Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/67c3ea-ed6a-4c29-a1ac-8a8a7ffdd9fd/1/gGyzNC_bO6Lle8RV5kXmkWpg5Y4.roa
File: gGyzNC_bO6Lle8RV5kXmkWpg5Y4.roa (raw, json)
Hash identifier: WigIW2pDhkOgLUWTO5MtPBxTx3psT/+PtJTxxfI1/hQ=
Subject key identifier: 80:6C:B3:34:2F:DB:3B:A2:E5:7B:C4:55:E6:45:E6:91:6A:60:E5:8E
Certificate issuer: /CN=5ef1315c3c9239e8e1f4aa0c5b0743c3da5d77e3
Certificate serial: 01942067FDAF71B002B0767AE6C1C5A58F04
Authority key identifier: 5E:F1:31:5C:3C:92:39:E8:E1:F4:AA:0C:5B:07:43:C3:DA:5D:77:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvExXDySOejh9KoMWwdDw9pdd-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/67c3ea-ed6a-4c29-a1ac-8a8a7ffdd9fd/1/gGyzNC_bO6Lle8RV5kXmkWpg5Y4.roa
Signing time: Wed 01 Jan 2025 05:47:53 +0000
ROA not before: Wed 01 Jan 2025 05:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60585
IP address blocks: 185.28.124.0/22 maxlen: 22
2a00:9ee0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/67c3ea-ed6a-4c29-a1ac-8a8a7ffdd9fd/1/XvExXDySOejh9KoMWwdDw9pdd-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/67c3ea-ed6a-4c29-a1ac-8a8a7ffdd9fd/1/XvExXDySOejh9KoMWwdDw9pdd-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/XvExXDySOejh9KoMWwdDw9pdd-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:fd:af:71:b0:02:b0:76:7a:e6:c1:c5:a5:8f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef1315c3c9239e8e1f4aa0c5b0743c3da5d77e3
Validity
Not Before: Jan 1 05:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=806cb3342fdb3ba2e57bc455e645e6916a60e58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:43:9c:f7:26:e0:cf:77:c9:2e:eb:02:7d:8d:
87:57:73:a6:f8:43:97:84:ef:61:1e:71:d7:2e:a9:
9c:bd:07:db:96:e4:b6:05:50:e4:d7:d5:01:85:ac:
aa:a6:08:4c:94:f4:e2:ed:18:01:77:a0:d7:49:56:
55:b1:50:e5:29:ad:4e:a3:ea:55:7f:98:a0:8a:22:
98:46:cb:2b:6e:05:99:bc:04:05:9a:44:80:f8:26:
df:a4:15:d4:fe:69:c7:17:d5:4e:6c:33:ae:30:4a:
3c:fd:c8:76:74:40:ff:71:e2:da:97:f3:71:25:cb:
d4:07:1a:bb:4e:27:fb:25:c6:db:f0:ce:56:a3:df:
5c:9e:e6:47:8e:8d:70:fd:0b:fb:e5:62:f1:4e:16:
69:ea:2b:03:8a:90:8d:a2:d3:48:cc:18:fc:73:a5:
b4:bd:ba:32:c3:c0:5a:71:b2:25:c7:5d:ed:70:81:
d9:00:80:1a:57:02:e5:d1:e0:b1:6c:cc:77:e1:08:
65:eb:50:3a:67:74:74:02:d8:4f:8a:eb:f4:07:f4:
9c:bd:4a:41:f9:36:33:6b:9a:eb:90:6e:0f:21:c8:
21:6b:35:09:f5:4f:c5:e0:cf:40:b7:95:47:d3:c3:
57:0b:a8:e4:ad:26:14:01:ce:80:2a:9d:1d:1a:bb:
bc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:6C:B3:34:2F:DB:3B:A2:E5:7B:C4:55:E6:45:E6:91:6A:60:E5:8E
X509v3 Authority Key Identifier:
keyid:5E:F1:31:5C:3C:92:39:E8:E1:F4:AA:0C:5B:07:43:C3:DA:5D:77:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvExXDySOejh9KoMWwdDw9pdd-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/67c3ea-ed6a-4c29-a1ac-8a8a7ffdd9fd/1/gGyzNC_bO6Lle8RV5kXmkWpg5Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/67c3ea-ed6a-4c29-a1ac-8a8a7ffdd9fd/1/XvExXDySOejh9KoMWwdDw9pdd-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.124.0/22
IPv6:
2a00:9ee0::/32
Signature Algorithm: sha256WithRSAEncryption
1b:c7:c6:6a:6e:77:29:83:89:21:f8:29:f7:d9:75:ee:04:34:
5b:fc:d9:a7:4c:0d:d5:4b:ab:97:25:b1:18:d7:2f:a0:17:88:
6e:71:8d:a4:72:af:2f:bd:e9:be:d1:3b:d0:71:28:dd:35:b5:
33:03:e7:6c:57:d3:95:69:0b:1e:8c:9f:3d:ac:e8:53:cf:fd:
61:14:e6:24:17:5d:27:db:1a:ec:51:af:97:03:62:0f:bf:59:
7e:e5:b7:e6:fc:6b:ea:29:06:c0:91:26:4e:d8:4b:71:9b:9b:
05:f0:ff:37:bd:31:47:78:c5:9f:87:55:ae:4b:af:2f:61:3e:
ff:fc:d0:a1:90:ac:b0:3a:63:b7:b2:e2:46:ae:93:2a:38:df:
7f:15:7a:b4:9a:12:74:63:69:69:b1:ba:c3:8f:a0:3f:33:8a:
99:ef:5c:b0:e5:b4:56:e1:1a:78:d8:a8:ca:47:fa:f5:97:00:
9d:b2:6c:08:0a:a5:3b:2e:f2:01:16:bc:74:65:90:fe:72:bd:
cd:55:19:9e:0e:4f:dd:80:fc:29:3d:b3:76:43:14:88:1d:d4:
58:50:c3:3b:7a:bd:e2:f1:48:86:db:fa:72:71:d7:18:35:89:
20:38:08:5e:17:bd:b0:d1:84:5e:44:4d:2c:1d:5c:6d:fe:67:
5f:25:ef:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:40:57 2025 by rpki-client