Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/ZzBmvMdXYMiQ9bwVHMIzO7s9SmM.roa
File: ZzBmvMdXYMiQ9bwVHMIzO7s9SmM.roa (raw, json)
Hash identifier: sLT+c6scYZ8+Q07xIyxSqYkUzEuyYwiK9vh89QW6tS8=
Subject key identifier: 67:30:66:BC:C7:57:60:C8:90:F5:BC:15:1C:C2:33:3B:BB:3D:4A:63
Certificate issuer: /CN=753d476db96de1e58623119a70b9d7b00b676da0
Certificate serial: 0194258F9D01D93956092BEEE3167A994C3A
Authority key identifier: 75:3D:47:6D:B9:6D:E1:E5:86:23:11:9A:70:B9:D7:B0:0B:67:6D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dT1Hbblt4eWGIxGacLnXsAtnbaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/ZzBmvMdXYMiQ9bwVHMIzO7s9SmM.roa
Signing time: Thu 02 Jan 2025 05:49:16 +0000
ROA not before: Thu 02 Jan 2025 05:49:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396982
IP address blocks: 193.108.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/dT1Hbblt4eWGIxGacLnXsAtnbaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/dT1Hbblt4eWGIxGacLnXsAtnbaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dT1Hbblt4eWGIxGacLnXsAtnbaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 11:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:9d:01:d9:39:56:09:2b:ee:e3:16:7a:99:4c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=753d476db96de1e58623119a70b9d7b00b676da0
Validity
Not Before: Jan 2 05:49:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=673066bcc75760c890f5bc151cc2333bbb3d4a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:84:3f:1b:5e:49:f8:0f:de:8c:36:ea:ec:7b:
3b:c7:96:3f:d1:f4:df:a9:d1:75:e3:cc:ac:de:48:
94:3d:0c:ee:6b:b0:e9:2e:d6:46:f6:8c:8b:f7:27:
70:27:e6:8c:86:82:3e:cc:9b:d1:b6:8a:a6:a6:c7:
a2:ed:31:8b:6e:96:60:73:63:87:b8:b6:2b:d9:0d:
0a:12:8e:4f:9d:59:49:2c:93:cd:ce:87:ee:58:5b:
77:90:5c:8c:f0:34:96:25:0d:c4:52:76:b4:bf:99:
ff:e0:a1:d4:a8:32:8a:45:b0:c8:4f:74:22:4e:49:
94:0c:c6:75:51:56:13:93:80:84:ea:ba:ff:41:09:
73:7a:d3:d2:b2:a9:1b:e2:7f:72:58:d6:fa:36:aa:
5f:c6:ab:a9:95:e4:65:8c:5f:31:6f:fa:61:75:dd:
fc:fe:32:f3:f2:64:fd:c0:4a:9b:66:87:a9:ae:f8:
ac:5e:11:aa:1f:67:f6:e0:0b:08:ae:7b:78:12:8b:
09:af:93:64:b9:e9:5a:e3:c1:74:10:73:a2:6d:27:
39:f9:44:af:29:ff:c7:fc:66:34:39:9e:1e:28:14:
9f:13:df:85:65:93:68:58:f1:62:8d:bc:10:8c:9f:
9b:4b:16:27:4f:b5:23:54:8c:22:79:eb:84:61:67:
47:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:30:66:BC:C7:57:60:C8:90:F5:BC:15:1C:C2:33:3B:BB:3D:4A:63
X509v3 Authority Key Identifier:
keyid:75:3D:47:6D:B9:6D:E1:E5:86:23:11:9A:70:B9:D7:B0:0B:67:6D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dT1Hbblt4eWGIxGacLnXsAtnbaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/ZzBmvMdXYMiQ9bwVHMIzO7s9SmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/dT1Hbblt4eWGIxGacLnXsAtnbaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.15.0/24
