Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/8Ul6EUbN8nuEp2NFtsX4pXAa4zQ.roa
File: 8Ul6EUbN8nuEp2NFtsX4pXAa4zQ.roa (raw, json)
Hash identifier: u/XlwlTOr3fAGl4u3pexiEWOyuIeoTxqTTJ1V4qZ94U=
Subject key identifier: F1:49:7A:11:46:CD:F2:7B:84:A7:63:45:B6:C5:F8:A5:70:1A:E3:34
Certificate issuer: /CN=bbf3a257f99528c3a924d269d1af438185c2006d
Certificate serial: 019426D99DF53B3382D7AB458EFED6BB58C7
Authority key identifier: BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/8Ul6EUbN8nuEp2NFtsX4pXAa4zQ.roa
Signing time: Thu 02 Jan 2025 11:49:43 +0000
ROA not before: Thu 02 Jan 2025 11:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16145
IP address blocks: 80.87.240.0/21 maxlen: 21
185.150.192.0/23 maxlen: 23
185.150.194.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:9d:f5:3b:33:82:d7:ab:45:8e:fe:d6:bb:58:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf3a257f99528c3a924d269d1af438185c2006d
Validity
Not Before: Jan 2 11:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1497a1146cdf27b84a76345b6c5f8a5701ae334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7e:00:ab:45:dd:6c:ab:a7:02:14:f6:e5:e6:
62:b5:cb:ed:bc:15:f8:2b:df:6b:f1:3b:6e:be:5b:
3a:4a:b8:a7:39:9d:d2:00:b7:9b:ec:2e:39:53:f2:
89:98:41:80:51:8e:e5:8b:a3:b1:9c:2f:f7:2e:d9:
09:89:b6:61:e1:eb:89:a1:aa:c2:f5:61:3d:bd:38:
02:42:2d:59:11:88:4f:b9:f6:a6:36:78:d1:4c:8a:
47:fc:61:df:63:ad:9c:98:02:ba:a8:c6:68:e5:22:
2e:e5:11:d9:d3:5c:a6:6a:3b:3d:7a:64:62:4f:2f:
06:e4:63:f6:57:d6:c7:51:ed:12:0d:bb:a3:60:41:
c5:37:81:af:79:36:bc:ac:9c:11:15:04:83:df:8c:
c8:cc:48:aa:e9:84:f6:f8:f7:03:6a:84:98:9b:05:
98:97:fe:ac:e6:e3:9a:f2:08:a3:20:20:eb:b7:c1:
71:89:e0:cd:d1:2f:cc:57:20:60:51:85:cf:69:2e:
8e:98:cd:41:27:f9:39:5a:27:e2:8e:cc:f8:9f:97:
17:79:2a:28:f6:b1:0e:3f:7a:11:1d:6e:9a:0b:32:
c7:cb:44:a2:55:18:0a:64:53:ea:97:8a:13:0a:a9:
a0:ed:68:c7:1d:4a:15:52:9a:f3:ba:ef:07:5c:78:
4f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:49:7A:11:46:CD:F2:7B:84:A7:63:45:B6:C5:F8:A5:70:1A:E3:34
X509v3 Authority Key Identifier:
keyid:BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/8Ul6EUbN8nuEp2NFtsX4pXAa4zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.87.240.0/21
185.150.192.0/22
Signature Algorithm: sha256WithRSAEncryption
53:7a:56:28:ee:76:c9:c5:6f:4a:a7:35:62:18:2a:40:d1:5c:
fb:1a:0a:4c:0a:1d:cc:dc:7d:4a:fe:02:43:56:f7:15:42:fe:
d7:76:49:dc:36:5e:5f:9a:5f:87:45:96:21:9b:d0:54:ac:1e:
04:ff:73:e8:70:66:e5:af:45:aa:72:43:94:d9:58:c6:75:50:
12:28:0d:c0:e5:8a:6b:e5:96:7b:0b:43:70:a1:a9:44:33:9c:
3e:52:14:6e:b5:d4:73:96:96:9d:38:82:d8:20:8d:6a:51:2b:
c4:1d:13:5e:01:60:ad:cd:84:cc:f7:90:68:e1:5e:92:d1:3c:
30:61:65:bd:ee:23:f6:fa:f0:25:4c:e6:cc:7f:12:6f:78:a2:
0b:fe:e2:18:76:a7:6d:94:5a:68:aa:0b:50:d0:0a:be:03:30:
78:cd:44:52:ba:aa:45:8c:0e:84:a5:13:71:08:7e:89:50:2b:
b7:2b:6c:6b:ea:3e:3d:c6:bd:d1:6d:ed:ef:5a:39:9d:a6:0c:
04:2b:d7:50:ca:d4:13:23:0c:d6:73:e4:bd:57:8f:d7:1b:86:
d0:c6:61:62:8f:2e:a7:fb:5a:cd:73:27:7d:7e:76:8a:ee:3f:
c4:68:4c:0a:08:f4:49:88:07:3c:cf:cc:98:98:84:a3:83:cf:
45:b6:e9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 13:10:54 2025 by rpki-client