Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/RE1ge7RUk3qelCQ-rVyaZ-va0MM.roa
File: RE1ge7RUk3qelCQ-rVyaZ-va0MM.roa (raw, json)
Hash identifier: EOIvgLCzSAsAPkfzjyAYPQk2TKIdGHygtK7XtDffXfg=
Subject key identifier: 44:4D:60:7B:B4:54:93:7A:9E:94:24:3E:AD:5C:9A:67:EB:DA:D0:C3
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01942746310FC3D8ACC34B44C7D671495280
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/RE1ge7RUk3qelCQ-rVyaZ-va0MM.roa
Signing time: Thu 02 Jan 2025 13:48:19 +0000
ROA not before: Thu 02 Jan 2025 13:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199684
IP address blocks: 2a0d:2683:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:31:0f:c3:d8:ac:c3:4b:44:c7:d6:71:49:52:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 2 13:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=444d607bb454937a9e94243ead5c9a67ebdad0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:48:92:cc:0e:45:11:4c:e5:cd:86:fc:4b:
0c:db:4c:51:69:7b:0a:82:bd:99:c6:73:b4:43:82:
38:88:a4:bc:49:df:a6:ae:a0:50:f2:0e:1a:86:81:
69:ca:9e:27:b5:1f:00:de:a3:bc:aa:73:05:6b:01:
06:cc:77:cb:e7:ab:21:9e:f7:3d:79:98:d9:ea:58:
16:33:5c:91:c2:7a:73:9c:dd:ee:a6:f3:94:8f:e5:
bb:36:b1:f2:ec:d9:6b:f9:e7:a5:5e:69:4c:48:c0:
2e:2b:a2:ee:69:8b:58:6d:b4:37:13:f8:34:2c:19:
e4:48:ff:fc:6f:9f:fc:11:7b:1c:df:eb:4e:58:0a:
75:35:68:76:f8:1d:7d:03:64:83:d2:f3:fa:8a:e2:
c9:d0:b8:15:66:70:2a:07:f9:d7:7d:4c:0d:6a:92:
24:3c:48:c0:da:ed:64:07:a3:e6:5e:64:27:53:98:
09:17:c1:72:d2:a4:06:63:8c:a3:1a:94:77:5a:c1:
a5:ad:fb:47:8e:99:97:13:37:1c:5a:6e:ca:6f:da:
02:ca:21:5f:e2:0f:ed:6c:7a:22:49:12:e5:7e:a9:
0a:a0:ae:f6:2a:bb:02:15:e9:0f:f9:9f:5d:a5:88:
28:2a:ca:ed:5e:62:10:71:22:ef:cb:9d:41:28:f6:
79:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4D:60:7B:B4:54:93:7A:9E:94:24:3E:AD:5C:9A:67:EB:DA:D0:C3
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/RE1ge7RUk3qelCQ-rVyaZ-va0MM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2683:2::/48
Signature Algorithm: sha256WithRSAEncryption
c8:75:19:58:46:5e:cb:13:50:37:ce:66:a2:76:6a:76:20:95:
ec:18:dc:c3:ac:25:0c:5d:d6:14:94:d4:13:c7:1b:74:c6:76:
e7:4a:84:9c:1a:43:e7:3c:a9:7e:69:08:35:bc:ab:87:1a:d9:
a1:b5:42:de:db:35:f2:df:eb:b6:c1:f7:3b:db:69:4a:7b:d4:
cf:b6:68:9d:3d:cd:27:b4:0e:36:b9:6c:64:80:9c:94:3b:0d:
0d:4d:7a:b6:23:82:72:ef:c3:24:d5:15:bc:0d:93:dd:36:4f:
49:67:e8:dc:68:a5:03:28:5c:54:0e:18:d9:90:b0:6f:44:3c:
87:80:51:75:89:9f:95:07:1a:13:e0:20:a1:d6:3e:8f:ea:21:
dd:dc:73:66:4f:35:c2:06:4d:bc:f9:dd:d0:10:9b:04:58:68:
c7:6a:b7:0b:5a:67:77:dc:09:db:1b:d3:46:14:52:8c:ed:f5:
20:21:af:61:ba:57:c2:45:3c:e0:c1:55:f0:16:3d:7d:7b:a2:
d8:be:cc:13:c6:e2:51:23:88:7c:5d:b1:43:f7:39:1d:f8:ee:
6d:bc:9a:36:71:b7:e2:cc:ab:c3:c8:5e:1e:95:0f:9e:c3:26:
88:fb:ad:06:e3:5a:56:70:b7:76:87:42:c9:be:ac:6e:57:12:
0c:51:e5:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:46:25 2025 by rpki-client