Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/tl08I-n58Omn0yrfhuxp8KWpULk.roa
File: tl08I-n58Omn0yrfhuxp8KWpULk.roa (raw, json)
Hash identifier: KzSe5Vgxc5D5oBSEecsymsgmqwAX4NdXILrgqAyHjOg=
Subject key identifier: B6:5D:3C:23:E9:F9:F0:E9:A7:D3:2A:DF:86:EC:69:F0:A5:A9:50:B9
Certificate issuer: /CN=5fba6255dedaa1a1b6b17cb8ea91e02d412b8718
Certificate serial: 01942143E1F1A1CE534DE177BDA9E8593482
Authority key identifier: 5F:BA:62:55:DE:DA:A1:A1:B6:B1:7C:B8:EA:91:E0:2D:41:2B:87:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7piVd7aoaG2sXy46pHgLUErhxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/tl08I-n58Omn0yrfhuxp8KWpULk.roa
Signing time: Wed 01 Jan 2025 09:48:04 +0000
ROA not before: Wed 01 Jan 2025 09:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395003
IP address blocks: 193.46.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/X7piVd7aoaG2sXy46pHgLUErhxg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/X7piVd7aoaG2sXy46pHgLUErhxg.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7piVd7aoaG2sXy46pHgLUErhxg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:e1:f1:a1:ce:53:4d:e1:77:bd:a9:e8:59:34:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fba6255dedaa1a1b6b17cb8ea91e02d412b8718
Validity
Not Before: Jan 1 09:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b65d3c23e9f9f0e9a7d32adf86ec69f0a5a950b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:70:3c:eb:d5:b3:fc:b4:87:53:9b:ec:69:ad:
ff:fb:2c:73:c2:3b:13:5e:1a:8d:c1:b5:30:32:ca:
fb:27:7f:4f:6e:ec:42:3a:1a:1e:11:f6:3e:26:e7:
bd:9e:e7:f7:34:0e:16:71:b9:c2:25:89:12:23:37:
a6:b9:b8:6e:c8:08:29:2a:56:2c:9a:21:72:6f:37:
02:81:01:78:12:ac:a6:df:ec:f1:6f:ff:f3:81:18:
ed:2b:df:b1:80:4d:dc:65:43:80:76:3e:04:53:19:
60:96:01:33:66:07:bd:4e:f8:d4:a2:5e:0e:92:51:
a8:86:b4:c7:d6:19:2b:bb:b5:01:63:42:2d:22:33:
ab:8c:4d:11:1a:d4:8f:60:f7:8a:b9:03:8a:63:72:
71:17:c0:0b:45:c6:5f:cd:04:0e:e4:a1:ae:16:c3:
ec:a6:ac:8a:11:3c:46:8b:30:61:b5:1d:09:e9:5f:
ea:97:b6:25:78:b6:1f:2e:52:18:ec:40:54:d7:92:
94:24:d6:26:98:58:0c:c0:e4:82:fd:f5:72:d6:19:
d8:4c:dc:c8:df:bc:3b:f4:7a:f0:03:0c:ec:77:c2:
d1:93:71:de:63:2f:01:4c:c0:03:8e:f0:be:4b:40:
3e:b1:25:58:05:92:c6:aa:ca:26:0f:7b:08:dc:bf:
6b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5D:3C:23:E9:F9:F0:E9:A7:D3:2A:DF:86:EC:69:F0:A5:A9:50:B9
X509v3 Authority Key Identifier:
keyid:5F:BA:62:55:DE:DA:A1:A1:B6:B1:7C:B8:EA:91:E0:2D:41:2B:87:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7piVd7aoaG2sXy46pHgLUErhxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/tl08I-n58Omn0yrfhuxp8KWpULk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/X7piVd7aoaG2sXy46pHgLUErhxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.74.0/24
Signature Algorithm: sha256WithRSAEncryption
62:4d:08:c7:7b:39:69:93:db:b2:e9:9d:db:60:0c:82:fc:e5:
b9:6a:e9:9b:6f:f8:57:5b:71:d1:b9:df:08:3b:62:cd:f0:28:
fc:ad:42:81:26:7f:37:43:48:ad:79:6e:d2:5e:93:57:fa:d0:
40:c7:89:75:1e:8e:de:09:55:0d:ac:11:0c:b8:87:0e:30:46:
b5:e9:a3:8b:6f:71:0d:08:6d:56:be:1f:45:a4:31:6f:3a:23:
96:4f:10:8c:9b:86:74:28:17:e3:0c:1a:b4:e5:21:7d:c0:44:
3e:ad:32:bc:12:23:45:90:40:16:7c:c0:4d:d6:d3:f9:f4:45:
76:f4:ff:db:98:29:62:8c:16:ca:84:69:a9:3a:65:3e:aa:23:
eb:1d:69:2b:39:7b:bb:45:0b:96:76:b8:4a:34:e1:02:c0:19:
98:08:ef:34:bf:01:90:ac:be:dd:c7:81:d4:5e:af:27:13:a0:
6f:71:40:9a:84:34:3b:24:1d:5f:b2:7b:8f:0a:0a:a3:17:32:
87:27:14:62:94:66:e1:01:20:0e:7f:54:5b:95:de:32:bb:0f:
64:ab:6c:a1:49:88:a7:ed:03:fb:9e:50:72:82:78:7d:7c:c2:
dc:68:01:71:56:c4:df:e3:d8:7d:75:ef:5a:11:35:52:a2:70:
11:43:b1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 06:55:48 2025 by rpki-client