Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/54ZlRXGHyWv5RODe6I5A09qKRRA.roa
File: 54ZlRXGHyWv5RODe6I5A09qKRRA.roa (raw, json)
Hash identifier: JhsTdvgLGs60XeTqJevlCbe1GlNTqqmX49PnL2b5ScQ=
Subject key identifier: E7:86:65:45:71:87:C9:6B:F9:44:E0:DE:E8:8E:40:D3:DA:8A:45:10
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01941FFA93E22EFF4960BD1459B1C69305A2
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/54ZlRXGHyWv5RODe6I5A09qKRRA.roa
Signing time: Wed 01 Jan 2025 03:48:23 +0000
ROA not before: Wed 01 Jan 2025 03:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48275
IP address blocks: 37.18.11.0/24 maxlen: 24
37.18.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:93:e2:2e:ff:49:60:bd:14:59:b1:c6:93:05:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e78665457187c96bf944e0dee88e40d3da8a4510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:79:d3:c6:0b:40:f8:e6:0b:bc:a3:0b:52:7d:
79:c8:a3:1d:f6:29:09:a8:27:ab:d0:d1:d9:68:4a:
c6:75:c8:6f:e6:60:3f:d4:71:13:21:8d:b0:cc:cd:
65:b5:68:a8:b7:36:7d:c1:ac:33:4b:15:8c:5b:4e:
0a:4b:84:82:4d:8a:13:f0:6b:ba:58:34:4e:18:88:
7c:c8:2f:6f:a0:ec:7e:fb:52:74:00:90:7d:95:9f:
7f:19:27:e9:8d:19:03:1d:6f:34:d4:3c:4b:e8:32:
a4:ca:45:55:78:d8:99:c2:83:32:83:54:ef:29:fd:
09:5c:47:79:d4:c3:25:dc:92:95:7b:0e:5f:86:62:
cd:b6:79:52:69:a5:cd:26:16:92:fa:e9:db:8f:49:
1d:37:01:4a:3c:05:74:4b:23:c6:c7:91:25:ef:d1:
23:e1:04:31:40:29:e0:b3:49:a7:cd:a2:32:db:f3:
c4:d6:fb:a2:15:3c:26:1f:53:68:b1:1f:9c:d5:67:
de:c3:87:27:38:d0:7a:d2:4c:b4:a1:7c:5e:64:de:
76:e5:2a:81:fe:15:0c:8a:ac:10:cb:6d:73:81:cd:
6d:9c:d6:28:33:2c:97:15:17:a2:b8:40:a4:4d:3e:
7c:de:03:8d:90:9c:cc:93:5e:3d:28:00:f3:58:22:
a7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:86:65:45:71:87:C9:6B:F9:44:E0:DE:E8:8E:40:D3:DA:8A:45:10
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/54ZlRXGHyWv5RODe6I5A09qKRRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.11.0-37.18.12.255
Signature Algorithm: sha256WithRSAEncryption
26:46:25:45:76:7f:7d:1f:0b:a0:66:e7:79:3d:26:48:ba:02:
1f:0d:15:79:5b:db:db:fe:5b:9f:fa:16:a4:63:bd:88:24:3a:
14:27:0d:0d:be:e5:32:f9:52:29:b0:f5:d0:ae:16:5a:14:89:
76:12:13:75:68:f9:cf:8d:02:fa:87:c9:8e:ba:2f:95:be:f7:
e0:28:28:77:17:9b:47:bc:3e:47:82:a2:db:70:3e:9b:42:24:
59:c7:bb:d4:dc:db:3c:9f:22:56:54:1a:bb:9f:83:c7:93:bb:
ed:64:c5:6e:f5:ba:52:1d:12:cc:f6:3b:4c:80:bb:5c:1f:11:
62:84:3d:db:75:e3:14:f5:64:9a:cc:d7:61:e9:ce:2f:04:8f:
64:a2:d1:3c:a6:ec:f6:78:58:85:85:8b:40:4e:4b:51:6d:55:
0f:21:0d:bc:0e:43:dd:6e:a3:01:77:0e:35:4a:6f:37:26:fa:
80:5d:c8:20:09:8f:60:1c:bb:1d:15:bc:52:5d:28:e0:6e:87:
06:39:10:8d:a3:da:e2:d0:90:50:f1:5b:c0:2e:9f:d7:b1:96:
5a:e7:0e:f7:60:bc:23:08:2e:37:ea:2c:0f:cf:b5:31:da:e7:
74:f1:63:e9:9d:54:ca:cd:8c:ec:97:99:12:1f:0f:f9:a6:67:
55:a8:4a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:20:25 2025 by rpki-client