Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/sZajNmManlPTaNoPcFuaAKck-nc.roa
File: sZajNmManlPTaNoPcFuaAKck-nc.roa (raw, json)
Hash identifier: R4UFS0zdQGwYoD2q6eTRAVpHRYbKs3X1MYzT1lIbryU=
Subject key identifier: B1:96:A3:36:63:1A:9E:53:D3:68:DA:0F:70:5B:9A:00:A7:24:FA:77
Certificate issuer: /CN=a61ada61202413cd8fca2f49742527ad021f9676
Certificate serial: 0194258EF0CDEE21B3C1B2B76598ECCFC568
Authority key identifier: A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/sZajNmManlPTaNoPcFuaAKck-nc.roa
Signing time: Thu 02 Jan 2025 05:48:32 +0000
ROA not before: Thu 02 Jan 2025 05:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395651
IP address blocks: 185.38.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/phraYSAkE82Pyi9JdCUnrQIflnY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/phraYSAkE82Pyi9JdCUnrQIflnY.mft
rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:f0:cd:ee:21:b3:c1:b2:b7:65:98:ec:cf:c5:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a61ada61202413cd8fca2f49742527ad021f9676
Validity
Not Before: Jan 2 05:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b196a336631a9e53d368da0f705b9a00a724fa77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b3:92:b6:d6:af:ea:9c:ad:9d:4b:c5:28:a0:
1e:ae:50:a6:99:66:c7:36:7e:d4:80:69:2a:ae:b4:
b0:6c:6f:d2:a8:ac:41:1a:e7:ca:d5:2e:9e:76:14:
85:3d:f5:38:ef:bc:45:24:49:a9:c4:e8:63:bf:3f:
44:8b:fd:56:8b:fa:71:93:1b:f3:66:24:ed:54:ed:
85:bf:50:0f:c8:23:76:73:8c:1b:9d:7e:6a:6d:ed:
d7:24:44:cc:01:30:3a:bf:09:d4:10:47:5a:00:44:
32:e7:0b:78:b2:25:78:f4:de:4c:ec:1d:ad:c9:bf:
be:bd:6e:c3:44:c7:44:d6:bb:5a:58:32:0c:2f:4c:
25:d2:08:fd:28:0c:b8:33:32:df:96:85:35:77:6f:
ad:c6:79:af:e2:91:95:ef:a7:61:f8:7b:31:2e:79:
a4:f6:07:18:b7:2c:50:a2:ad:a3:23:9a:1d:a5:f2:
ac:a5:3e:c1:c2:82:c1:9b:a7:1a:bd:80:7d:65:6c:
4f:c6:de:b3:94:6e:a6:2e:8f:5f:fa:87:8d:c7:ad:
d8:3e:4f:35:2e:60:48:40:06:be:6d:13:1d:54:87:
0a:fc:57:1d:cf:30:7b:82:b5:0e:5b:43:c5:67:ba:
1f:28:9d:75:d6:56:55:20:0e:14:2e:3f:79:23:86:
9a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:96:A3:36:63:1A:9E:53:D3:68:DA:0F:70:5B:9A:00:A7:24:FA:77
X509v3 Authority Key Identifier:
keyid:A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/sZajNmManlPTaNoPcFuaAKck-nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/phraYSAkE82Pyi9JdCUnrQIflnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.241.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:3f:dd:d8:a1:61:3c:46:28:59:e8:44:11:4c:de:55:8a:92:
e3:88:e6:1a:9f:36:39:b6:c6:8b:bf:e1:5f:d9:45:fe:a6:e7:
63:67:f9:f5:da:59:83:1a:b4:8c:c6:8e:fc:2f:93:fd:67:0f:
9c:f6:4b:09:0b:6a:b0:2d:94:d9:74:dd:1e:07:b1:50:06:20:
6b:1a:42:0b:93:77:40:ff:bb:6a:88:6c:10:4c:7c:09:97:71:
3f:10:62:2b:ea:89:fd:6f:9c:65:aa:98:b9:a2:6a:bd:e9:25:
2c:ac:b0:5c:b2:38:a4:50:11:26:f8:33:b4:58:ac:e8:f1:82:
fb:60:46:f5:2f:47:1a:5b:9d:17:ab:18:b7:9b:cd:97:73:a8:
4f:a3:ab:28:26:d8:4d:45:69:4d:5a:0a:f0:bc:dc:f2:ba:44:
50:c8:ff:83:1d:22:30:71:b9:fd:f8:0e:53:1b:0e:09:68:bb:
cb:37:3f:8d:c5:1e:44:b7:9e:e2:c5:a3:3a:7c:31:9c:6b:86:
9a:cc:e7:49:bb:ad:97:28:a5:00:0d:72:a6:c3:33:82:a0:b8:
31:9f:cf:c4:99:e5:48:fa:13:e3:56:a6:02:2c:7d:41:07:72:
99:19:5f:e9:0b:dd:0b:88:6c:2f:e9:60:46:bf:8f:93:23:7c:
cc:4b:93:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 06:55:49 2025 by rpki-client