Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/77pFQYmLGFFV08L576oEHW3GDp0.roa
File: 77pFQYmLGFFV08L576oEHW3GDp0.roa (raw, json)
Hash identifier: w0kLGHk3jpcfZ/BQP6p+01FDOOb/LMYSuRYLEGuQI/g=
Subject key identifier: EF:BA:45:41:89:8B:18:51:55:D3:C2:F9:EF:AA:04:1D:6D:C6:0E:9D
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 0194266B60C02C9F11F624CFBC9B626E8506
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/77pFQYmLGFFV08L576oEHW3GDp0.roa
Signing time: Thu 02 Jan 2025 09:49:18 +0000
ROA not before: Thu 02 Jan 2025 09:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198814
IP address blocks: 2a02:17a6::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:60:c0:2c:9f:11:f6:24:cf:bc:9b:62:6e:85:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Jan 2 09:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=efba4541898b185155d3c2f9efaa041d6dc60e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f6:f8:4e:88:dc:1f:3f:2a:cf:04:04:3e:6c:
a6:8f:7c:07:67:97:a8:48:fa:b7:c7:ee:a9:46:c4:
2b:4d:5f:90:b9:4e:83:0f:fb:32:84:48:70:bd:9d:
af:6b:31:82:c3:98:48:1a:52:c5:0c:32:86:dc:b2:
0e:86:1f:4e:5f:27:07:8a:40:56:25:1c:0f:04:fa:
af:70:8f:7e:bd:d0:38:14:00:af:88:0e:43:bd:83:
e3:ab:9c:43:4a:a8:fe:a7:64:46:70:08:07:a6:2c:
ed:1f:55:cd:0f:93:8b:49:6c:f4:23:61:c8:ed:04:
26:a2:48:8d:54:13:56:82:20:e5:24:30:a0:94:fb:
7e:45:a0:8d:14:84:e1:4b:67:0e:d5:3e:2a:f4:de:
fa:4a:cf:4a:cf:f4:c5:2e:32:51:f5:b9:46:ee:71:
0f:f0:85:21:5a:cf:fe:d4:c9:6b:45:d2:39:8a:5c:
77:a2:8f:8b:d7:c7:df:8d:4a:fc:bc:1b:7a:21:68:
2d:ec:10:d5:1f:78:b2:68:ef:f5:30:fd:f3:1d:54:
65:51:ea:9e:2b:43:3d:22:c7:28:0f:a2:67:64:89:
f8:b4:72:75:d6:00:a2:15:f5:eb:40:da:53:f1:a0:
b6:6a:24:c6:95:c9:21:50:78:09:0f:72:c7:c7:f1:
ca:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BA:45:41:89:8B:18:51:55:D3:C2:F9:EF:AA:04:1D:6D:C6:0E:9D
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/77pFQYmLGFFV08L576oEHW3GDp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:17a6::/32
Signature Algorithm: sha256WithRSAEncryption
4f:60:e4:10:35:fa:cd:a7:cb:89:10:b3:51:93:d7:f0:cd:b9:
9a:17:24:98:0b:2a:f9:3c:79:fc:66:69:46:9d:05:69:e6:2d:
61:83:6d:e7:3c:b7:db:e5:e4:2b:9a:84:f3:bc:71:b6:2a:d4:
8f:de:b7:39:48:ad:61:03:c9:1b:2a:61:06:fe:e4:a3:e1:33:
10:ed:e2:7b:47:d1:d4:11:24:fb:bf:7d:0f:29:5e:a5:18:a5:
ff:4d:d7:a4:cb:0d:a4:96:a3:8a:94:21:c3:18:74:9a:28:31:
3c:d6:2f:8b:49:c2:56:6d:3c:90:81:85:39:b4:5e:4e:de:df:
4d:7c:a3:24:22:b7:6b:61:cf:25:f4:56:2a:1d:6e:81:d7:f5:
8e:9e:b6:fc:f3:43:4d:0b:f0:61:cb:41:ce:dc:ef:dc:3d:32:
94:75:ba:de:8c:19:61:a5:5a:49:72:5f:e5:a9:47:ce:2c:bb:
27:76:52:89:e9:16:6d:e1:d8:5f:42:ef:89:2c:3c:ce:5e:fa:
04:22:84:38:f7:4b:14:25:b5:ed:e0:da:33:80:f7:5d:d4:21:
2d:af:67:3f:f5:be:b3:55:40:ad:0a:cc:37:07:75:aa:52:d0:
f3:96:fb:45:d4:da:7c:70:95:f6:68:c1:02:5d:33:44:fd:90:
ae:5e:76:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:22 2025 by rpki-client