Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Ow70RTMOH3wr-e5tO995e3yYWlQ.roa
File: Ow70RTMOH3wr-e5tO995e3yYWlQ.roa (raw, json)
Hash identifier: 2LBHTXgVzZQf9dHIS98ZTf5PIOv7r+4NHIJ4Z6lOQhk=
Subject key identifier: 3B:0E:F4:45:33:0E:1F:7C:2B:F9:EE:6D:3B:DF:79:7B:7C:98:5A:54
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01941FFAAA47188308C70EA245E0D6F41B29
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Ow70RTMOH3wr-e5tO995e3yYWlQ.roa
Signing time: Wed 01 Jan 2025 03:48:28 +0000
ROA not before: Wed 01 Jan 2025 03:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205675
IP address blocks: 37.18.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:aa:47:18:83:08:c7:0e:a2:45:e0:d6:f4:1b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b0ef445330e1f7c2bf9ee6d3bdf797b7c985a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ee:fc:a1:7b:5d:7e:10:49:ab:7b:d9:50:39:
ed:a6:3f:29:af:d5:ca:9b:cd:e4:4d:91:c4:03:99:
67:f5:9b:44:01:f7:8e:30:ff:7d:eb:12:f8:5d:bc:
f0:de:5c:3c:b2:f5:86:84:bb:10:41:a7:e3:41:f0:
80:be:9f:4d:7d:e2:93:68:d8:46:c1:47:78:74:ea:
93:61:a3:59:97:a9:81:d6:99:ee:d8:e2:27:55:94:
46:8e:54:af:26:c0:0b:0a:ed:d2:e3:81:1e:b1:dd:
7a:7d:d4:43:97:f5:0f:ff:05:bc:18:b6:a0:71:8c:
2a:22:2d:c3:9b:6f:6a:8b:1d:05:ea:6b:80:8e:01:
14:bc:52:bd:98:df:c9:f9:a9:32:c2:3a:73:f9:fd:
67:28:6d:2a:8d:29:6b:4e:ef:b7:05:7a:7a:d7:76:
63:9a:53:b1:4b:72:69:4d:6b:4d:ea:44:78:f8:83:
6e:94:2a:84:28:df:53:ca:8b:52:19:c6:c8:03:76:
04:28:ae:65:df:56:fd:9e:11:e9:11:8f:46:d4:36:
04:c3:d0:5d:90:37:89:a3:89:0c:ba:f3:0a:43:11:
14:66:ea:23:4b:a8:47:17:7d:90:1f:65:26:06:8f:
4e:88:05:cb:76:d9:12:b8:03:07:ee:ec:ef:3c:1f:
03:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0E:F4:45:33:0E:1F:7C:2B:F9:EE:6D:3B:DF:79:7B:7C:98:5A:54
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Ow70RTMOH3wr-e5tO995e3yYWlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.24.0/24
Signature Algorithm: sha256WithRSAEncryption
99:28:95:6d:49:14:94:45:c1:8d:31:68:43:0a:de:8e:6d:17:
05:11:55:26:ef:26:64:d2:48:5b:1d:30:de:1f:3a:75:66:85:
ab:59:53:b5:61:48:f3:fd:9c:22:24:56:27:04:af:1d:23:23:
d0:87:93:30:84:e5:13:9b:24:cd:f4:74:ba:ac:27:d8:03:0a:
29:d7:c9:11:75:27:0b:39:ad:5e:14:fa:9d:da:f6:17:19:7a:
0d:ae:10:95:b6:e4:b4:87:f9:b4:49:a1:4a:11:af:d9:ac:ee:
aa:50:86:73:9e:24:13:f4:74:6e:9f:c9:eb:06:b3:66:54:25:
07:d3:a2:b6:44:e6:9f:06:83:cf:13:61:15:09:7d:fb:b3:9a:
50:b4:c5:f0:e6:8e:18:ab:dd:41:7b:67:0e:75:80:49:3a:eb:
8e:14:1a:83:f6:a2:90:cc:56:89:60:5a:6a:f4:ed:75:a5:6e:
03:62:34:bd:54:cd:58:0f:24:37:8f:80:82:3c:6d:b8:3c:22:
ae:00:aa:23:09:87:c0:3b:90:45:04:19:a4:93:45:61:4e:31:
5f:8d:64:c8:e8:15:4b:5c:88:0d:5b:b4:25:f1:ff:3f:90:cd:
f1:78:79:c3:08:cc:96:7b:19:dd:b4:e6:6c:4c:c3:35:3e:76:
56:1f:90:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:29:30 2025 by rpki-client