Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/J_mBavWZVQYmDTr-U3baaUw4Ahg.roa
File: J_mBavWZVQYmDTr-U3baaUw4Ahg.roa (raw, json)
Hash identifier: jwew4gHeS90cdM1veUQ6MzNRixYm5qGVmd3Vl18/FQA=
Subject key identifier: 27:F9:81:6A:F5:99:55:06:26:0D:3A:FE:53:76:DA:69:4C:38:02:18
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0194ACE4D9E6A3A299862325E604B2418267
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/J_mBavWZVQYmDTr-U3baaUw4Ahg.roa
Signing time: Tue 28 Jan 2025 12:31:06 +0000
ROA not before: Tue 28 Jan 2025 12:31:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 89.37.195.0/24 maxlen: 24
92.114.93.0/24 maxlen: 24
93.114.244.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
194.135.30.0/24 maxlen: 24
213.134.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Mar 2025 03:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ac:e4:d9:e6:a3:a2:99:86:23:25:e6:04:b2:41:82:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 28 12:31:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27f9816af5995506260d3afe5376da694c380218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4f:b7:6f:7c:db:79:c1:d0:1d:e1:d2:69:6c:
4a:d7:70:2a:08:50:c6:45:3f:d4:9b:4b:7d:9d:55:
0b:9b:36:f9:cc:39:aa:5a:9e:d7:b3:01:6f:d7:d0:
65:70:1b:bc:45:c6:7b:37:ec:11:2f:3f:8b:76:42:
d5:b3:4d:56:f7:bd:5e:04:d7:c5:cd:1b:0b:0a:e2:
9c:6f:e6:9b:ab:35:e5:18:f2:9d:59:d6:39:42:ad:
a3:8c:4c:53:ed:79:1f:2f:fc:4b:73:70:2d:9d:43:
bf:1c:6b:5e:e3:55:01:9b:88:54:01:7c:20:d1:10:
7e:ac:3a:51:40:b2:11:50:e5:4c:18:31:60:c6:2c:
68:af:86:97:46:c4:c8:f9:e3:61:86:4f:23:e7:e3:
d6:34:d7:16:86:97:7f:43:e6:a6:02:b9:7b:66:15:
f8:70:d1:20:6e:7d:19:bc:b9:94:9c:ba:7b:4f:51:
33:8c:ac:24:80:dc:69:87:ad:8d:6f:3a:eb:17:7d:
ab:92:1a:55:44:d1:86:e3:07:a9:40:d4:ce:ee:3c:
a0:75:b9:48:45:b8:81:1f:18:e6:e7:4a:79:19:64:
a1:ac:83:47:0d:be:b8:78:79:40:83:44:ce:b3:3b:
37:e3:03:4d:39:ee:08:d3:45:be:57:7d:2c:49:42:
19:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F9:81:6A:F5:99:55:06:26:0D:3A:FE:53:76:DA:69:4C:38:02:18
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/J_mBavWZVQYmDTr-U3baaUw4Ahg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.195.0/24
92.114.93.0/24
93.114.244.0/24
94.177.150.0/24
194.135.30.0/24
213.134.11.0/24
Signature Algorithm: sha256WithRSAEncryption
23:47:77:3a:9d:66:75:56:75:d5:d8:bc:9f:1a:1f:4b:a8:a5:
96:13:2e:64:a2:50:70:10:cc:63:ed:4a:3a:33:ea:2e:bd:66:
13:9a:79:e7:8a:8b:6a:4d:47:6e:08:32:3e:0f:bb:46:3f:01:
09:5b:cc:93:fe:5d:34:fc:29:42:44:6f:81:c3:f7:c3:c4:59:
fb:c9:30:24:2a:03:b2:d1:0a:5e:91:ae:a4:68:e1:b0:06:9b:
68:29:50:4b:7f:8b:1b:f5:87:6c:d0:75:5b:0b:f5:53:b3:02:
ed:5a:6c:d9:0c:52:3a:26:2b:5d:55:c0:51:c4:fd:0b:aa:ba:
99:4a:9b:cb:e1:7c:09:72:e0:7e:5e:60:2a:af:26:d1:0e:6c:
03:7b:21:26:d2:4e:85:36:06:97:1c:d0:59:74:f9:c8:52:1f:
cd:02:cc:37:48:2c:a7:f5:35:cc:a5:a1:e0:bd:a4:0b:cd:a3:
7e:8e:99:28:76:fe:b4:2a:bf:a8:5f:0b:53:1d:40:9d:5b:80:
25:eb:f0:9a:38:f4:f4:0d:3a:7c:4a:92:f4:8c:2b:cc:63:5d:
ec:9a:f2:7d:41:39:88:98:f7:89:90:b8:9b:24:ea:f7:89:17:
94:69:a4:45:fb:ee:b9:e8:e2:a8:99:ab:fd:70:b4:ff:a5:39:
43:44:e3:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:42:44 2025 by rpki-client