Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3e3109-cec3-46bb-b8d6-6482041a8246/1/svzhNq6qtyn4S4aBADhUvEOECPM.roa
File: svzhNq6qtyn4S4aBADhUvEOECPM.roa (raw, json)
Hash identifier: PLCvbbOnyIN6lmj0BVGyyI3TGiwUbgBbXCHrA/CAEUE=
Subject key identifier: B2:FC:E1:36:AE:AA:B7:29:F8:4B:86:81:00:38:54:BC:43:84:08:F3
Certificate issuer: /CN=cc159c8a1e64fc64ff666bd9219dce174373caf2
Certificate serial: 019427B40FC4525D563A3BA849CBEBF44A18
Authority key identifier: CC:15:9C:8A:1E:64:FC:64:FF:66:6B:D9:21:9D:CE:17:43:73:CA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zBWcih5k_GT_ZmvZIZ3OF0NzyvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3e3109-cec3-46bb-b8d6-6482041a8246/1/svzhNq6qtyn4S4aBADhUvEOECPM.roa
Signing time: Thu 02 Jan 2025 15:48:19 +0000
ROA not before: Thu 02 Jan 2025 15:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208693
IP address blocks: 195.234.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3e3109-cec3-46bb-b8d6-6482041a8246/1/zBWcih5k_GT_ZmvZIZ3OF0NzyvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/3e3109-cec3-46bb-b8d6-6482041a8246/1/zBWcih5k_GT_ZmvZIZ3OF0NzyvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zBWcih5k_GT_ZmvZIZ3OF0NzyvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b4:0f:c4:52:5d:56:3a:3b:a8:49:cb:eb:f4:4a:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc159c8a1e64fc64ff666bd9219dce174373caf2
Validity
Not Before: Jan 2 15:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2fce136aeaab729f84b8681003854bc438408f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:db:c5:2a:f2:1f:ff:aa:09:12:be:15:6c:37:
6c:4a:e3:2f:56:5d:e2:15:b3:b8:bf:15:bc:a1:4d:
0f:e8:cc:b9:39:e3:06:c1:27:a3:69:be:20:a7:bf:
de:40:30:90:ef:7a:c6:ec:6b:66:dd:96:12:a1:d2:
b4:6b:dd:db:27:36:41:f2:6f:ab:be:bd:8c:39:63:
8a:93:5b:88:f5:95:98:15:d5:cb:61:33:cd:32:de:
74:cf:54:5f:87:be:8d:fd:e5:07:4e:38:90:9c:2a:
d6:24:44:a8:91:15:5a:76:dc:31:3e:df:91:df:82:
1e:69:a5:7c:f8:c7:d4:85:10:b4:22:a2:ab:cd:8f:
44:f3:d0:c8:9d:29:68:fe:3d:60:ea:2a:39:a1:c5:
87:56:bd:4d:39:c5:43:79:55:0e:ad:f7:b3:8a:c4:
e5:ea:a2:47:88:b2:79:78:76:77:5e:f0:bf:73:75:
14:d7:96:22:d3:a5:8c:fb:08:4d:68:6c:f6:d8:06:
e7:6a:75:90:7e:75:11:26:a1:94:f6:05:28:aa:ec:
2a:81:63:f3:5b:36:26:fb:98:85:1d:5d:91:f7:82:
da:79:86:fb:e7:b3:ec:e5:18:22:37:15:1d:03:c9:
7d:90:af:e4:20:70:56:19:42:05:2c:39:2c:5d:c4:
da:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FC:E1:36:AE:AA:B7:29:F8:4B:86:81:00:38:54:BC:43:84:08:F3
X509v3 Authority Key Identifier:
keyid:CC:15:9C:8A:1E:64:FC:64:FF:66:6B:D9:21:9D:CE:17:43:73:CA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zBWcih5k_GT_ZmvZIZ3OF0NzyvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3e3109-cec3-46bb-b8d6-6482041a8246/1/svzhNq6qtyn4S4aBADhUvEOECPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3e3109-cec3-46bb-b8d6-6482041a8246/1/zBWcih5k_GT_ZmvZIZ3OF0NzyvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.161.0/24
Signature Algorithm: sha256WithRSAEncryption
75:fb:7e:44:3c:29:ce:08:ad:64:9d:f2:17:8b:56:0f:ac:4e:
ca:6d:76:95:0a:92:0e:1e:6c:fa:32:5a:08:89:e3:c8:2d:63:
bb:36:7a:a8:ea:c1:8b:35:8a:b3:2e:c3:10:aa:d4:fd:16:aa:
94:93:f7:44:f4:39:9b:3f:2e:8f:ff:7f:e7:df:99:a5:33:cf:
9b:4d:8f:7e:fd:1c:2a:ea:d6:c1:e7:11:34:74:b1:15:fe:87:
85:9a:e1:83:d6:0a:be:ed:80:f5:e7:6e:00:6b:b3:db:75:b6:
ba:9a:34:8f:6c:54:c5:56:d9:03:87:e9:d3:61:00:2b:dc:4c:
8a:27:b6:6a:8a:30:54:d8:13:6c:25:ef:59:7d:42:6f:25:cd:
0d:63:73:72:f5:c3:62:a2:da:50:a5:c0:95:e3:93:48:a5:bf:
9a:76:9a:58:cc:02:88:eb:aa:75:27:6c:8b:d5:df:b1:01:3e:
96:93:aa:d0:df:79:57:98:1b:05:7c:aa:4b:99:45:ba:87:51:
e1:9f:15:08:61:39:36:c3:c9:77:66:62:31:7f:c3:83:51:57:
fc:55:04:d5:ce:a8:68:c1:aa:6a:07:51:58:a9:59:5b:ef:eb:
b4:a2:e0:05:b1:08:74:b5:fa:d7:cc:b1:cf:69:8e:d3:6f:11:
32:cd:07:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:01 2025 by rpki-client