Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/bf878d-0e4e-4822-881e-129bce864c22/1/5gEGlVwVZrqZpPnotBCu9f34jtg.roa
File: 5gEGlVwVZrqZpPnotBCu9f34jtg.roa (raw, json)
Hash identifier: haUW51qrmH8OlsZcre9A2kx3gtQnJaSmXQISoIixtmo=
Subject key identifier: E6:01:06:95:5C:15:66:BA:99:A4:F9:E8:B4:10:AE:F5:FD:F8:8E:D8
Certificate issuer: /CN=78d31ec53dc4405d6915e1825964b97d7a116f81
Certificate serial: 0194228D5C908905054597D35D580A2C9D75
Authority key identifier: 78:D3:1E:C5:3D:C4:40:5D:69:15:E1:82:59:64:B9:7D:7A:11:6F:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNMexT3EQF1pFeGCWWS5fXoRb4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/bf878d-0e4e-4822-881e-129bce864c22/1/5gEGlVwVZrqZpPnotBCu9f34jtg.roa
Signing time: Wed 01 Jan 2025 15:47:57 +0000
ROA not before: Wed 01 Jan 2025 15:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211999
IP address blocks: 185.232.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/bf878d-0e4e-4822-881e-129bce864c22/1/eNMexT3EQF1pFeGCWWS5fXoRb4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/bf878d-0e4e-4822-881e-129bce864c22/1/eNMexT3EQF1pFeGCWWS5fXoRb4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/eNMexT3EQF1pFeGCWWS5fXoRb4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:5c:90:89:05:05:45:97:d3:5d:58:0a:2c:9d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d31ec53dc4405d6915e1825964b97d7a116f81
Validity
Not Before: Jan 1 15:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e60106955c1566ba99a4f9e8b410aef5fdf88ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cc:19:2a:e4:a2:47:d8:95:cc:92:75:c2:4b:
7b:5e:7d:7d:16:32:87:f6:d2:de:fe:d1:da:71:97:
01:51:d8:50:45:26:c4:77:5c:e8:2d:46:2b:7e:40:
1c:b2:4f:1e:c3:b0:1f:ec:0a:9c:dd:9a:0f:64:59:
be:51:bb:f1:ea:6f:46:44:b4:7b:84:dd:4f:96:7a:
fa:ac:10:cd:e7:35:36:23:a4:10:de:20:4b:93:f5:
54:f6:94:e1:7a:50:a4:c3:0a:d3:9e:7f:c3:26:11:
63:67:2f:a1:3c:f5:67:1d:c5:40:87:65:ff:27:34:
a6:3d:da:2e:14:da:3a:33:c2:a0:c7:fc:2a:04:95:
30:c3:57:9e:7e:07:fd:03:85:ba:0c:1f:9b:2d:7a:
7c:69:af:20:bb:e8:e4:fc:f1:fc:35:4f:6a:8d:d4:
b4:51:4e:4e:89:c8:07:a3:43:b4:42:25:c6:c0:2c:
a6:1c:d7:ee:0e:5d:26:88:fc:0e:1a:ee:b3:62:c3:
2c:f8:54:15:e7:71:9c:1c:18:b4:64:02:91:32:dd:
d0:80:95:22:77:74:35:cc:95:44:53:42:65:a5:7d:
9c:0d:47:8a:53:35:31:73:c2:35:96:8d:3e:4d:8f:
b6:3a:8b:b7:80:18:ad:d8:53:40:8d:26:14:bb:b5:
d9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:01:06:95:5C:15:66:BA:99:A4:F9:E8:B4:10:AE:F5:FD:F8:8E:D8
X509v3 Authority Key Identifier:
keyid:78:D3:1E:C5:3D:C4:40:5D:69:15:E1:82:59:64:B9:7D:7A:11:6F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNMexT3EQF1pFeGCWWS5fXoRb4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bf878d-0e4e-4822-881e-129bce864c22/1/5gEGlVwVZrqZpPnotBCu9f34jtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bf878d-0e4e-4822-881e-129bce864c22/1/eNMexT3EQF1pFeGCWWS5fXoRb4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.234.0/24
Signature Algorithm: sha256WithRSAEncryption
81:c5:d8:fe:c9:2b:9e:df:33:6e:a9:66:a9:74:5c:30:b8:19:
cd:8e:e9:a0:84:33:2f:c5:c7:05:fb:25:a3:4e:ab:94:30:72:
d1:6d:24:24:d9:76:19:68:16:1d:bf:47:52:19:b6:a5:c1:c6:
af:27:e8:09:ef:95:5a:28:c9:37:3c:d6:6f:a4:9e:fd:bb:fa:
c7:c9:c6:56:7f:4a:28:d6:75:4c:1d:5f:c2:fc:d9:85:11:25:
17:0f:de:0d:12:3c:b3:52:62:09:c2:78:d8:83:cd:c7:65:d4:
d6:20:7c:62:b7:61:8d:84:bf:10:c3:33:57:1e:7a:9b:d1:e2:
bb:10:12:84:47:5f:05:80:20:7e:64:c8:e7:4b:bc:98:32:1c:
66:7d:93:7e:1a:33:73:23:47:d3:32:98:e1:a6:1a:a0:37:3d:
37:37:cf:d6:c3:b3:78:bf:74:d7:2f:7f:f1:b9:61:3c:3a:fa:
63:bc:ca:6d:93:31:3e:5c:e4:a8:e3:c6:b3:29:c5:5b:1d:5d:
c8:02:42:14:18:f9:45:ca:1d:85:9a:48:0f:18:63:76:ce:fa:
b0:1d:5b:14:94:56:a2:d6:76:ee:bf:23:01:7c:73:26:58:10:
8b:bd:83:d9:29:9c:02:aa:aa:3d:e8:c9:5e:69:f8:e7:fb:00:
7c:d1:08:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 09:52:06 2025 by rpki-client