Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70cb80-4e6d-46a5-b1b4-4e3f4d68f682/1/jTx6aqvdEE_gQg73ReX0FkwgmQE.roa
File: jTx6aqvdEE_gQg73ReX0FkwgmQE.roa (raw, json)
Hash identifier: dAhHIig8KT1KxztIrLQE0kBlocl6eJfFH0R4JNRSc1E=
Subject key identifier: 8D:3C:7A:6A:AB:DD:10:4F:E0:42:0E:F7:45:E5:F4:16:4C:20:99:01
Certificate issuer: /CN=74267f3ecfcc61668e0501bca60ced6dd75d347c
Certificate serial: 0194252173B7FF4C97A107EE794AA94A9BEF
Authority key identifier: 74:26:7F:3E:CF:CC:61:66:8E:05:01:BC:A6:0C:ED:6D:D7:5D:34:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCZ_Ps_MYWaOBQG8pgztbdddNHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70cb80-4e6d-46a5-b1b4-4e3f4d68f682/1/jTx6aqvdEE_gQg73ReX0FkwgmQE.roa
Signing time: Thu 02 Jan 2025 03:48:56 +0000
ROA not before: Thu 02 Jan 2025 03:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2200
IP address blocks: 192.44.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70cb80-4e6d-46a5-b1b4-4e3f4d68f682/1/dCZ_Ps_MYWaOBQG8pgztbdddNHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/70cb80-4e6d-46a5-b1b4-4e3f4d68f682/1/dCZ_Ps_MYWaOBQG8pgztbdddNHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCZ_Ps_MYWaOBQG8pgztbdddNHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:73:b7:ff:4c:97:a1:07:ee:79:4a:a9:4a:9b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74267f3ecfcc61668e0501bca60ced6dd75d347c
Validity
Not Before: Jan 2 03:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d3c7a6aabdd104fe0420ef745e5f4164c209901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:15:13:28:97:97:94:5f:b1:76:48:f6:a1:79:
73:0f:2b:41:83:f8:57:b5:af:33:87:89:7b:4a:9d:
42:ea:e9:19:69:72:90:cb:4f:a1:14:64:98:0b:14:
ff:3d:6f:e0:1f:c3:64:75:51:e3:22:91:18:2d:57:
b5:28:19:45:fc:15:96:87:5b:49:ae:87:6c:39:05:
30:69:0b:4c:65:02:83:38:66:cd:35:b1:a2:c1:7f:
f4:65:4b:93:b5:8b:f7:b4:9d:b8:cd:28:96:90:f1:
a1:d1:ae:96:a7:bd:0a:f9:71:76:87:aa:5d:41:50:
ba:e9:48:9f:df:56:a7:b1:d1:83:04:4a:5b:05:7a:
38:f6:f8:23:57:10:c8:2c:c1:99:0c:99:04:d4:b1:
05:51:f7:bf:1a:a7:8e:93:4b:bb:83:66:2c:80:1d:
86:79:76:32:7c:9b:98:07:67:ce:9b:93:0d:7f:ad:
15:6f:27:6d:11:08:e7:10:a6:15:82:5a:97:f6:2d:
56:9b:a6:8b:72:97:ab:f9:1a:31:3e:65:0f:18:d3:
21:c2:27:48:7f:c7:bc:05:ef:52:b9:c9:a7:fd:42:
05:bf:17:c4:70:8c:f4:83:5a:83:83:3c:6d:a6:13:
76:52:a5:05:d0:06:2a:3d:0c:2f:e3:f6:d7:55:45:
6a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:3C:7A:6A:AB:DD:10:4F:E0:42:0E:F7:45:E5:F4:16:4C:20:99:01
X509v3 Authority Key Identifier:
keyid:74:26:7F:3E:CF:CC:61:66:8E:05:01:BC:A6:0C:ED:6D:D7:5D:34:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCZ_Ps_MYWaOBQG8pgztbdddNHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70cb80-4e6d-46a5-b1b4-4e3f4d68f682/1/jTx6aqvdEE_gQg73ReX0FkwgmQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70cb80-4e6d-46a5-b1b4-4e3f4d68f682/1/dCZ_Ps_MYWaOBQG8pgztbdddNHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.44.76.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ae:66:b7:59:92:6d:2f:29:d0:df:3a:20:37:3f:ea:10:7c:
90:2e:1b:ed:1c:d2:86:4b:86:15:eb:a9:60:d7:13:67:2c:ce:
7b:39:23:33:b4:79:19:9e:72:1a:b3:77:2e:e8:49:73:24:df:
2a:2f:86:a6:f1:fa:87:88:44:2c:7d:d3:aa:4b:9a:a5:79:fe:
38:ae:13:6a:eb:58:29:98:d3:f8:9c:82:6f:a6:c2:96:28:4e:
ab:76:85:71:25:7e:d9:4b:0e:03:4d:25:f7:8a:6e:37:d8:c4:
c7:e0:b9:36:8f:1e:2b:e5:49:84:2d:65:79:4e:ed:48:af:46:
e3:35:00:f7:a6:22:7c:14:d1:6b:83:8b:cd:94:80:6b:85:9d:
6a:ae:d1:88:3b:a0:69:21:94:ca:e2:88:7f:45:dc:f4:24:ec:
e8:bb:4a:34:b9:6a:e6:85:d2:38:eb:ea:97:f7:fe:3b:d3:c2:
a3:65:d8:0a:24:b3:9c:06:97:d7:e6:ac:21:a9:2d:0f:76:43:
c5:c2:bf:14:7c:10:b8:35:c0:b5:b1:33:83:a3:15:ad:9b:33:
66:c7:1d:24:34:1f:32:35:ec:bb:d5:48:08:26:9e:7e:b4:43:
2f:d4:a4:6f:89:ae:04:60:a4:07:44:e3:f7:d0:3d:38:56:ed:
1c:60:bb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 02:17:42 2025 by rpki-client