Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fhomSjXrFlv9QCf_yNmwBNocY-g.roa
File: fhomSjXrFlv9QCf_yNmwBNocY-g.roa (raw, json)
Hash identifier: GP6VZl4TI88SDQ4yws6ZwSlwnMvAo4Nk6DLgfbo3JgM=
Subject key identifier: 7E:1A:26:4A:35:EB:16:5B:FD:40:27:FF:C8:D9:B0:04:DA:1C:63:E8
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 019427462E5C2C0ADF2E7A3D9C8A10010EEE
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fhomSjXrFlv9QCf_yNmwBNocY-g.roa
Signing time: Thu 02 Jan 2025 13:48:18 +0000
ROA not before: Thu 02 Jan 2025 13:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 141237
IP address blocks: 2a0d:2580:2000::/35 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:2e:5c:2c:0a:df:2e:7a:3d:9c:8a:10:01:0e:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 2 13:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e1a264a35eb165bfd4027ffc8d9b004da1c63e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:82:ec:6b:24:f9:8b:77:d2:12:1b:d7:52:9f:
83:8f:24:1b:82:46:d8:99:b2:19:80:67:29:92:56:
0c:93:47:7b:27:42:0e:7f:e2:5e:9c:ed:21:9d:e9:
f7:21:39:04:37:f2:bd:72:51:5d:0c:91:81:4c:c7:
63:0a:22:ed:12:ed:a8:09:c5:30:79:00:c9:98:23:
51:1f:d4:ba:58:f4:02:34:45:c4:42:c4:69:ff:f0:
4f:6a:f9:96:32:26:ac:a7:5c:d4:10:e4:37:18:e0:
38:f8:12:17:50:29:b3:17:25:1c:e2:a3:b9:fd:66:
9c:7d:60:85:41:88:53:fc:16:0b:cc:c2:17:f0:65:
09:b6:1a:79:16:cf:5a:9e:07:6a:f2:30:cc:ec:be:
7d:af:b7:97:ae:be:58:c0:29:ec:4f:42:7b:a1:73:
c8:f6:14:2a:60:35:dd:b5:6b:a6:13:75:bd:42:37:
cf:42:44:c0:81:8c:a9:06:4e:4b:92:ef:c4:e4:82:
68:39:96:d0:b8:b1:1e:2a:5a:0e:32:b0:2e:5c:a1:
30:dc:6f:72:c2:0e:d9:d0:4a:dd:e9:f5:0d:6c:53:
71:2d:32:8a:b6:96:13:25:d8:31:7f:ab:50:12:41:
21:9f:0c:35:df:2a:0b:57:ae:f4:06:77:41:ce:fa:
ef:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:1A:26:4A:35:EB:16:5B:FD:40:27:FF:C8:D9:B0:04:DA:1C:63:E8
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/fhomSjXrFlv9QCf_yNmwBNocY-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2580:2000::/35
Signature Algorithm: sha256WithRSAEncryption
be:84:91:85:94:9f:64:6b:58:f7:4b:fe:f4:c4:c6:e4:fb:96:
af:37:c1:a4:45:2d:c2:fc:94:00:85:e9:85:f9:36:3e:90:ab:
be:12:d2:0b:01:13:3c:c5:80:a5:98:2e:f5:7b:4e:34:b9:5d:
29:6b:19:8e:2c:a1:a6:a5:89:9e:f5:a5:2e:8b:70:a1:3f:4d:
cc:dc:15:fd:fe:dd:46:17:02:51:ad:c9:32:3f:ad:68:3b:21:
69:18:24:99:c6:b2:e4:c7:0d:7d:9b:6e:03:8c:e5:3e:ad:77:
34:56:a7:d7:ef:54:de:8c:22:da:22:0a:b0:67:44:07:ef:be:
ec:51:96:0c:a5:b7:e6:eb:8f:71:c8:88:a8:b0:25:e6:5f:c2:
e8:da:9e:33:71:aa:bc:7c:4b:47:1a:00:2a:98:29:0f:c6:40:
45:0d:53:ac:71:a3:7b:f0:04:bd:0a:7b:39:21:63:49:71:75:
2d:fc:d6:a7:3a:e3:d0:56:93:91:a6:2c:0e:0c:16:0b:eb:f3:
00:a1:91:7b:ae:d7:94:73:86:45:13:c2:a0:60:52:40:9f:a5:
34:e3:0a:94:36:df:06:95:64:7e:99:de:30:b6:8f:b4:01:9a:
55:7f:bb:2f:48:db:ce:f6:d7:2a:ca:08:76:60:55:17:2b:a1:
17:01:86:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:24 2025 by rpki-client