Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/1-_VyjV0CT9XcJVxzecB6U4nwQuY.roa
File: 1-_VyjV0CT9XcJVxzecB6U4nwQuY.roa (raw, json)
Hash identifier: r8iyOl+kfs3cqdKY6bkBLrcW9MmuFmJJWQpqVAv9fQ0=
Subject key identifier: FB:F5:72:8D:5D:02:4F:D5:DC:25:5C:73:79:C0:7A:53:89:F0:42:E6
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01941FFAAA11DC2A5A35810BDC9B200026E0
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/1-_VyjV0CT9XcJVxzecB6U4nwQuY.roa
Signing time: Wed 01 Jan 2025 03:48:28 +0000
ROA not before: Wed 01 Jan 2025 03:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205502
IP address blocks: 188.72.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 09:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:aa:11:dc:2a:5a:35:81:0b:dc:9b:20:00:26:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fbf5728d5d024fd5dc255c7379c07a5389f042e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b0:cf:38:82:b4:94:19:df:fc:67:8b:94:6f:
86:35:19:2d:41:df:84:e3:5d:7d:6b:b9:ac:2b:62:
97:f9:a0:c9:be:73:c6:8e:dd:60:11:fe:e6:87:ea:
1d:f4:5d:98:85:32:2c:5a:d5:40:da:1d:e4:ec:c7:
f1:5a:07:04:2f:79:6f:d8:86:a0:7c:9a:af:e3:7e:
f0:09:c8:86:88:cb:df:de:22:05:d3:8a:b8:03:82:
ec:dc:8f:55:4b:8f:f8:8f:ef:16:58:60:fc:34:b8:
87:b9:2d:f9:55:78:6f:6a:b0:c5:23:67:65:a7:23:
43:12:2f:84:7d:ea:d5:59:51:0e:63:fb:cf:aa:40:
70:1b:1c:9d:39:3c:b1:de:0d:f0:53:b4:f4:70:a0:
84:54:ce:43:a0:74:b1:83:b0:ca:af:d4:af:d4:e4:
cc:36:a5:5b:cd:18:6d:e9:7f:5b:b2:a5:8d:bb:8e:
02:90:07:0e:82:1b:2f:4f:b4:ab:46:d3:c6:e2:4e:
7d:74:13:d2:f5:04:24:2e:87:6c:cc:f3:cf:8d:0e:
48:eb:48:6f:86:42:7b:99:23:c9:a2:73:0a:81:65:
6a:13:7e:c9:e7:71:f3:58:62:4a:3e:2e:a5:64:94:
c0:77:53:e9:e9:4d:ea:67:9e:6d:a0:17:4a:42:85:
93:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F5:72:8D:5D:02:4F:D5:DC:25:5C:73:79:C0:7A:53:89:F0:42:E6
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/1-_VyjV0CT9XcJVxzecB6U4nwQuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.93.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:f6:25:fb:cc:b3:4e:74:1c:71:b0:19:eb:48:f9:70:b3:8d:
cf:ea:f6:b5:8f:10:71:6f:49:f3:de:c1:9e:ae:60:1b:f8:e1:
8f:df:b1:50:4b:87:60:85:19:ab:6e:14:ed:20:cc:56:4f:79:
20:6f:c4:24:f1:41:ad:87:37:a2:b9:9b:35:35:2e:17:d8:0e:
23:d5:d2:b8:90:35:4f:d3:1e:8b:57:85:97:ee:70:cf:b1:96:
46:5b:c8:05:eb:90:5c:7f:ce:ff:53:47:dd:af:e7:b3:02:38:
8c:7e:04:a4:3e:21:5a:07:02:ff:c5:67:04:dd:64:37:8f:35:
80:02:84:8b:ea:69:bc:71:19:22:08:ab:72:6f:84:14:b8:14:
aa:49:c9:b0:f3:2d:3a:c7:cb:73:c7:f7:44:81:5a:29:4c:c8:
1c:5e:2b:48:cb:50:b7:96:a9:4b:c6:4e:ec:a7:7d:96:23:c6:
26:e8:d2:4b:73:6d:54:23:8d:b3:b9:b9:0e:2f:19:01:ec:86:
46:cd:71:a9:9b:fd:8d:83:45:74:71:a7:69:0b:4a:5e:b4:ff:
f7:5b:da:40:f6:34:48:e3:76:b5:77:20:86:3c:81:f4:86:ce:
29:07:da:a3:1f:54:f2:91:ad:ad:57:f1:d9:52:dd:b1:47:a5:
7f:51:33:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:28:33 2025 by rpki-client