Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/eDpZd8hCNjolSN4qkPkdEuk5Cpk.roa
File: eDpZd8hCNjolSN4qkPkdEuk5Cpk.roa (raw, json)
Hash identifier: GpXxUwCVOcT9tKB9rJ3lQPazQRu2PeNiLt4ytxxEgyk=
Subject key identifier: 78:3A:59:77:C8:42:36:3A:25:48:DE:2A:90:F9:1D:12:E9:39:0A:99
Certificate issuer: /CN=baaa748ba14a76e5d8a6edacb5426082a56f5e3d
Certificate serial: 01942445039F26BAE54DEFF580ED9A684496
Authority key identifier: BA:AA:74:8B:A1:4A:76:E5:D8:A6:ED:AC:B5:42:60:82:A5:6F:5E:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/eDpZd8hCNjolSN4qkPkdEuk5Cpk.roa
Signing time: Wed 01 Jan 2025 23:48:10 +0000
ROA not before: Wed 01 Jan 2025 23:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215282
IP address blocks: 2a13:ccc7::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/uqp0i6FKduXYpu2stUJggqVvXj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/uqp0i6FKduXYpu2stUJggqVvXj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:03:9f:26:ba:e5:4d:ef:f5:80:ed:9a:68:44:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa748ba14a76e5d8a6edacb5426082a56f5e3d
Validity
Not Before: Jan 1 23:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=783a5977c842363a2548de2a90f91d12e9390a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0d:fe:38:95:74:a1:cf:1e:e1:1d:75:2a:e7:
3b:54:87:0d:0c:12:e3:80:3b:39:16:6f:2e:3a:a1:
41:c2:fa:b3:87:3c:91:4e:23:b6:d4:16:95:ee:93:
0b:06:f3:71:8d:56:dc:07:07:25:6a:14:b4:b9:b9:
ad:dd:e5:86:29:4e:bf:05:a5:1b:24:bf:0b:c5:6b:
db:bc:81:9b:6d:a3:32:d2:89:2e:4e:8e:79:de:74:
2d:22:65:01:9b:8e:1d:f1:4b:2b:77:d0:e5:b7:e0:
f2:29:ee:f1:33:f5:22:72:12:e9:a6:48:27:9c:fb:
96:af:81:87:d5:4f:e2:a3:26:3d:87:e1:f6:f1:53:
1e:7f:4c:36:be:60:6f:b7:70:bb:5d:dd:97:6a:71:
28:fa:68:5e:3c:83:68:ac:77:ab:56:39:fb:b9:43:
bc:74:37:51:c4:5d:63:f3:4f:71:7c:f3:73:19:49:
4d:50:ef:c2:39:23:ce:48:4c:ad:47:a4:81:d6:4f:
fc:a7:86:48:6a:11:dd:54:ec:c5:24:c4:8b:71:58:
0a:56:ba:63:69:51:04:2e:ef:62:04:25:12:87:ec:
38:76:59:4f:27:11:da:1a:e3:c4:d5:16:1e:33:ef:
b4:17:9b:dc:84:b8:d6:df:02:5a:f3:0a:eb:16:7e:
40:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:3A:59:77:C8:42:36:3A:25:48:DE:2A:90:F9:1D:12:E9:39:0A:99
X509v3 Authority Key Identifier:
keyid:BA:AA:74:8B:A1:4A:76:E5:D8:A6:ED:AC:B5:42:60:82:A5:6F:5E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp0i6FKduXYpu2stUJggqVvXj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/eDpZd8hCNjolSN4qkPkdEuk5Cpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/a8e45b-17c6-436d-81a8-c5195162e3be/1/uqp0i6FKduXYpu2stUJggqVvXj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ccc7::/32
Signature Algorithm: sha256WithRSAEncryption
0d:5a:bb:b2:e7:ec:12:c3:6c:fc:8e:53:9a:0a:e3:78:35:76:
ae:5e:0c:ad:6f:f6:42:ec:12:99:08:87:35:35:c9:27:ce:82:
ea:2e:25:71:73:04:97:82:11:06:1f:0c:25:76:e1:a7:78:12:
32:16:2d:9a:ad:00:7d:00:fb:b6:d5:b4:e8:97:5b:a6:f9:9d:
2b:52:8d:71:9c:d0:12:48:62:9b:96:39:b1:52:77:5d:d4:0f:
e1:be:41:5b:93:9a:c7:bc:3d:22:0a:71:19:e8:a6:34:99:e1:
f9:69:c9:c8:eb:fa:b1:6d:2f:a5:24:77:9e:b9:38:7f:ab:bf:
27:33:44:a5:bc:52:40:df:92:87:50:06:14:86:eb:27:a7:a7:
fc:d0:e3:a4:d1:e5:be:59:1b:39:93:c6:9a:5d:03:59:f4:97:
ad:13:8b:ff:b7:94:4e:a3:cc:dc:36:b4:db:75:57:0c:93:75:
e9:e6:86:0b:4b:08:f7:1f:52:f9:e6:86:d3:a1:b0:8b:91:58:
7e:0d:7e:03:e4:b9:13:42:80:af:59:fc:38:2a:d2:5e:49:7f:
fe:8d:8d:b1:97:39:ac:1f:e5:c3:9c:73:0d:a4:32:c4:a8:24:
7c:2e:85:72:4a:0b:15:1d:ad:8f:4a:be:73:00:51:eb:87:cd:
16:d8:99:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:24:10 2025 by rpki-client