Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c3c3c4-27a1-4c79-b7de-b9403f64ba60/1/xjaKNbUWdjhuGKz557km09J85CQ.roa
File: xjaKNbUWdjhuGKz557km09J85CQ.roa (raw, json)
Hash identifier: 3QMey7VrmUqxE6MUlNjFiwNKaAhFddLFlNFaj03POhg=
Subject key identifier: C6:36:8A:35:B5:16:76:38:6E:18:AC:F9:E7:B9:26:D3:D2:7C:E4:24
Certificate issuer: /CN=12dcb8e1410c8cd18e52457f7e1a9580d6da5226
Certificate serial: 0194228E401D6C15BA6690C2201EEB471D38
Authority key identifier: 12:DC:B8:E1:41:0C:8C:D1:8E:52:45:7F:7E:1A:95:80:D6:DA:52:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ety44UEMjNGOUkV_fhqVgNbaUiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c3c3c4-27a1-4c79-b7de-b9403f64ba60/1/xjaKNbUWdjhuGKz557km09J85CQ.roa
Signing time: Wed 01 Jan 2025 15:48:55 +0000
ROA not before: Wed 01 Jan 2025 15:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 400529
IP address blocks: 80.244.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c3c3c4-27a1-4c79-b7de-b9403f64ba60/1/Ety44UEMjNGOUkV_fhqVgNbaUiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/c3c3c4-27a1-4c79-b7de-b9403f64ba60/1/Ety44UEMjNGOUkV_fhqVgNbaUiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ety44UEMjNGOUkV_fhqVgNbaUiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:40:1d:6c:15:ba:66:90:c2:20:1e:eb:47:1d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12dcb8e1410c8cd18e52457f7e1a9580d6da5226
Validity
Not Before: Jan 1 15:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c6368a35b51676386e18acf9e7b926d3d27ce424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f7:69:96:42:20:19:af:03:82:da:f3:41:5e:
37:be:7e:17:0d:20:00:8a:79:a4:ff:14:04:64:0b:
60:e5:9e:96:74:d3:67:1e:71:c9:36:99:79:05:f8:
e4:65:fc:86:c7:bb:88:55:36:89:ae:2a:61:41:0a:
7e:88:ee:a7:47:dc:48:ae:52:3f:0b:c9:66:56:bf:
c1:00:a5:48:2d:26:b8:db:72:c9:98:e7:b2:87:ac:
62:a2:d5:a3:3b:ad:61:e7:90:28:00:1b:c7:7f:78:
f3:d7:e8:98:c5:08:b5:44:80:87:60:2b:f2:64:22:
42:8c:42:03:9e:50:a6:c6:8e:5b:4b:d6:65:1f:2c:
5a:ce:44:b6:d1:6f:61:49:7a:a6:04:09:2b:89:9a:
fc:db:10:cd:2c:55:b9:3b:59:ed:fb:64:05:bf:00:
ad:75:ba:d7:08:32:16:be:fa:ef:e6:04:96:9a:4b:
4a:11:bb:28:cd:6c:b0:b5:a6:95:90:da:b5:81:14:
46:7f:ca:2e:50:4b:39:af:2e:2c:8c:42:4f:4d:1b:
f5:86:99:7a:14:a1:75:76:39:3e:f3:7c:11:31:ff:
41:5d:2d:82:f7:b5:0f:d7:f1:5f:f9:d2:5a:ad:6b:
cc:fd:51:67:7f:45:28:3c:70:76:34:87:b7:25:45:
99:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:36:8A:35:B5:16:76:38:6E:18:AC:F9:E7:B9:26:D3:D2:7C:E4:24
X509v3 Authority Key Identifier:
keyid:12:DC:B8:E1:41:0C:8C:D1:8E:52:45:7F:7E:1A:95:80:D6:DA:52:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ety44UEMjNGOUkV_fhqVgNbaUiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c3c3c4-27a1-4c79-b7de-b9403f64ba60/1/xjaKNbUWdjhuGKz557km09J85CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c3c3c4-27a1-4c79-b7de-b9403f64ba60/1/Ety44UEMjNGOUkV_fhqVgNbaUiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.12.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:ee:64:87:ed:b4:8a:cf:3e:fc:b9:eb:8a:a0:1c:ac:9b:ed:
79:50:79:84:93:9b:ee:de:1f:83:8f:ab:99:7a:1d:91:a9:1b:
d5:58:c9:8a:73:4d:bf:ae:63:5a:c9:2e:a0:30:30:48:e4:a2:
c1:d0:71:80:35:8e:0a:58:63:0e:1f:1a:f8:c0:a1:c0:82:64:
fd:af:46:61:26:3d:a6:6b:eb:a8:78:01:d9:24:1c:80:9a:5d:
45:52:67:22:b2:8f:b0:39:c5:5e:19:44:09:d7:2b:c8:99:92:
28:fb:8e:13:8a:41:d2:a9:78:e3:64:81:37:4a:1e:a8:c8:d8:
b4:a7:83:ce:b6:01:ef:9a:3d:ce:6d:91:90:77:89:fa:b4:45:
78:bc:f7:ac:49:96:f6:6b:98:19:3d:a4:26:fa:b5:2c:3d:d3:
63:4a:73:7a:df:ff:c4:52:ba:23:03:30:ae:f3:65:ca:c5:10:
3e:7e:94:8f:79:ff:7d:14:6c:f9:87:e1:bb:62:46:d8:01:26:
6a:55:2d:fc:02:cb:f8:df:bb:84:98:28:db:c6:e4:c8:3c:d8:
b4:0e:2b:3c:f6:8e:e2:b0:58:ee:4b:f2:33:06:99:7b:e7:3a:
8d:f1:f8:09:3e:2e:f9:66:d2:49:dc:d1:2b:f0:01:9b:a2:10:
4c:47:30:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:40:30 2025 by rpki-client