:2c:d9:7b:27:8d:63:8f:80:
88:2d:3e:f3:c4:f0:1f:90:74:78:46:e0:ea:db:31:50:79:23:
a3:00:37:57:8b:61:14:2c:7c:37:5c:5f:aa:b6:2d:1f:ff:d3:
b3:c9:d5:e2:0f:02:85:7d:bb:0b:8d:47:f3:19:60:c6:8a:fc:
8b:fa:93:c8:14:be:06:a4:1c:2e:a5:75:e3:fa:a6:64:1c:e7:
ac:1a:60:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:20:00 2025 by rpki-client