Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/k6Q40_A8oWnnWIvqhsNRLJGg64Y.roa
File: k6Q40_A8oWnnWIvqhsNRLJGg64Y.roa (raw, json)
Hash identifier: WvRcCWBNnKN7iM2oUwqsloLV9yVzdse8LKHpGplUIEQ=
Subject key identifier: 93:A4:38:D3:F0:3C:A1:69:E7:58:8B:EA:86:C3:51:2C:91:A0:EB:86
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 0194236A5FE07458D132E03974FFDBD83275
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/k6Q40_A8oWnnWIvqhsNRLJGg64Y.roa
Signing time: Wed 01 Jan 2025 19:49:21 +0000
ROA not before: Wed 01 Jan 2025 19:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6900
IP address blocks: 145.61.196.0/24 maxlen: 24
145.61.200.0/22 maxlen: 22
145.61.200.0/23 maxlen: 23
145.61.200.0/24 maxlen: 24
145.61.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:5f:e0:74:58:d1:32:e0:39:74:ff:db:d8:32:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 19:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=93a438d3f03ca169e7588bea86c3512c91a0eb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1d:8a:e4:b1:fd:64:2e:fa:b8:a4:ae:72:38:
9a:40:15:81:e1:e5:f7:3d:d0:86:72:a2:da:b8:10:
bd:7d:a2:35:13:12:70:ee:47:39:bb:44:c3:0b:6d:
71:c7:6d:1b:45:30:e9:66:32:c3:49:5b:e6:0c:3f:
1b:d9:7c:a6:53:c0:f6:72:a7:d8:db:1a:79:2a:ec:
76:a5:98:45:8e:5f:0d:91:50:0f:ce:7a:a4:35:6b:
86:f7:03:8d:ef:a4:2a:a3:25:24:49:5b:c4:f4:90:
72:4f:c7:71:cc:5e:f7:e6:70:64:a1:2c:46:32:cb:
aa:6b:a7:df:c1:83:56:a5:a9:96:ac:de:90:c1:7f:
6f:79:97:d6:f8:0c:ba:b4:e1:d0:12:92:77:4c:d5:
8f:b9:cd:3e:40:80:70:fb:b9:0d:7b:f6:31:84:33:
73:d9:e1:fc:e5:d9:b6:89:57:55:d0:20:eb:c0:0b:
62:4e:69:31:4b:07:70:fb:2c:6f:41:d2:b6:e4:2e:
6e:94:fb:8c:da:ba:32:ca:a8:ca:ff:84:75:d1:cf:
69:99:ab:cd:e0:6a:5a:0e:cb:ec:13:1f:09:62:e8:
7f:d7:dc:2d:5e:3f:44:98:19:fe:df:0f:2a:ce:cf:
7b:60:88:29:66:9a:17:cd:78:d9:41:7b:8b:ec:d2:
73:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A4:38:D3:F0:3C:A1:69:E7:58:8B:EA:86:C3:51:2C:91:A0:EB:86
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/k6Q40_A8oWnnWIvqhsNRLJGg64Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.61.196.0/24
145.61.200.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:ad:ff:48:8a:0d:ae:df:d5:55:6e:96:28:55:c6:06:d2:bb:
90:c9:58:ac:ad:8d:6d:60:bf:22:ae:c4:d1:71:59:de:b6:32:
54:1a:91:69:dc:da:9d:f3:76:00:fe:61:b1:78:da:13:7d:2b:
9e:3a:e6:8d:8d:36:5b:84:f9:f7:be:e1:58:d3:90:8a:f5:ae:
4d:77:e7:53:28:66:4d:a3:41:b0:f0:b8:c2:f1:97:be:5a:b1:
e6:21:0e:be:45:5e:97:dc:42:7b:f0:80:05:23:e0:2c:83:8b:
cf:1c:3d:3f:f8:71:6f:16:2f:aa:0f:12:83:d2:fd:00:11:9a:
54:d7:6f:a1:23:78:00:38:6a:f9:09:f7:f8:8b:4b:79:17:f3:
f1:e9:92:20:59:7c:44:5c:2f:53:e0:33:b4:97:22:a3:fe:49:
1a:db:4a:ff:f2:d3:35:57:99:e1:1c:b1:fa:a4:fc:6a:78:2a:
5c:bd:9a:1c:13:1b:ef:e9:d3:c9:f2:18:93:1d:61:ba:cc:0c:
11:b2:c0:f6:05:7a:f7:db:17:96:0d:14:ce:08:25:0a:ea:76:
9f:fa:0c:c5:03:6c:b6:bf:5b:36:a4:8d:a3:38:84:c8:73:95:
6c:1e:c0:ea:0e:ec:0f:b8:c7:57:7b:3d:87:10:da:04:91:9e:
b6:ae:8a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 12:35:05 2025 by rpki-client