Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/IP6dxUf_151oN-w_YJNTEK8gFBY.roa
File: IP6dxUf_151oN-w_YJNTEK8gFBY.roa (raw, json)
Hash identifier: DuBNN+Dmeyf3QMZYAuCqpfhCledEl++glFpZz6IL1T4=
Subject key identifier: 20:FE:9D:C5:47:FF:D7:9D:68:37:EC:3F:60:93:53:10:AF:20:14:16
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 0194236989430242B4BAEB7DA92A198A8792
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/IP6dxUf_151oN-w_YJNTEK8gFBY.roa
Signing time: Wed 01 Jan 2025 19:48:26 +0000
ROA not before: Wed 01 Jan 2025 19:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199015
IP address blocks: 2a01:190:39::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 22:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:89:43:02:42:b4:ba:eb:7d:a9:2a:19:8a:87:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 19:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=20fe9dc547ffd79d6837ec3f60935310af201416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:18:6b:d0:cc:cb:9e:00:ec:2b:75:b4:ef:e6:
33:66:a5:3f:ce:77:54:f6:80:cc:4d:72:e7:e0:c4:
56:da:16:b0:20:d4:ed:db:59:8e:b2:b2:bc:24:79:
b2:6c:20:99:8f:d8:3c:74:46:8d:75:ee:41:97:b9:
a7:6d:1a:c2:ea:62:17:3a:f0:a8:53:70:d5:73:70:
90:97:3e:eb:a5:9f:73:83:b7:a0:2c:f4:88:a2:a5:
f8:2a:cb:6b:d1:5a:e4:4c:5f:39:ae:bd:d5:89:3d:
e8:09:cc:89:89:4f:9b:d2:f5:e1:01:5c:c1:9e:13:
37:c2:4f:6e:a2:7d:ec:1e:f7:21:12:55:3d:df:7b:
cf:2d:af:c5:e0:a8:7f:5b:8b:36:18:f7:ee:1e:8a:
9e:c8:49:2f:6f:5e:84:8d:d2:74:aa:cc:21:d2:5f:
a5:b9:00:b8:00:37:b3:73:91:53:30:f2:11:69:cd:
7d:3a:15:8b:fc:a0:e3:27:9a:f7:5f:41:73:93:86:
9b:a0:8a:30:a1:98:48:87:ca:c1:56:20:ea:88:94:
08:02:d4:99:7d:87:fd:de:18:2a:05:1e:0c:fb:0c:
30:1f:c9:ec:8d:5f:58:11:54:e2:5f:24:f3:fe:a3:
ed:9e:47:43:c3:21:dd:bc:3d:97:89:f1:10:8c:7a:
54:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FE:9D:C5:47:FF:D7:9D:68:37:EC:3F:60:93:53:10:AF:20:14:16
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/IP6dxUf_151oN-w_YJNTEK8gFBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:39::/48
Signature Algorithm: sha256WithRSAEncryption
04:c6:dd:13:bf:92:73:d9:9e:4e:21:4f:19:52:fd:80:f9:fa:
ae:64:e6:fd:6c:23:27:bd:e5:de:fb:b2:4e:43:ec:7e:41:46:
58:d1:d3:f9:18:b9:1b:0c:1b:18:a6:bd:f5:89:83:d8:3a:53:
4c:ee:94:55:95:7e:4b:5a:b2:26:de:94:7a:35:ce:6d:e3:70:
32:53:03:ed:e4:2c:e9:1d:b6:7b:65:ba:84:0b:24:4f:e2:3a:
3f:67:06:ec:8b:0e:1e:a9:28:25:b8:70:f3:69:d4:1b:d6:a9:
48:2a:83:38:fa:e6:c4:fa:d9:75:2e:10:64:68:6a:b0:db:b2:
d4:8f:cc:2a:46:79:d6:6c:fc:ab:3f:61:b3:6f:bd:c6:72:66:
93:53:14:52:8d:89:a7:90:96:ef:15:29:d3:6a:e2:47:89:bd:
e4:d8:f4:78:e9:35:ea:eb:1b:0f:e9:4b:b4:3d:47:c6:7a:7a:
ba:ba:e3:19:b8:c4:5f:8d:af:d4:e6:37:16:6d:cd:7c:be:71:
bf:33:c1:65:3f:27:07:d0:29:7a:02:81:9e:a9:4b:6d:e1:78:
4b:66:9c:b6:c7:54:16:df:70:ac:e8:5a:a0:de:6f:29:fe:f3:
4e:3d:4c:69:f6:7f:6d:e8:df:0e:cd:b0:3e:70:19:3c:67:9c:
bb:c5:31:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:55:39 2025 by rpki-client