Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/dN-uhf4yHU1KWIuxr4O44km4Ib0.roa
File: dN-uhf4yHU1KWIuxr4O44km4Ib0.roa (raw, json)
Hash identifier: erjr+nwKgTpJdhI7Z4IWA4jUyQt8GWT0g5Kuu0xltYE=
Subject key identifier: 74:DF:AE:85:FE:32:1D:4D:4A:58:8B:B1:AF:83:B8:E2:49:B8:21:BD
Certificate issuer: /CN=bde75079618691bae1f47bcbed52314496963891
Certificate serial: 01942BAFF3245E528E59F8C2FBCA5FB65CBC
Authority key identifier: BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/dN-uhf4yHU1KWIuxr4O44km4Ib0.roa
Signing time: Fri 03 Jan 2025 10:22:18 +0000
ROA not before: Fri 03 Jan 2025 10:22:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30058
IP address blocks: 185.237.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/vedQeWGGkbrh9HvL7VIxRJaWOJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/vedQeWGGkbrh9HvL7VIxRJaWOJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:2b:af:f3:24:5e:52:8e:59:f8:c2:fb:ca:5f:b6:5c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde75079618691bae1f47bcbed52314496963891
Validity
Not Before: Jan 3 10:22:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74dfae85fe321d4d4a588bb1af83b8e249b821bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:67:5a:e6:25:ba:3d:9d:2b:b7:69:06:84:
c7:38:d7:f8:fe:d0:92:12:e3:71:e1:f2:07:92:3c:
0e:bd:b0:bc:c0:22:c8:16:bf:b2:0e:a4:26:ce:27:
6c:61:3a:f4:15:19:1e:e0:d7:37:f4:83:b4:24:dc:
2d:e8:e1:5d:c5:a2:f1:ae:55:83:b7:99:b4:45:37:
b1:43:a1:ac:de:e9:49:8c:28:f7:ff:ba:a9:bd:33:
57:38:1e:d6:4a:1b:d3:02:7d:55:f2:02:ae:3c:3c:
aa:85:21:99:bf:d5:04:c9:39:f7:64:6e:a1:49:b9:
2f:51:c6:d4:e0:29:00:7c:de:20:bc:1f:70:af:71:
50:81:5e:50:8d:78:a1:6e:26:52:13:3f:db:bf:1f:
5d:d8:f6:60:2b:1a:24:18:b7:11:e9:13:e3:51:03:
6c:5c:93:27:23:63:d4:44:3b:47:c6:f6:cd:11:13:
67:eb:d9:36:e7:4f:6e:f7:c9:bc:45:72:66:b4:bd:
2f:d7:94:78:67:3f:af:c0:e9:9c:24:21:98:df:7b:
f6:37:02:4a:5c:20:1d:98:9d:54:fc:e0:b6:8c:ff:
35:0c:6d:8c:cc:80:4a:1b:39:62:b5:38:29:04:2d:
d5:79:fd:8f:28:ec:cb:ee:09:e7:0b:9c:18:e8:bd:
4a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DF:AE:85:FE:32:1D:4D:4A:58:8B:B1:AF:83:B8:E2:49:B8:21:BD
X509v3 Authority Key Identifier:
keyid:BD:E7:50:79:61:86:91:BA:E1:F4:7B:CB:ED:52:31:44:96:96:38:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vedQeWGGkbrh9HvL7VIxRJaWOJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/dN-uhf4yHU1KWIuxr4O44km4Ib0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/8f2093-0318-476c-9e9c-53fc4905629b/1/vedQeWGGkbrh9HvL7VIxRJaWOJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.105.0/24
Signature Algorithm: sha256WithRSAEncryption
12:07:2a:60:b9:ef:27:92:ef:0c:89:38:db:88:e9:da:9a:04:
ff:c6:cf:e7:3f:3e:fd:17:5b:80:5e:33:00:41:eb:dd:52:4c:
73:c8:5e:a7:f7:6f:9a:2a:d8:59:86:60:1e:b4:7d:8d:61:66:
46:44:c7:39:d5:1c:b9:7e:51:ac:6c:f4:a8:4f:d7:b0:98:10:
79:bd:d1:0f:a1:26:18:ce:39:5a:f2:cb:c4:8a:3c:b5:37:ea:
92:1f:13:33:ca:45:d3:e7:b5:43:1d:03:20:09:e7:ac:35:34:
1e:03:f9:a8:db:2f:58:71:f9:13:f1:b6:4b:af:ce:71:48:dd:
69:89:08:1d:d7:e4:31:68:d8:ab:d9:73:c4:e7:4d:07:0e:6b:
f0:31:c3:06:05:2d:6f:02:db:66:7b:54:2f:be:26:a4:6f:2b:
55:12:57:06:3f:14:36:7b:e9:3e:a9:da:1b:05:5c:ff:d1:e8:
d9:8f:4f:61:36:40:93:75:e7:87:e1:95:54:5a:7d:c9:a5:f2:
a2:61:16:42:35:61:d6:7a:cf:24:b1:4f:33:b7:2d:7d:2a:18:
11:fb:8f:c8:05:c5:40:df:ee:46:57:d4:9b:37:dc:92:d6:b5:
88:98:d8:bd:53:a1:3b:06:f6:32:09:d8:0c:63:ad:ce:ad:84:
39:52:bd:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:52:33 2025 by rpki-client