Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/9jOvYZEh2Ol_B4ie5UJMOcwA6Ig.roa
File: 9jOvYZEh2Ol_B4ie5UJMOcwA6Ig.roa (raw, json)
Hash identifier: UrKbabiR9RT0gCEwGaAhmq+JsVdRqPoRynH6IYXq8bE=
Subject key identifier: F6:33:AF:61:91:21:D8:E9:7F:07:88:9E:E5:42:4C:39:CC:00:E8:88
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0194258EC2A453FB90545DC95BD5B5FA3F77
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/9jOvYZEh2Ol_B4ie5UJMOcwA6Ig.roa
Signing time: Thu 02 Jan 2025 05:48:20 +0000
ROA not before: Thu 02 Jan 2025 05:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 45.9.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.mft
rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:c2:a4:53:fb:90:54:5d:c9:5b:d5:b5:fa:3f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 2 05:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f633af619121d8e97f07889ee5424c39cc00e888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c6:8c:6c:f1:de:44:83:30:34:e8:be:d5:7c:
1e:b6:4d:6a:bb:4a:70:35:74:8a:1c:ed:03:6e:7b:
e4:5b:27:6f:a9:c6:c3:e2:5d:48:6c:f4:57:bc:b0:
35:7b:9d:09:f5:62:51:b6:91:8e:95:0b:d7:6d:74:
63:d5:4c:c1:b4:bb:a3:48:91:d2:7b:0e:56:b2:f7:
9c:42:76:87:ab:58:16:b7:84:74:3c:a5:b2:3a:54:
75:08:f0:56:d5:84:84:20:a4:5b:d8:b8:e8:53:80:
74:c1:57:92:6c:42:ba:8b:3a:7d:37:e8:1b:27:08:
3c:b1:f1:9b:9a:6d:dd:ce:5e:2a:fc:98:c6:fd:13:
27:ab:4f:f7:46:20:46:65:e9:f8:ab:b8:e0:fe:e8:
85:b5:f4:18:9c:b7:df:36:25:d3:00:06:f8:08:01:
24:18:5e:7d:5d:fd:ae:02:92:86:73:64:da:2f:58:
aa:e4:f8:50:f3:50:ce:e0:ec:0b:70:63:85:9c:b9:
98:e2:53:0f:9f:7f:97:fb:18:aa:5c:00:a6:02:57:
9d:88:2a:e4:c3:86:10:32:c9:bb:fd:1e:1d:d6:00:
d5:10:25:9c:d0:2a:f5:a8:52:00:48:ce:b6:48:84:
ab:b5:74:5a:20:b2:60:bd:3c:81:de:03:ac:94:e9:
48:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:33:AF:61:91:21:D8:E9:7F:07:88:9E:E5:42:4C:39:CC:00:E8:88
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/9jOvYZEh2Ol_B4ie5UJMOcwA6Ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.8.0/24
Signature Algorithm: sha256WithRSAEncryption
81:1c:64:74:06:13:28:a5:f0:db:35:83:74:c5:d8:32:6b:06:
ce:b9:be:23:88:3d:1a:8a:99:d3:4d:e5:d8:c0:74:ab:9a:e5:
1d:9e:e9:2e:95:9b:2b:9c:20:4d:c3:3b:61:50:57:4f:82:58:
0d:f0:ea:bb:32:ba:df:1b:29:c9:ca:cd:43:88:fa:f5:0d:f5:
15:34:0e:9e:ad:e1:3a:96:05:37:e9:ae:2c:91:86:51:56:d6:
4a:d6:7a:83:4e:7e:02:29:f9:fc:d8:79:dd:49:99:a2:f4:a5:
78:05:ae:cc:f5:c8:69:a1:1f:df:37:f8:37:90:d9:46:24:e3:
3a:5d:47:93:95:61:22:ee:69:1a:08:a1:f2:26:ae:f3:2f:f9:
2b:02:2a:6e:df:ec:77:c3:0d:7d:2a:b5:be:05:e2:13:44:8f:
d1:23:3a:0d:0d:14:62:64:2b:f8:3b:2c:13:b6:5e:bf:2b:06:
9c:6a:c5:05:d7:f0:59:9b:37:e1:30:4a:45:11:12:3b:72:c8:
9c:9c:d6:21:32:00:5f:63:c5:93:68:d9:1e:ea:3c:a1:3d:20:
a9:66:6d:1a:37:b2:c0:08:41:1a:2e:7a:29:1c:b7:32:d4:1e:
2d:fe:e6:2a:23:4a:23:44:28:00:c5:21:81:82:2a:a1:73:bd:
74:a7:e2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:20:22 2025 by rpki-client