Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/9DuU_p07tz3x6ilzcyzjosVDEfY.roa
File: 9DuU_p07tz3x6ilzcyzjosVDEfY.roa (raw, json)
Hash identifier: wHG4R/Bu2NUBbq+OukZ7F/aL4lyodMGqTHoZQOc+lac=
Subject key identifier: F4:3B:94:FE:9D:3B:B7:3D:F1:EA:29:73:73:2C:E3:A2:C5:43:11:F6
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01941F8C56EE605E82533C1EC7208A60B9F8
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/9DuU_p07tz3x6ilzcyzjosVDEfY.roa
Signing time: Wed 01 Jan 2025 01:47:58 +0000
ROA not before: Wed 01 Jan 2025 01:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199689
IP address blocks: 2a12:bec0:de0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 08:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:56:ee:60:5e:82:53:3c:1e:c7:20:8a:60:b9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 1 01:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f43b94fe9d3bb73df1ea2973732ce3a2c54311f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:df:30:ac:63:b1:31:88:e7:fa:61:8d:66:ad:
62:aa:6d:9d:48:28:db:56:63:8c:bd:50:df:ce:16:
6e:76:f8:5c:03:37:91:e6:51:e5:b8:d6:7b:04:f0:
00:4b:83:c8:d4:1a:42:93:e5:ec:6b:e6:97:fa:05:
bc:6b:28:87:e5:82:44:a3:11:a6:2f:bf:66:c4:e6:
e3:dd:6c:d7:2c:26:e7:c3:28:92:41:e2:ba:11:d7:
1d:ac:cb:9b:f7:01:10:9b:86:30:55:85:ff:d2:a7:
f2:f0:08:08:41:e5:54:81:dd:9a:58:0d:e9:52:6b:
17:ff:90:a2:b4:96:6c:9c:e8:8f:75:e0:44:53:53:
d0:d2:ec:0d:9f:b7:80:49:0b:36:de:61:64:92:95:
00:98:c9:68:80:33:bd:f3:74:ba:ab:a9:9c:9b:6a:
f6:df:a1:ef:cc:6e:8f:4d:d9:bc:70:d0:e0:cf:bd:
3d:4e:b3:1f:7a:bb:76:2e:10:f3:c6:6d:7a:0d:6d:
fb:f8:2a:18:d7:85:be:aa:2f:89:5a:78:77:6b:59:
0b:a1:fc:57:57:14:ae:b3:de:8a:81:04:2d:8a:ba:
91:80:cd:28:2d:26:67:ce:a8:a9:f3:02:b7:ca:a8:
63:01:df:66:d4:cb:fe:f9:2f:fa:ed:18:e3:55:34:
c9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:3B:94:FE:9D:3B:B7:3D:F1:EA:29:73:73:2C:E3:A2:C5:43:11:F6
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/9DuU_p07tz3x6ilzcyzjosVDEfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:de0::/44
Signature Algorithm: sha256WithRSAEncryption
04:72:eb:09:aa:9f:63:f2:6e:86:6e:5c:ed:2c:dd:a4:4e:ac:
34:de:06:b9:03:da:fb:ac:22:ac:2a:86:34:45:51:76:e5:41:
77:c6:57:aa:ca:c0:f9:1a:a7:68:c9:c7:f2:4a:98:71:ac:c9:
31:71:36:39:fa:ca:f2:37:ed:33:ac:0d:6c:4e:c9:9e:8d:6b:
8b:3e:8b:9a:ff:af:7c:fe:bd:59:c8:2d:d7:6a:12:9e:b5:f1:
61:6e:ea:b6:09:ca:ab:84:5c:96:11:36:b7:cf:3b:0c:18:05:
79:8f:16:f1:40:a6:e4:42:6e:6e:4a:68:9f:c8:96:de:53:06:
d9:2b:ec:15:6a:e8:89:8a:53:2a:ab:29:b6:ff:78:01:02:94:
98:02:02:6e:e1:9b:35:0b:08:2b:34:ad:92:a9:60:08:63:2b:
7c:1b:dd:2b:24:2f:01:97:2c:b7:5d:7d:67:eb:21:0b:10:3a:
7c:87:72:09:4f:4e:ac:fd:92:85:a6:04:04:55:ef:7f:8e:23:
28:97:14:d5:99:3c:46:b4:88:ed:1b:08:c5:bf:ea:9a:36:17:
0d:34:f9:54:f9:8e:d6:fd:4d:34:9e:6f:bb:8e:fb:72:c5:6e:
c2:16:d4:a0:ce:e2:f2:e3:33:cb:db:a7:d0:bd:d4:5b:79:c8:
fc:7d:ab:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:02:33 2025 by rpki-client