Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/yTPU9KBT_yF9oFmQNNIcb5x-2m4.roa
File: yTPU9KBT_yF9oFmQNNIcb5x-2m4.roa (raw, json)
Hash identifier: 4gwBmGsupWB21IC5fpENG4yVPsL+VM2s0DNtBND4taM=
Subject key identifier: C9:33:D4:F4:A0:53:FF:21:7D:A0:59:90:34:D2:1C:6F:9C:7E:DA:6E
Certificate issuer: /CN=12c889964b35b51ba8e5e679a15b19a31f133578
Certificate serial: 019420D5CC8DCB778A5AA91F7CA1E6728F38
Authority key identifier: 12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/yTPU9KBT_yF9oFmQNNIcb5x-2m4.roa
Signing time: Wed 01 Jan 2025 07:47:49 +0000
ROA not before: Wed 01 Jan 2025 07:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43905
IP address blocks: 82.146.180.0/24 maxlen: 24
82.146.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/EsiJlks1tRuo5eZ5oVsZox8TNXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/EsiJlks1tRuo5eZ5oVsZox8TNXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 19:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:cc:8d:cb:77:8a:5a:a9:1f:7c:a1:e6:72:8f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c889964b35b51ba8e5e679a15b19a31f133578
Validity
Not Before: Jan 1 07:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c933d4f4a053ff217da0599034d21c6f9c7eda6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:84:5b:fe:fe:5b:fc:4f:95:f8:26:90:4b:cf:
76:8d:8b:f1:bb:68:96:cc:f4:13:be:e2:bb:17:ad:
3d:75:ea:31:a5:2f:27:cb:63:e3:e9:6b:39:ed:a2:
5e:72:7d:8f:5e:dc:27:d2:22:bf:5f:b4:5c:14:60:
cf:b0:19:80:38:e5:71:72:b5:43:a5:53:8a:6a:bb:
f4:6e:2e:4e:1d:fb:21:28:ed:23:8e:f9:e3:ac:1f:
64:57:ec:7a:32:e3:27:7b:c4:83:c9:ea:59:61:ca:
50:6c:47:2a:d2:ab:db:00:14:10:a2:08:21:06:0f:
d2:95:17:20:ef:4d:06:fb:38:3a:eb:22:70:3c:02:
de:c8:a2:00:a2:bd:96:b6:6f:81:af:ac:ee:e5:64:
5e:95:53:e1:0a:f7:63:b9:c2:56:b7:15:6f:85:d4:
ec:ad:80:31:62:65:d0:e0:0d:45:6d:b4:8b:11:6e:
5a:b5:bc:29:0f:81:72:e2:15:a0:80:18:8f:4f:e9:
fd:7c:d9:bc:5d:47:10:53:cb:d6:06:99:80:7b:40:
e1:c3:e6:07:6b:77:b7:1e:94:76:1b:79:03:9e:7c:
2d:3b:67:82:db:52:20:de:b3:a9:d3:a3:b5:b3:33:
7a:a9:a2:c9:56:8e:99:2a:32:f9:42:7b:e9:6c:29:
a5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:33:D4:F4:A0:53:FF:21:7D:A0:59:90:34:D2:1C:6F:9C:7E:DA:6E
X509v3 Authority Key Identifier:
keyid:12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/yTPU9KBT_yF9oFmQNNIcb5x-2m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/EsiJlks1tRuo5eZ5oVsZox8TNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.180.0/24
82.146.182.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:7d:ca:d6:1d:ca:9a:7f:6e:79:22:ce:d4:10:c9:53:0e:03:
fd:3e:38:84:69:95:65:80:43:1f:ba:fc:32:91:35:1d:24:19:
83:b0:6b:59:20:0b:76:49:ab:40:6b:34:0a:45:39:d4:33:09:
94:66:7c:84:7d:52:10:80:31:ff:6a:c9:4d:7a:22:97:90:6d:
32:f7:f2:db:79:68:f0:e7:0b:f5:58:42:8a:df:77:61:e1:8a:
af:e3:65:84:bf:9d:d6:c3:c0:b9:1d:02:bd:96:f9:ab:ad:43:
7c:7c:06:7f:1e:77:ce:45:ad:82:b5:40:3f:ed:f4:ee:93:83:
b6:39:01:a5:ce:1a:32:af:af:0c:8f:0d:f0:3a:38:be:26:5a:
0e:31:50:87:63:d0:16:c9:01:ea:62:11:63:be:80:8b:8b:98:
82:6e:ac:46:b2:ea:0a:93:e8:23:87:6b:cb:0e:c8:06:39:51:
7d:e6:e8:e2:27:e8:99:c2:4a:0c:1d:62:cd:6a:1f:a0:43:34:
d3:ad:e2:e9:5e:37:4b:e9:eb:9c:99:d9:a2:80:46:bf:6e:ef:
35:0b:25:ff:53:fc:37:ee:a3:84:ac:30:c7:dc:a6:c4:6c:98:
42:36:39:ee:e4:0b:1c:94:8b:20:5e:c4:69:da:05:8a:26:64:
7c:0b:87:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:53 2025 by rpki-client