Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c5f9d5-7f4a-4e2f-ba4e-738886fd4edd/1/B__ce4ujUqEmlGqCFUbQT-ccBdY.roa
File: B__ce4ujUqEmlGqCFUbQT-ccBdY.roa (raw, json)
Hash identifier: 1CKFjTgmzuTlf5nTjDnLD5ljICDqBQT8G+uOkx9bmJQ=
Subject key identifier: 07:FF:DC:7B:8B:A3:52:A1:26:94:6A:82:15:46:D0:4F:E7:1C:05:D6
Certificate issuer: /CN=feeb528ca48b1f447582c54ccf6ed780751b51d5
Certificate serial: 01941F8C4B9D5F27EA06A61B35865ECE7573
Authority key identifier: FE:EB:52:8C:A4:8B:1F:44:75:82:C5:4C:CF:6E:D7:80:75:1B:51:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_utSjKSLH0R1gsVMz27XgHUbUdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c5f9d5-7f4a-4e2f-ba4e-738886fd4edd/1/B__ce4ujUqEmlGqCFUbQT-ccBdY.roa
Signing time: Wed 01 Jan 2025 01:47:55 +0000
ROA not before: Wed 01 Jan 2025 01:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208555
IP address blocks: 95.128.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/c5f9d5-7f4a-4e2f-ba4e-738886fd4edd/1/_utSjKSLH0R1gsVMz27XgHUbUdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/c5f9d5-7f4a-4e2f-ba4e-738886fd4edd/1/_utSjKSLH0R1gsVMz27XgHUbUdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/_utSjKSLH0R1gsVMz27XgHUbUdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 16:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:4b:9d:5f:27:ea:06:a6:1b:35:86:5e:ce:75:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feeb528ca48b1f447582c54ccf6ed780751b51d5
Validity
Not Before: Jan 1 01:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07ffdc7b8ba352a126946a821546d04fe71c05d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9e:69:22:22:49:e7:51:91:cb:96:6c:3d:84:
66:02:c7:38:d9:ca:6b:31:53:72:af:7e:64:d6:c8:
cf:05:d7:be:13:0a:c7:06:a4:be:9f:ef:30:ff:7e:
34:ac:4c:e9:4d:05:d9:58:bc:0b:e8:64:5a:91:28:
d6:95:85:a6:1e:5c:ae:58:ef:e6:11:ef:e6:0b:35:
c6:89:74:cd:f5:48:08:29:ce:4f:7e:47:c5:07:fc:
fe:17:1e:0f:82:1d:4a:d4:17:8f:5e:04:7d:1c:8b:
12:96:5b:12:36:7e:63:3d:65:8d:ac:97:e7:c3:be:
26:71:9d:d5:33:cf:e1:ef:ca:7d:0b:ae:53:31:c7:
ea:6e:2f:94:ce:c6:70:46:20:38:2a:90:a1:76:76:
e1:10:f5:32:b2:c2:e6:0a:4e:02:2e:01:18:cb:5a:
c6:ba:fa:0a:57:06:7f:00:1d:41:ed:da:39:41:d1:
74:93:7a:d1:9d:cd:c1:87:b2:5c:4d:a7:c6:8a:59:
e3:5e:d3:49:4a:34:09:0b:55:eb:aa:fa:ae:6c:b8:
c9:61:5d:11:46:be:d4:09:93:e8:c8:5f:ab:ce:c9:
57:a8:26:61:b6:72:16:b9:cf:30:47:d3:1b:60:32:
2d:36:2e:05:a7:2c:1c:74:b5:79:8c:09:96:3c:91:
a1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:FF:DC:7B:8B:A3:52:A1:26:94:6A:82:15:46:D0:4F:E7:1C:05:D6
X509v3 Authority Key Identifier:
keyid:FE:EB:52:8C:A4:8B:1F:44:75:82:C5:4C:CF:6E:D7:80:75:1B:51:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_utSjKSLH0R1gsVMz27XgHUbUdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c5f9d5-7f4a-4e2f-ba4e-738886fd4edd/1/B__ce4ujUqEmlGqCFUbQT-ccBdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c5f9d5-7f4a-4e2f-ba4e-738886fd4edd/1/_utSjKSLH0R1gsVMz27XgHUbUdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.194.0/24
Signature Algorithm: sha256WithRSAEncryption
92:6b:05:2a:09:9b:72:86:04:de:ea:15:7f:a2:bb:d3:75:ca:
fb:59:18:4c:56:03:ff:61:b5:19:68:6d:8c:0d:4e:fe:ff:9e:
46:62:9a:8d:e8:f9:7e:b2:47:2c:b5:d5:2d:d3:39:88:7f:21:
7a:25:b6:97:e4:a7:82:01:ff:32:2a:04:9d:e5:d8:e9:2f:bb:
17:52:ae:a2:e6:f6:36:72:19:db:4b:61:4f:71:df:73:79:91:
f6:d3:2e:b4:51:9e:ca:8c:81:d6:a1:28:6c:a4:b9:75:6f:98:
2c:67:2a:42:d2:dc:9c:13:ff:01:91:47:bc:fd:fd:98:e6:ee:
68:fa:1b:8b:04:20:f0:d1:11:ef:e0:6c:e9:7d:03:25:40:d7:
0c:dd:58:18:dc:f7:79:0b:04:c2:bf:62:84:bc:7a:53:21:96:
8f:83:14:80:dc:82:f8:82:c3:c1:bb:e4:a4:49:51:81:ee:23:
6e:7e:51:ba:1b:af:2e:e6:31:64:48:13:9d:5f:ad:a3:4f:87:
02:f0:ba:50:c9:f4:0c:c3:0f:f7:3d:fe:e7:44:b2:3f:cb:36:
19:0e:1f:e3:14:88:7b:23:33:1a:2d:8b:96:d0:35:36:e9:60:
bf:af:e0:9c:1c:fd:c8:e0:55:e4:07:9a:bb:9f:a1:10:9d:65:
80:c0:a3:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:05:03 2025 by rpki-client