Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/sU28xKNoz0ebnELHinDQhAfTGOk.roa
File: sU28xKNoz0ebnELHinDQhAfTGOk.roa (raw, json)
Hash identifier: LcOsotfaJ4XCbUKW+GqA754WNTnRpE0EUj8P0SYZfGM=
Subject key identifier: B1:4D:BC:C4:A3:68:CF:47:9B:9C:42:C7:8A:70:D0:84:07:D3:18:E9
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 0194266BE293CDED5F90FB08079082047176
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/sU28xKNoz0ebnELHinDQhAfTGOk.roa
Signing time: Thu 02 Jan 2025 09:49:52 +0000
ROA not before: Thu 02 Jan 2025 09:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 263759
IP address blocks: 185.91.206.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:e2:93:cd:ed:5f:90:fb:08:07:90:82:04:71:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: Jan 2 09:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b14dbcc4a368cf479b9c42c78a70d08407d318e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ae:37:2e:6b:28:7a:b9:58:fb:5e:e4:b6:12:
23:ba:9b:78:06:56:16:26:a3:c4:40:b4:76:d3:70:
fc:5a:69:8c:9b:4c:ea:42:a0:e6:b8:c7:1f:d0:99:
8f:aa:d2:31:10:74:2d:12:8b:19:a8:b7:9a:69:67:
29:12:99:ef:7a:29:0a:f4:d4:52:13:98:53:20:1e:
e8:52:53:00:85:68:e3:de:fb:9f:db:f4:5d:5c:61:
17:1b:86:d3:11:8f:aa:ae:fe:08:a9:41:4f:72:ad:
35:a2:65:00:b9:0c:85:c9:2c:49:51:cc:39:4b:35:
f0:ec:a8:93:13:c5:10:c5:2d:b8:21:9f:b3:57:bb:
9b:7b:0b:dc:d7:7d:ee:48:cc:cf:9c:26:6e:8d:8a:
fc:af:59:4a:c4:ab:4c:5a:00:84:b6:b5:35:a8:a0:
23:ad:30:b8:cf:23:06:8a:76:c2:9e:4c:cb:12:0f:
bc:a5:cf:a9:78:0f:12:db:f3:c7:e3:f7:1e:88:a8:
4f:f7:0a:a6:8c:b5:d9:84:f9:b4:19:36:1d:67:e8:
0e:9f:3c:81:7a:aa:55:a7:e1:a4:e1:dc:8d:82:6c:
fc:e5:2c:a5:27:6b:74:8f:01:b2:db:36:12:4c:ef:
0e:2f:8f:c3:f8:26:a6:ac:a2:ea:64:72:6d:b2:28:
c0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4D:BC:C4:A3:68:CF:47:9B:9C:42:C7:8A:70:D0:84:07:D3:18:E9
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/sU28xKNoz0ebnELHinDQhAfTGOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.206.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:b1:30:dc:50:2f:65:6b:11:d8:44:93:16:b1:58:17:0d:2e:
b9:ae:22:85:d2:b3:7e:ca:b4:54:d7:69:60:ce:29:47:40:bf:
72:c4:2b:f8:b2:c3:d4:0b:6e:24:90:b3:29:fb:81:37:9a:bc:
57:5a:7f:3b:b1:62:c5:26:7d:14:ea:b9:d5:88:79:cb:c1:6f:
19:7e:e7:8b:3f:b9:15:90:b2:a4:96:33:c0:42:94:1e:91:8f:
1b:63:5c:a3:5b:b7:90:2b:96:6a:1c:88:48:03:2f:e5:a7:f0:
37:4f:d8:51:f3:30:85:1e:11:1b:1f:2d:e6:77:65:5c:61:1c:
eb:38:a0:30:43:f4:97:55:be:08:4e:bf:9a:5c:33:94:d4:27:
6d:25:da:17:fe:10:12:4a:45:d5:4a:26:7d:15:6f:b2:05:d0:
ed:1c:7b:5c:ef:7b:1b:0c:f4:89:b9:8d:cf:95:fb:94:ed:b0:
06:97:90:98:b0:1f:88:7f:57:48:47:ff:15:96:be:19:78:ca:
5e:e5:c9:e3:68:d8:c1:fb:cb:dd:00:f4:39:83:9b:24:4b:87:
ea:c3:8b:c6:be:03:e6:03:a6:ee:3a:59:3e:25:1e:a1:17:d8:
78:87:e3:47:f2:ed:8d:c8:9c:de:00:b6:94:72:b6:a4:7f:3e:
9c:a9:c2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:12:25 2025 by rpki-client