Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/90wCTu_VG0cg3v518Jw-uQZKG0I.roa
File: 90wCTu_VG0cg3v518Jw-uQZKG0I.roa (raw, json)
Hash identifier: WGgublq3d4Yb/k0UHfCjetZRey/6UF8GGMjAYAWKBew=
Subject key identifier: F7:4C:02:4E:EF:D5:1B:47:20:DE:FE:75:F0:9C:3E:B9:06:4A:1B:42
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 0194228E13633CCA0D6E5F304084885FB72E
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/90wCTu_VG0cg3v518Jw-uQZKG0I.roa
Signing time: Wed 01 Jan 2025 15:48:43 +0000
ROA not before: Wed 01 Jan 2025 15:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 176.113.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 18:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:13:63:3c:ca:0d:6e:5f:30:40:84:88:5f:b7:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Jan 1 15:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f74c024eefd51b4720defe75f09c3eb9064a1b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:c5:1a:bd:18:a4:2a:a5:18:e5:b9:1f:aa:c8:
66:9b:27:df:62:12:cf:1b:ed:a3:ba:13:87:a8:d1:
9c:f8:8c:7d:c2:8a:15:69:7d:00:91:08:30:2d:1a:
bb:7d:51:7e:08:8d:06:05:9d:da:9c:ef:11:47:03:
a0:fb:af:e8:b6:ad:55:b7:77:1c:6f:d9:83:e5:d1:
22:61:53:d6:13:08:66:06:5d:0d:3a:4c:d4:0a:f0:
d3:64:9a:06:ab:b5:dc:b3:75:ea:75:71:f3:70:4b:
3f:f9:b0:e2:f6:20:9f:d8:c8:a4:7a:ac:dd:6e:f8:
37:c5:c3:b4:e3:4a:30:03:c9:66:1b:99:da:1b:f9:
76:41:a5:62:6d:f3:a7:4b:f8:83:f3:1f:39:2b:95:
f2:0e:de:e0:46:eb:33:ed:b9:c0:71:07:ce:57:a6:
6c:6f:ed:e5:49:20:d0:46:3c:ac:10:53:32:e5:36:
e2:e1:b5:4b:a7:81:af:d7:b0:03:a3:73:58:a2:aa:
fb:8a:ea:96:85:92:e5:0d:33:83:ba:76:71:ff:63:
02:6e:9f:b9:a5:b5:9e:ee:fe:08:7c:2a:15:16:53:
db:43:b3:f3:01:ae:38:6a:71:95:96:01:45:2a:bc:
c1:f0:d6:d1:c5:ed:bb:cd:fd:00:5f:c4:b4:6d:a3:
05:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:4C:02:4E:EF:D5:1B:47:20:DE:FE:75:F0:9C:3E:B9:06:4A:1B:42
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/90wCTu_VG0cg3v518Jw-uQZKG0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.98.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c9:24:fb:e1:8e:14:b6:93:47:46:f3:13:54:d0:1c:26:0b:
3a:a1:97:fd:c6:16:a1:b9:4f:5f:89:7b:be:81:1a:ec:90:16:
61:10:fe:31:88:e5:59:d0:f8:c6:3b:ec:05:3a:ae:a6:50:60:
c9:e3:c2:e2:8f:48:62:41:a8:2f:2a:57:5f:07:4e:a8:db:ae:
f2:1d:8b:e7:a5:82:a0:f0:fb:ba:90:8d:0d:7c:cd:9f:2f:b8:
a9:3b:c0:a5:af:b0:ec:0e:05:b5:a2:f5:47:88:87:31:2c:e6:
bd:c3:d3:c8:de:11:3c:0a:79:99:bb:d7:71:db:f1:38:83:e6:
b0:88:2e:c6:fe:c4:fa:08:0c:3c:cb:4c:50:2d:8f:4b:97:38:
58:c0:cb:4e:df:fa:fa:2e:f6:a9:f5:f9:e9:ea:42:09:92:09:
0c:4a:84:b6:ea:d0:1a:eb:b5:7c:e1:bf:da:7d:b1:51:58:78:
f7:f5:27:48:e2:5e:3e:79:17:8b:51:e3:1b:3d:5c:aa:aa:a1:
46:74:b4:76:50:fe:03:46:c7:26:da:e2:b5:40:30:28:7f:a7:
5f:72:a2:d3:9e:aa:ee:a4:eb:77:3d:05:e2:56:da:22:da:f2:
72:ef:fa:02:b5:2a:79:e7:22:70:ee:06:87:e9:06:76:77:29:
bf:4a:28:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:30:41 2025 by rpki-client