Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/360a9d-b121-45ae-830d-066b63237d85/1/5j4kigVKwcUINFkbJ3xSgMqflUw.roa
File: 5j4kigVKwcUINFkbJ3xSgMqflUw.roa (raw, json)
Hash identifier: kVxN2YetN80jXaobnulfC7lyMJ7WxoaWB7joRYX4FHo=
Subject key identifier: E6:3E:24:8A:05:4A:C1:C5:08:34:59:1B:27:7C:52:80:CA:9F:95:4C
Certificate issuer: /CN=73189d26bae7f85cb4e06ab5ab536de5a80c16a1
Certificate serial: 019423D7C3AB2652CEF52E31B34A47A23EE9
Authority key identifier: 73:18:9D:26:BA:E7:F8:5C:B4:E0:6A:B5:AB:53:6D:E5:A8:0C:16:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxidJrrn-Fy04Gq1q1Nt5agMFqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/360a9d-b121-45ae-830d-066b63237d85/1/5j4kigVKwcUINFkbJ3xSgMqflUw.roa
Signing time: Wed 01 Jan 2025 21:48:50 +0000
ROA not before: Wed 01 Jan 2025 21:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60876
IP address blocks: 185.166.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/360a9d-b121-45ae-830d-066b63237d85/1/cxidJrrn-Fy04Gq1q1Nt5agMFqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/360a9d-b121-45ae-830d-066b63237d85/1/cxidJrrn-Fy04Gq1q1Nt5agMFqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cxidJrrn-Fy04Gq1q1Nt5agMFqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 13:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:c3:ab:26:52:ce:f5:2e:31:b3:4a:47:a2:3e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73189d26bae7f85cb4e06ab5ab536de5a80c16a1
Validity
Not Before: Jan 1 21:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e63e248a054ac1c50834591b277c5280ca9f954c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3c:8b:a1:1b:3d:97:0e:8c:ae:61:e0:9b:f7:
5a:cf:9b:e5:98:60:24:48:7b:3a:04:8a:21:8f:46:
44:17:b4:71:9d:e5:5a:5f:c7:38:17:0b:a4:0e:4c:
35:fa:0b:74:c2:91:a0:05:fc:df:0e:a6:35:96:5a:
ce:49:95:19:96:56:eb:dc:8e:8a:52:c8:46:88:6d:
a5:7b:9f:db:9b:1e:3d:88:7f:d5:6e:82:a8:7c:a0:
6b:76:87:e0:57:ef:0d:64:bc:f5:c8:d6:f8:0b:eb:
f4:ad:45:5f:b3:de:d8:9b:5b:7f:28:dd:9f:ca:87:
4d:99:99:9f:b5:1b:c2:e7:42:58:8f:cc:49:a9:bc:
cc:40:f5:55:c2:ac:47:df:2d:e8:a2:24:a6:dd:f9:
47:04:96:4a:87:76:86:fb:af:1d:4e:8c:ec:eb:f9:
aa:94:28:0a:9a:af:87:f4:cb:83:66:72:7a:cb:30:
2f:f9:5f:ce:7c:6f:ad:7d:c5:ef:bb:0d:f2:a6:9a:
dc:f7:80:af:c0:89:4d:e8:1b:ff:93:14:e1:2c:b0:
6c:1f:50:c2:19:e9:8b:02:a9:55:8b:4e:a1:69:3b:
13:79:d6:18:ea:0c:70:fe:41:e5:89:fc:f2:77:bb:
c9:9f:60:94:3d:64:ea:f0:ac:b0:18:2c:2f:4d:22:
00:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3E:24:8A:05:4A:C1:C5:08:34:59:1B:27:7C:52:80:CA:9F:95:4C
X509v3 Authority Key Identifier:
keyid:73:18:9D:26:BA:E7:F8:5C:B4:E0:6A:B5:AB:53:6D:E5:A8:0C:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxidJrrn-Fy04Gq1q1Nt5agMFqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/360a9d-b121-45ae-830d-066b63237d85/1/5j4kigVKwcUINFkbJ3xSgMqflUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/360a9d-b121-45ae-830d-066b63237d85/1/cxidJrrn-Fy04Gq1q1Nt5agMFqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.120.0/22
Signature Algorithm: sha256WithRSAEncryption
74:bf:71:af:99:f2:09:43:6d:54:ff:30:a1:c1:1e:6b:ba:f2:
05:21:fb:f1:bf:7a:2d:d3:e1:ec:7b:81:12:19:02:d7:4a:dc:
f6:a9:3a:a7:4c:98:d6:c2:dd:ce:2e:14:4d:02:dc:f0:77:73:
80:90:8a:3e:92:a2:32:25:61:dd:02:a8:3a:65:ee:09:36:9d:
d1:bc:39:03:df:98:41:95:a5:67:f3:e1:2b:40:8b:39:26:a6:
d4:7a:e9:1a:b6:3b:9e:f2:22:25:04:6d:34:b2:41:c8:9c:94:
20:63:d5:5e:bb:d1:c6:56:51:9b:42:78:de:b3:a1:72:cf:3a:
f6:1c:7e:15:b7:28:f9:1f:b5:19:65:e3:4b:57:ba:05:7e:12:
0b:f6:4a:8a:71:9c:02:fe:4f:6e:0f:24:ab:c3:3b:f5:a8:b2:
67:5e:7d:b8:35:4f:de:b2:39:53:8a:54:5b:01:54:73:e4:ad:
62:30:29:88:90:40:61:03:02:ca:89:63:1f:72:29:fa:92:63:
9c:be:bd:3a:92:f9:02:3b:2f:0f:00:b9:a5:95:9a:54:da:24:
09:da:49:ce:8b:f6:d1:78:c5:33:85:7d:e1:dc:59:7a:03:c6:
a7:8a:b4:dc:fc:38:6a:92:ad:18:e1:19:6e:a4:87:af:65:17:
5e:a1:78:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:43:50 2025 by rpki-client