Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/DJsHawN4UfC7y3M-cvB8yQD8M34.roa
File: DJsHawN4UfC7y3M-cvB8yQD8M34.roa (raw, json)
Hash identifier: 7erERMTFq4HfOI3TzB2K6MSVRmBE9HH5uCjfWAVLlJk=
Subject key identifier: 0C:9B:07:6B:03:78:51:F0:BB:CB:73:3E:72:F0:7C:C9:00:FC:33:7E
Certificate issuer: /CN=d588212bf5dace1080dc45e2c55b92ff85c6c192
Certificate serial: 01951EEB768DDB38345289EC9AAC14CC42C8
Authority key identifier: D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/DJsHawN4UfC7y3M-cvB8yQD8M34.roa
Signing time: Wed 19 Feb 2025 15:55:02 +0000
ROA not before: Wed 19 Feb 2025 15:55:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12287
IP address blocks: 185.62.166.0/24 maxlen: 24
2a01:8840:e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Mar 2025 12:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1e:eb:76:8d:db:38:34:52:89:ec:9a:ac:14:cc:42:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d588212bf5dace1080dc45e2c55b92ff85c6c192
Validity
Not Before: Feb 19 15:55:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c9b076b037851f0bbcb733e72f07cc900fc337e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4c:c4:bf:5f:ba:f4:02:27:4e:d2:8b:fb:7c:
e9:d3:d7:5a:8c:ae:2a:46:9a:fa:19:b5:3d:2f:26:
8e:6c:08:0d:9d:37:fc:89:87:29:6b:7f:d7:83:bc:
e0:27:85:3c:d1:3e:f8:df:66:8a:73:96:23:84:e6:
21:32:a0:dd:7b:3d:c0:97:98:86:b3:3f:53:14:f8:
0e:fa:9c:9a:84:27:b0:10:89:63:43:66:16:aa:71:
bb:38:27:56:b2:a3:d7:35:fe:9d:d7:28:fa:fd:b0:
e7:1a:eb:27:e1:42:6e:71:f4:73:6f:cf:44:4a:36:
14:d1:73:6c:87:cd:c3:7f:5c:c4:e2:28:61:eb:47:
93:72:a6:38:92:7b:86:08:23:83:f0:80:9b:5c:05:
34:00:25:cf:59:83:c5:e7:dd:e9:32:01:8a:31:c0:
dc:27:1c:de:50:74:f6:1e:8d:0a:e9:c8:9a:28:2e:
6b:91:93:d0:df:c8:16:b0:77:0c:9e:45:79:3d:13:
d0:a2:db:88:1c:82:b5:a7:e4:16:a8:f2:8b:b8:4c:
7e:85:8d:56:68:fb:58:b5:25:f7:a8:6b:56:10:4c:
bb:f5:55:1a:c4:3c:00:4a:e3:5c:1e:7a:9e:21:92:
69:51:7c:27:0c:a9:06:64:cd:36:1b:6d:29:30:4b:
24:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:9B:07:6B:03:78:51:F0:BB:CB:73:3E:72:F0:7C:C9:00:FC:33:7E
X509v3 Authority Key Identifier:
keyid:D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/DJsHawN4UfC7y3M-cvB8yQD8M34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.166.0/24
IPv6:
2a01:8840:e::/48
Signature Algorithm: sha256WithRSAEncryption
b1:e4:df:b2:d6:43:0e:53:e5:f6:77:cd:23:f3:f1:83:db:d8:
5e:cb:20:8e:40:0b:aa:a0:94:42:b9:9f:ce:0c:c9:68:26:c9:
4d:8b:57:43:a8:04:0c:68:86:ae:a4:e8:82:f7:d4:ed:de:89:
86:74:ff:ac:5e:6d:9c:0f:89:3d:e0:32:72:04:b2:57:db:4e:
af:f4:64:05:51:a7:14:2e:e9:ac:f3:52:fb:29:e5:81:0c:fc:
e3:bb:ac:56:a6:be:82:ec:a6:d1:13:5e:7d:14:23:84:3f:0c:
cf:42:da:9e:dd:d4:a6:42:cd:fe:6e:c1:36:1a:b0:f7:35:80:
51:72:20:f6:38:1c:1c:71:d4:c7:40:3a:ad:f3:90:47:c8:df:
44:25:1e:4f:f6:93:37:22:c8:9a:95:47:54:8c:60:71:bb:22:
8a:24:eb:99:89:33:0c:37:94:45:85:fc:fa:60:ed:14:f6:3d:
50:b9:18:b9:cf:39:d1:69:1f:22:60:1d:76:91:10:16:17:69:
41:a3:6d:98:55:01:cf:e7:ba:1f:2b:b0:40:76:43:25:48:43:
b6:e3:64:60:4f:10:2a:9e:7e:8e:f9:4a:24:55:4a:d6:16:1e:
c9:20:ae:8a:57:b4:7c:28:7a:6a:0b:f5:05:e8:e9:0a:e6:bd:
9c:e9:f9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 20:06:49 2025 by rpki-client