Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/SKBCllM8zLJEbYHJd_EV3itY7MY.roa
File: SKBCllM8zLJEbYHJd_EV3itY7MY.roa (raw, json)
Hash identifier: Zfen1G7f+hqJM+l1P8PiztKtQe2yRYBq/nE3Qk55hCM=
Subject key identifier: 48:A0:42:96:53:3C:CC:B2:44:6D:81:C9:77:F1:15:DE:2B:58:EC:C6
Certificate issuer: /CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Certificate serial: 0194228DC84C5772BA756D279997AA9D6457
Authority key identifier: 84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/SKBCllM8zLJEbYHJd_EV3itY7MY.roa
Signing time: Wed 01 Jan 2025 15:48:24 +0000
ROA not before: Wed 01 Jan 2025 15:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206238
IP address blocks: 91.132.40.0/22 maxlen: 22
178.239.16.0/22 maxlen: 24
188.212.112.0/22 maxlen: 22
188.213.88.0/21 maxlen: 24
194.145.194.0/23 maxlen: 23
217.148.134.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:c8:4c:57:72:ba:75:6d:27:99:97:aa:9d:64:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Validity
Not Before: Jan 1 15:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=48a04296533cccb2446d81c977f115de2b58ecc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:60:3d:26:eb:8b:5b:bd:e3:2f:fe:2e:e6:c3:
ae:36:d0:13:c4:fb:f1:75:d0:f5:ea:de:7f:de:4f:
91:43:ac:5e:71:c5:43:78:1d:23:79:22:31:39:20:
99:9f:7e:7e:bb:79:92:e5:5a:2a:eb:26:64:df:d8:
cd:1e:de:7f:bf:ab:58:04:0b:06:cd:3b:11:d8:fb:
23:74:f6:3a:2b:25:1c:b8:2d:44:ef:bd:e2:bf:f5:
8f:55:b7:56:01:5c:de:32:6e:65:40:f0:4b:2e:60:
02:37:ac:a5:bd:f5:2d:4d:be:b4:e7:7d:a5:c4:9b:
77:09:de:eb:9c:b4:99:55:20:9d:4b:ba:86:de:bf:
37:5c:ed:f9:d5:b1:af:95:59:1a:df:4c:c0:3d:be:
fe:45:c0:fc:68:0f:56:43:b6:33:8d:ca:4d:03:08:
71:31:d1:18:22:c4:f9:47:d4:9c:b9:9d:65:a6:77:
a9:c0:e9:b3:63:3f:e9:1a:d7:11:eb:db:f4:d4:78:
a2:ec:3c:a7:c4:32:b6:4a:92:e0:03:88:cf:be:50:
92:f9:a7:5a:51:83:e4:93:4e:cd:5f:fb:31:29:1c:
16:b6:47:11:d1:13:df:3e:6d:54:64:d3:25:f4:0f:
41:03:56:5c:64:bb:fe:37:2d:d9:81:da:ab:8c:4e:
46:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A0:42:96:53:3C:CC:B2:44:6D:81:C9:77:F1:15:DE:2B:58:EC:C6
X509v3 Authority Key Identifier:
keyid:84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/SKBCllM8zLJEbYHJd_EV3itY7MY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.40.0/22
178.239.16.0/22
188.212.112.0/22
188.213.88.0/21
194.145.194.0/23
217.148.134.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:b9:38:f5:8f:7c:b1:94:91:03:a4:6a:99:7d:2c:ee:dc:25:
aa:09:00:e7:ab:d1:b0:a3:ed:50:87:ce:96:bc:8c:e4:76:37:
90:da:a4:4a:8d:d0:d8:2a:db:60:6c:87:a3:58:4b:67:d0:5e:
9b:03:c0:e2:2c:9e:82:ce:c1:7f:73:81:9d:ab:b5:57:9f:2b:
8c:ce:54:38:5b:93:39:4f:c4:7d:cd:51:3c:56:9e:05:9e:41:
51:35:51:fb:a2:ca:9e:5b:be:f7:48:5a:9d:ca:d5:74:f2:41:
c0:70:60:41:64:c7:6b:1f:c0:2f:1a:2c:82:c5:ac:cd:ba:81:
ea:7b:72:29:65:fc:8b:6a:17:c4:96:75:97:86:95:4a:9f:a0:
05:3f:8b:52:a2:d7:cf:7d:c4:b6:5e:2a:44:ce:03:b9:b2:c1:
2a:1a:3a:c9:28:3e:91:e9:26:0c:51:89:e9:c7:3e:e6:32:94:
bb:a8:1c:f9:8b:3e:90:99:ec:2b:6f:b4:09:a8:da:fa:d0:b5:
b4:36:5a:3b:3c:a3:79:9c:d0:97:f8:2a:97:5a:c7:84:4c:2e:
f0:ce:be:ea:96:8b:d9:50:7e:cf:39:93:5c:e5:5b:10:19:d6:
42:9e:3e:ac:d9:79:22:4d:2e:66:97:09:22:a4:f7:48:cf:49:
e9:07:0e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:17:14 2025 by rpki-client