Signature Algorithm: sha256WithRSAEncryption
08:97:a0:ed:7b:15:6c:12:47:f5:78:13:4e:98:8f:26:26:e5:
9c:ae:6c:d7:b1:f0:3f:e3:bb:ff:12:94:e6:0e:0f:28:98:19:
18:8d:1d:fc:7d:aa:56:60:63:43:93:5f:88:b9:0c:31:83:96:
e3:74:c3:de:21:b2:ef:d8:f6:10:2c:c3:91:19:5e:54:e4:60:
6d:86:5b:dc:2f:af:13:64:75:27:0b:8b:ee:19:df:6a:77:dc:
f8:60:0b:0d:65:35:c6:3e:99:a9:c4:0f:36:c1:f1:55:c7:b5:
40:c6:0a:07:3b:f1:c0:f9:73:2f:69:e3:d4:ad:e7:4b:b0:71:
54:e6:96:ef:d9:40:61:d6:fd:ec:37:68:0e:18:09:67:80:2d:
97:8e:3f:b4:a6:2f:f3:a4:9f:52:ac:34:05:3f:19:15:f3:ee:
76:6e:16:3b:e1:97:21:1c:74:27:8d:4d:2c:69:ec:49:ba:54:
77:9e:66:97:68:a3:cb:9e:be:ea:88:9c:52:e1:7b:a5:2f:36:
e0:b0:3e:43:6b:a5:b5:fe:0a:c5:f6:c2:d3:b4:11:82:ec:86:
b6:2f:b3:90:6d:73:9a:ca:c6:a3:e9:09:a7:f3:f6:c6:d4:56:
b1:25:ca:62:8f:22:3b:16:99:8e:bc:a8:49:3e:e2:0a:85:dd:
b3:92:c6:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlj50B2TlWCSvu4xZ6mUw6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1M2Q0NzZkYjk2ZGUxZTU4NjIzMTE5YTcwYjlkN2IwMGI2
NzZkYTAwHhcNMjUwMTAyMDU0OTE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NzMwNjZiY2M3NTc2MGM4OTBmNWJjMTUxY2MyMzMzYmJiM2Q0YTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooQ/G15J+A/ejDbq7Hs7x5Y/0fTf
qdF148ys3kiUPQzua7DpLtZG9oyL9ydwJ+aMhoI+zJvRtoqmpsei7TGLbpZgc2OH
uLYr2Q0KEo5PnVlJLJPNzofuWFt3kFyM8DSWJQ3EUna0v5n/4KHUqDKKRbDIT3Qi
TkmUDMZ1UVYTk4CE6rr/QQlzetPSsqkb4n9yWNb6NqpfxqupleRljF8xb/phdd38
/jLz8mT9wEqbZoeprvisXhGqH2f24AsIrnt4EosJr5Nkuela48F0EHOibSc5+USv
Kf/H/GY0OZ4eKBSfE9+FZZNoWPFijbwQjJ+bSxYnT7UjVIwieeuEYWdHAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGcwZrzHV2DIkPW8FRzCMzu7PUpjMB8GA1UdIwQY
MBaAFHU9R225beHlhiMRmnC517ALZ22gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFQxSGJibHQ0ZVdHSXhHYWNMblhzQXRuYmFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi82YTljZjktYzBjYy00MDExLTg2MGUt
NDY4NTc4MmFjMmMzLzEvWnpCbXZNZFhZTWlROWJ3VkhNSXpPN3M5U21NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi82YTljZjktYzBjYy00MDExLTg2MGUtNDY4NTc4MmFjMmMz
LzEvZFQxSGJibHQ0ZVdHSXhHYWNMblhzQXRuYmFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWwPMA0G
CSqGSIb3DQEBCwUAA4IBAQAIl6DtexVsEkf1eBNOmI8mJuWcrmzXsfA/47v/EpTm
Dg8omBkYjR38fapWYGNDk1+IuQwxg5bjdMPeIbLv2PYQLMORGV5U5GBthlvcL68T
ZHUnC4vuGd9qd9z4YAsNZTXGPpmpxA82wfFVx7VAxgoHO/HA+XMvaePUredLsHFU
5pbv2UBh1v3sN2gOGAlngC2Xjj+0pi/zpJ9SrDQFPxkV8+52bhY74ZchHHQnjU0s
aexJulR3nmaXaKPLnr7qiJxS4XulLzbgsD5Da6W1/grF9sLTtBGC7Ia2L7OQbXOa
ysaj6Qmn8/bG1FaxJcpijyI7FpmOvKhJPuIKhd2zksZP
-----END CERTIFICATE-----
Generated at Fri Apr 4 21:55:58 2025 by rpki-client