Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/B3ZVVduO-XEeJJT5EOMOysoNJrI.roa
File: B3ZVVduO-XEeJJT5EOMOysoNJrI.roa (raw, json)
Hash identifier: hGLOqNOpZ+B1pvsSFo3MX/h7GOvVIRzBnRvB+fSCcjA=
Subject key identifier: 07:76:55:55:DB:8E:F9:71:1E:24:94:F9:10:E3:0E:CA:CA:0D:26:B2
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 01942369846C0C7E6AE01340FCF8CD2ACD12
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/B3ZVVduO-XEeJJT5EOMOysoNJrI.roa
Signing time: Wed 01 Jan 2025 19:48:25 +0000
ROA not before: Wed 01 Jan 2025 19:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16099
IP address blocks: 2a01:190:15ed::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 00:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:84:6c:0c:7e:6a:e0:13:40:fc:f8:cd:2a:cd:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 19:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07765555db8ef9711e2494f910e30ecaca0d26b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ca:6c:71:33:a0:b1:a0:91:3a:9d:a4:74:36:
a4:f4:26:1e:e8:59:99:d5:04:2d:c3:29:48:d4:ae:
63:08:3e:c9:8f:78:bf:44:6e:3a:2e:19:72:0e:98:
90:a4:ae:43:f8:05:9d:13:28:a4:77:34:5b:24:45:
67:eb:44:2d:05:45:8b:f2:06:9f:35:15:56:d5:46:
57:29:1e:c1:dc:79:63:07:57:33:08:3a:22:a7:65:
a2:4b:cf:ce:12:1f:c0:a3:40:63:77:f3:a0:60:a9:
f2:c8:c8:28:11:09:36:a0:93:2c:31:9c:94:a9:1b:
33:9d:41:15:d6:0c:6a:96:85:56:2c:05:2b:19:8a:
f1:97:4f:66:79:b8:fc:65:51:e9:1d:29:95:36:04:
64:b7:06:56:84:3a:39:69:81:9f:69:21:6a:dd:f2:
6a:0e:cf:69:7c:3a:2f:ba:1f:85:0a:85:1a:6e:9c:
7b:8f:11:36:c4:ff:6d:e7:52:36:f6:cb:e2:67:34:
be:8c:6d:21:9f:e0:cf:da:86:49:c2:18:00:bb:1c:
eb:b3:39:5e:29:cf:91:7b:50:73:ae:d7:84:b9:fb:
24:5b:ea:20:b0:d1:c0:fd:cb:9b:8a:3f:8a:d2:16:
41:e5:b6:e8:0d:21:4a:74:9c:9e:a4:4b:31:b3:51:
94:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:76:55:55:DB:8E:F9:71:1E:24:94:F9:10:E3:0E:CA:CA:0D:26:B2
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/B3ZVVduO-XEeJJT5EOMOysoNJrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:15ed::/48
Signature Algorithm: sha256WithRSAEncryption
9b:74:e5:2d:78:81:ea:17:3d:3e:c5:3b:93:92:b2:c4:e6:0a:
cb:db:95:50:63:bf:61:72:c4:cc:23:c0:08:37:91:0a:a2:74:
58:62:ba:74:6b:93:0f:a1:55:42:2e:56:11:75:f1:c3:cb:54:
15:92:57:95:e0:c2:ba:17:2c:5c:9a:05:cd:fc:0f:5c:ac:29:
72:61:62:2c:36:87:07:d0:3e:f6:9b:c9:a3:96:30:ff:ac:ac:
aa:2d:f2:53:4f:98:1f:c1:ad:bc:10:ae:49:4a:ed:d1:64:a0:
63:26:0a:7f:7b:1c:99:9d:d7:c2:08:e4:a9:30:2c:4c:70:b4:
42:46:d8:5f:87:d3:95:b8:d2:02:09:0b:93:ad:2d:f5:1e:1a:
e3:5b:eb:e5:f4:e7:ff:fe:d5:cb:96:12:19:76:68:d1:44:4d:
17:27:36:53:ca:a9:f6:29:b1:e1:f0:6e:32:b3:5c:a1:e9:27:
a7:fe:96:95:38:d9:09:71:ec:5d:fe:a2:60:40:8d:1c:fc:34:
b3:16:3a:a6:1b:c1:46:1b:62:eb:4f:2f:59:52:1a:e2:b8:59:
03:29:29:da:7e:1c:32:4f:f6:94:e4:a5:26:d0:90:a8:4c:22:
9a:ac:89:a3:13:bb:ae:e0:fa:1c:58:c1:2c:d2:81:81:45:c3:
60:4e:f6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 10:41:58 2025 by rpki-client