Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/p1W2xtpypFZeS4V60u-1DjDqTds.roa
File: p1W2xtpypFZeS4V60u-1DjDqTds.roa (raw, json)
Hash identifier: 34oWoq20u1/mqtBm1kWh1Zu5DKZerBQ57c/ZC8RMnIo=
Subject key identifier: A7:55:B6:C6:DA:72:A4:56:5E:4B:85:7A:D2:EF:B5:0E:30:EA:4D:DB
Certificate issuer: /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial: 01951959FCA1AFE91DEE7CB95397BC7378AD
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/p1W2xtpypFZeS4V60u-1DjDqTds.roa
Signing time: Tue 18 Feb 2025 13:58:02 +0000
ROA not before: Tue 18 Feb 2025 13:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44322
IP address blocks: 185.165.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 01:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:19:59:fc:a1:af:e9:1d:ee:7c:b9:53:97:bc:73:78:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Validity
Not Before: Feb 18 13:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a755b6c6da72a4565e4b857ad2efb50e30ea4ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bc:12:4b:84:f9:5d:16:a6:df:23:f3:24:68:
19:2e:64:fe:7b:99:6a:79:b2:34:32:1c:46:e1:84:
cd:18:ae:29:03:13:98:c5:bf:4d:4d:e5:1a:26:73:
23:4a:92:fe:e0:33:c1:ea:65:39:f6:5b:9d:f8:19:
3e:82:45:17:e1:87:5a:35:63:30:e2:fb:80:f0:3c:
a5:4c:35:a0:c1:17:0b:04:c0:6a:e3:b7:97:65:97:
fc:51:8e:65:68:ca:16:dc:0e:57:2f:89:de:80:cb:
b8:5a:2a:03:21:42:dd:2b:1f:be:38:5f:d7:73:02:
aa:20:6d:8a:ea:b9:f5:69:de:83:a4:e0:c4:e2:25:
05:51:27:f0:7b:ab:a2:89:87:83:bc:23:40:f6:59:
6c:5c:60:ab:c9:0e:34:20:f1:f1:c9:bd:d1:3c:c6:
b8:c3:b9:74:f9:20:95:cc:c2:0c:f2:0a:37:d6:e5:
56:9f:50:8d:d2:5c:eb:e6:eb:f7:3a:0e:13:95:d3:
70:b0:36:29:18:e0:56:4e:a9:a1:53:67:b9:c5:da:
cd:1d:9d:ce:21:7c:cd:6a:6b:18:4e:fc:83:25:ba:
09:3b:c6:0a:a2:55:eb:18:3d:b9:22:7a:3f:d6:a4:
0f:77:40:b3:e0:83:a6:55:52:57:29:23:50:e0:3f:
f5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:55:B6:C6:DA:72:A4:56:5E:4B:85:7A:D2:EF:B5:0E:30:EA:4D:DB
X509v3 Authority Key Identifier:
keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/p1W2xtpypFZeS4V60u-1DjDqTds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.112.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:a7:c5:4d:61:05:ce:d4:7d:6e:f3:14:d1:b8:99:8c:29:75:
63:05:9e:42:8a:e4:6f:1a:df:f7:30:23:83:7a:d7:08:49:c0:
37:46:09:4c:38:ea:b1:51:74:1f:b4:28:89:b8:e6:2b:25:52:
dc:8c:7f:90:90:7d:ee:11:27:fb:5b:58:c8:7c:82:7e:f8:ca:
ed:ee:4c:a9:d9:22:fc:fb:86:89:3a:d1:c5:58:11:a6:89:e4:
de:dd:41:e9:9c:3a:47:df:90:27:57:0b:d9:52:9a:ef:4e:ba:
8c:c2:79:c6:20:db:48:76:33:ce:d0:17:ca:5c:21:a1:16:3d:
1f:da:9b:ca:cf:44:18:3f:47:01:87:33:b0:49:0e:dd:86:b1:
99:9f:35:08:71:e2:60:25:54:fd:b5:87:05:97:c3:d3:9b:7a:
b8:da:19:aa:29:28:0a:24:22:3f:59:97:d4:3e:28:ba:51:a7:
d0:7a:c0:e4:da:5e:51:45:bf:88:23:02:ee:5e:24:79:93:aa:
40:47:c5:5f:d6:ba:87:b5:57:0e:05:ea:58:69:4d:99:d7:58:
89:44:e8:33:4f:41:f5:c9:09:38:b5:15:60:66:3b:c1:de:d6:
72:ca:d4:2d:bb:84:74:c0:e4:ec:7f:25:83:50:39:c0:0b:1f:
e7:ae:7a:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUZWfyhr+kd7ny5U5e8c3itMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZGE5OWY5MzUxOGUyOWE5NDViMDdmNjBhMThlZjg2ZTli
MzllNjUwHhcNMjUwMjE4MTM1ODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzU1YjZjNmRhNzJhNDU2NWU0Yjg1N2FkMmVmYjUwZTMwZWE0ZGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorwSS4T5XRam3yPzJGgZLmT+e5lq
ebI0MhxG4YTNGK4pAxOYxb9NTeUaJnMjSpL+4DPB6mU59lud+Bk+gkUX4YdaNWMw
4vuA8DylTDWgwRcLBMBq47eXZZf8UY5laMoW3A5XL4negMu4WioDIULdKx++OF/X
cwKqIG2K6rn1ad6DpODE4iUFUSfwe6uiiYeDvCNA9llsXGCryQ40IPHxyb3RPMa4
w7l0+SCVzMIM8go31uVWn1CN0lzr5uv3Og4TldNwsDYpGOBWTqmhU2e5xdrNHZ3O
IXzNamsYTvyDJboJO8YKolXrGD25Ino/1qQPd0Cz4IOmVVJXKSNQ4D/19wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKdVtsbacqRWXkuFetLvtQ4w6k3bMB8GA1UdIwQY
MBaAFFPamfk1GOKalFsH9goY74bps55lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTlxWi1UVVk0cHFVV3dmMkNoanZodW16bm1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81ODM1NDMtZTMzMS00NTkyLThkODkt
OWYzMDJjMjBhZTcwLzEvcDFXMnh0cHlwRlplUzRWNjB1LTFEakRxVGRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81ODM1NDMtZTMzMS00NTkyLThkODktOWYzMDJjMjBhZTcw
LzEvVTlxWi1UVVk0cHFVV3dmMkNoanZodW16bm1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaVwMA0G
CSqGSIb3DQEBCwUAA4IBAQCpp8VNYQXO1H1u8xTRuJmMKXVjBZ5CiuRvGt/3MCOD
etcIScA3RglMOOqxUXQftCiJuOYrJVLcjH+QkH3uESf7W1jIfIJ++Mrt7kyp2SL8
+4aJOtHFWBGmieTe3UHpnDpH35AnVwvZUprvTrqMwnnGINtIdjPO0BfKXCGhFj0f
2pvKz0QYP0cBhzOwSQ7dhrGZnzUIceJgJVT9tYcFl8PTm3q42hmqKSgKJCI/WZfU
Pii6UafQesDk2l5RRb+IIwLuXiR5k6pAR8Vf1rqHtVcOBepYaU2Z11iJROgzT0H1
yQk4tRVgZjvB3tZyytQtu4R0wOTsfyWDUDnACx/nrnqW
-----END CERTIFICATE-----
Generated at Tue Apr 15 09:44:21 2025 by rpki-client