Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/UjbV3lGHl1NABirOrXCDlpa2IjI.roa
File: UjbV3lGHl1NABirOrXCDlpa2IjI.roa (raw, json)
Hash identifier: rr4Fn3/DO7NK9RiKm+oGJrtYMgwIJPO3y7RWl8FMLw8=
Subject key identifier: 52:36:D5:DE:51:87:97:53:40:06:2A:CE:AD:70:83:96:96:B6:22:32
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 01942825CD6507B3F8774DBAE4F6CF53B619
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/UjbV3lGHl1NABirOrXCDlpa2IjI.roa
Signing time: Thu 02 Jan 2025 17:52:33 +0000
ROA not before: Thu 02 Jan 2025 17:52:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215179
IP address blocks: 93.92.199.0/24 maxlen: 24
94.125.14.0/24 maxlen: 24
109.71.176.0/24 maxlen: 24
109.71.177.0/24 maxlen: 24
185.42.61.0/24 maxlen: 24
213.108.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 00:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:cd:65:07:b3:f8:77:4d:ba:e4:f6:cf:53:b6:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 2 17:52:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5236d5de5187975340062acead70839696b62232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:98:db:cc:69:bf:53:bf:df:7f:5e:cb:58:3f:
1e:9c:0c:22:50:78:13:be:cd:39:4f:3d:9d:2b:7d:
a2:20:bf:99:bf:ca:04:77:15:4a:a4:7f:a8:73:89:
88:32:f9:63:00:29:db:a3:8b:59:1a:58:1c:be:d9:
5a:63:a8:05:29:3b:b7:ce:b9:49:c7:97:2e:e0:74:
b5:f9:33:e7:bf:3f:88:f4:e9:6d:e7:25:e2:19:49:
26:f8:cf:48:2e:53:b5:20:c4:a2:e7:91:0a:cd:64:
6a:0a:8a:dc:14:9f:2c:2b:1b:66:97:47:21:5e:b1:
c7:4f:e5:92:2c:0c:d1:5d:88:3d:27:a0:3f:69:14:
9a:8a:c2:f7:3e:d8:ce:41:d5:0a:35:0a:40:49:38:
b8:49:a4:4f:d7:4d:1e:e7:39:e6:f1:10:eb:e3:5c:
e4:45:9f:67:3f:c7:cd:17:86:df:c3:df:b7:61:61:
19:b9:3a:78:e0:3b:3a:f9:68:d3:d2:55:50:62:07:
47:77:93:5a:5f:c2:75:da:45:72:5a:ba:b8:11:82:
0c:d1:88:0b:45:79:46:18:35:67:ea:58:b5:4f:2c:
33:6b:c7:33:c2:4b:88:de:56:b7:84:e9:f1:2e:8a:
ce:cb:fb:2a:f1:d1:4c:b7:5c:67:80:70:03:38:d5:
98:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:36:D5:DE:51:87:97:53:40:06:2A:CE:AD:70:83:96:96:B6:22:32
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/UjbV3lGHl1NABirOrXCDlpa2IjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.92.199.0/24
94.125.14.0/24
109.71.176.0/23
185.42.61.0/24
213.108.39.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ce:a1:18:10:3c:f4:94:04:b0:69:e9:64:1a:3c:b6:89:7c:
b4:bc:34:c9:0c:d2:01:54:73:ad:f5:12:89:46:6e:ac:69:45:
01:b7:d0:07:a4:67:eb:98:5f:5c:a3:f6:73:1c:2c:a5:de:93:
9e:48:9f:99:3e:7c:19:db:69:7f:e9:96:8f:10:f6:a4:1a:26:
47:31:81:fb:31:ef:01:26:e4:02:60:e2:02:6d:b0:0e:9d:b2:
6e:20:7c:cf:2f:c0:24:57:5f:12:ed:88:41:c4:b0:58:1f:1e:
2a:94:6f:7b:18:d8:64:3a:f3:ea:9c:20:70:1f:5b:3e:74:e9:
22:aa:be:dd:69:5f:1e:5d:9f:26:90:6b:d9:fd:2f:4b:d4:01:
25:e8:a4:a1:cf:db:74:7f:06:d3:8b:d2:58:49:41:ad:a5:f9:
17:2a:19:ec:18:11:e9:3b:f3:ef:eb:4b:e5:e3:ee:dc:b6:8f:
b3:93:0d:e2:b1:3c:c1:bb:a3:45:a2:a0:24:d4:0d:64:32:0b:
9b:21:0a:c0:f5:76:62:cb:c8:7a:7c:29:10:ec:f6:f2:41:a1:
fa:64:ea:63:4d:67:6d:78:d6:be:64:86:9d:5f:89:07:30:d3:
b9:21:2e:f8:f1:b5:ad:c9:7e:4e:bc:40:41:b5:ba:ee:07:17:
5c:c3:f6:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:56:00 2025 by rpki-client