Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/ExGaGMHRMHV6Wwq7HUUBGaTmIOs.roa
File: ExGaGMHRMHV6Wwq7HUUBGaTmIOs.roa (raw, json)
Hash identifier: GrRPycpKBiqBeJAl7ze1jROyMQik0DJu7nFgEpAVFB8=
Subject key identifier: 13:11:9A:18:C1:D1:30:75:7A:5B:0A:BB:1D:45:01:19:A4:E6:20:EB
Certificate issuer: /CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Certificate serial: 01941F8C109C4092BB4FA7D7FFD9A7F3DFD0
Authority key identifier: A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/ExGaGMHRMHV6Wwq7HUUBGaTmIOs.roa
Signing time: Wed 01 Jan 2025 01:47:40 +0000
ROA not before: Wed 01 Jan 2025 01:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44066
IP address blocks: 193.33.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 10:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:10:9c:40:92:bb:4f:a7:d7:ff:d9:a7:f3:df:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Validity
Not Before: Jan 1 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13119a18c1d130757a5b0abb1d450119a4e620eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a6:63:ee:1b:1c:c2:2e:8e:48:79:40:55:4f:
fc:ea:37:02:c8:7a:ca:ed:5a:f5:1b:50:1a:53:cc:
4a:00:3b:ff:9d:91:ed:c4:a4:fb:2e:41:a1:0c:db:
92:a4:f3:6a:da:87:47:bc:a5:48:7a:84:89:b6:5c:
ba:a2:99:b6:58:6a:6e:3a:68:23:40:61:8a:d3:9a:
e6:e6:e1:8b:ab:1c:25:05:a1:1c:d7:c6:cf:d2:56:
8f:fc:ff:ea:18:11:67:1c:4c:9f:5e:db:db:92:fa:
ee:45:19:d9:05:77:3e:34:3a:e2:72:cc:de:df:2d:
0b:5a:e0:bc:0c:93:b4:bb:81:8b:93:b3:d4:85:c6:
1b:3a:22:a1:5a:11:c4:33:40:71:77:a2:05:a8:52:
63:a4:53:c0:94:b2:34:69:f2:cd:b4:b5:72:46:12:
83:4c:c0:02:c8:53:df:71:b1:0c:ce:83:41:f6:71:
d7:92:2a:b7:1d:10:ec:d3:58:b1:bd:8b:06:f8:bc:
20:d6:3d:32:6a:78:76:34:6a:05:94:13:21:db:33:
f0:77:8e:b6:51:0c:44:ed:ea:c8:c0:42:7c:ce:5a:
fb:0f:9f:12:d5:13:d5:4f:d8:6d:20:26:a1:74:aa:
61:66:90:dd:51:a9:8b:55:c4:06:52:d9:05:88:84:
4d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:11:9A:18:C1:D1:30:75:7A:5B:0A:BB:1D:45:01:19:A4:E6:20:EB
X509v3 Authority Key Identifier:
keyid:A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/ExGaGMHRMHV6Wwq7HUUBGaTmIOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.155.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:a6:ad:8e:0c:73:21:bb:84:7a:54:53:ac:a7:81:e2:06:9e:
e0:34:ce:51:b4:33:64:f4:fb:94:c5:51:2d:0b:bc:54:47:42:
fc:2f:74:ac:5f:40:0f:fb:2e:bd:e0:4f:25:66:bc:57:34:61:
fb:ab:6d:e3:d4:5a:2f:9f:3c:8b:07:ae:a3:d6:b3:fb:33:de:
ee:46:51:ac:5d:c9:23:e8:04:dd:99:bf:1a:43:a0:6f:92:7c:
8f:7b:a4:11:05:1e:83:4d:ad:9d:be:41:28:c6:cb:55:34:ce:
57:81:cb:67:4e:4b:3d:f3:11:86:a8:58:b8:92:10:d0:00:3b:
d7:ba:1b:52:37:e2:c6:0f:4c:3e:68:ce:d4:78:6a:d4:c4:ea:
62:05:a1:28:39:d9:fd:b1:44:6b:e7:06:a5:97:c0:9a:e1:1b:
e0:56:16:bf:2e:0b:76:bf:e7:39:e0:0d:c2:ac:a8:6a:f5:d9:
e0:cb:55:2e:cc:a5:c0:2e:54:08:d2:e7:8c:87:d9:62:ba:31:
07:7e:28:44:ce:54:11:ad:b0:77:12:48:c1:34:24:e5:a4:ac:
15:99:c7:e5:cd:d0:25:fe:86:24:19:57:81:33:50:0a:b1:63:
c7:36:b9:05:c1:86:69:9e:a8:e7:c8:0d:e8:94:d8:2a:23:fc:
dc:dd:7b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:37:21 2025 by rpki-client