Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/UD8PeoC507j-R5gM4iVeaToplJg.roa
File: UD8PeoC507j-R5gM4iVeaToplJg.roa (raw, json)
Hash identifier: E+NOjqQP7fFW4dktZcx7zBoGyfZltq1IW944Fil+FoI=
Subject key identifier: 50:3F:0F:7A:80:B9:D3:B8:FE:47:98:0C:E2:25:5E:69:3A:29:94:98
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 019424B4061BEBC02A715A6C281D0E8CAEEE
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/UD8PeoC507j-R5gM4iVeaToplJg.roa
Signing time: Thu 02 Jan 2025 01:49:25 +0000
ROA not before: Thu 02 Jan 2025 01:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30475
IP address blocks: 193.8.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 22:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b4:06:1b:eb:c0:2a:71:5a:6c:28:1d:0e:8c:ae:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 2 01:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=503f0f7a80b9d3b8fe47980ce2255e693a299498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3e:d1:19:7c:bb:a2:5a:7c:72:b3:d4:22:9c:
d6:0c:0a:a6:88:dd:28:cc:02:21:b8:a5:ec:76:5a:
36:ec:7f:07:3a:8c:ab:94:a2:16:42:70:5e:1f:3b:
ae:4b:34:51:8a:20:12:08:7c:94:23:56:25:a4:eb:
38:de:63:9e:59:fb:d8:e1:78:15:6d:eb:03:cd:b3:
e7:0a:ab:5a:14:7f:ed:28:56:7c:12:eb:f5:29:25:
20:e7:5c:b9:f1:aa:d2:c0:37:5d:54:67:96:ae:74:
45:39:68:bc:aa:2c:c9:c2:ce:dc:b5:e4:76:d9:66:
9f:89:3e:e5:f1:80:9b:dd:b2:3e:97:81:64:71:1a:
87:ba:43:17:d2:94:57:3d:73:b2:e5:b1:fc:67:c5:
01:b8:48:f0:85:ab:96:bd:6e:b5:17:a8:a3:1b:a0:
81:26:21:ea:c1:fe:fe:8b:42:50:9f:13:b9:7b:fe:
11:b6:c1:bd:13:68:2b:f5:a4:4b:ab:8f:36:cf:da:
14:ad:14:7a:1c:41:0f:5f:75:f8:73:35:2d:0b:b6:
48:2b:66:f7:76:2c:e0:f3:99:76:58:53:9d:6f:78:
b2:ca:54:9c:ac:ec:74:98:3d:c9:b8:74:62:50:93:
01:08:bc:10:ae:81:da:06:8f:4f:24:7f:a4:df:4e:
57:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:3F:0F:7A:80:B9:D3:B8:FE:47:98:0C:E2:25:5E:69:3A:29:94:98
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/UD8PeoC507j-R5gM4iVeaToplJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.172.0/24
Signature Algorithm: sha256WithRSAEncryption
69:73:74:16:00:a6:e0:39:13:28:ed:ee:f8:0b:74:68:49:b8:
eb:50:b7:ab:a0:6b:ad:4b:21:a8:0c:32:aa:da:66:1a:40:d6:
70:fc:ec:95:4b:c6:28:32:9d:e5:a3:47:2d:af:d8:ef:2f:37:
39:83:30:8a:b6:c7:b8:d8:53:35:20:e7:88:5a:49:58:6f:96:
9f:74:2c:6a:9d:ed:48:5d:0c:b6:fa:8d:90:61:fd:81:a6:2c:
ff:7c:a8:af:8e:3c:85:af:85:8c:76:4d:ae:f8:4f:5f:15:a7:
17:5f:f9:38:4e:ee:37:56:f2:43:1d:32:80:ca:d3:64:60:b4:
ff:60:ca:47:c4:81:5a:c5:c6:bf:29:2e:2c:71:65:04:e6:66:
c8:08:36:b1:4a:59:fc:59:3d:52:0e:50:74:c1:d5:c6:ec:da:
b5:b4:a7:5d:b7:c9:76:8d:e3:fa:ad:a9:55:74:38:b7:0e:8c:
76:64:14:d7:48:bd:96:fd:6a:10:42:e8:cf:fa:4f:36:f6:6b:
11:53:70:88:c9:2d:8a:33:3d:31:a6:2d:3b:f2:fd:ac:2a:7f:
87:b7:ae:2b:5c:26:f4:0c:e6:59:87:7e:3d:e1:fc:57:0d:27:
bf:8f:62:b4:bb:f5:6f:95:96:8e:c3:24:00:35:e5:c4:8d:c7:
f1:f9:b5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:29:36 2025 by rpki-client