Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c7156a-8feb-439e-a88f-086c4ea1d8ca/1/w22fMY9NDCCcG4e2_IUcNQ_Kq9Q.roa
File: w22fMY9NDCCcG4e2_IUcNQ_Kq9Q.roa (raw, json)
Hash identifier: pqPEuP/XkZYkW0RjNxblrG+NfoIqGAgVKY/Jqk/oP3M=
Subject key identifier: C3:6D:9F:31:8F:4D:0C:20:9C:1B:87:B6:FC:85:1C:35:0F:CA:AB:D4
Certificate issuer: /CN=305d78d2075c7820979d7ba50d25b1427b67d456
Certificate serial: 019425FDDA05F26C65EBC3CCB3F70CA3B5A7
Authority key identifier: 30:5D:78:D2:07:5C:78:20:97:9D:7B:A5:0D:25:B1:42:7B:67:D4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MF140gdceCCXnXulDSWxQntn1FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c7156a-8feb-439e-a88f-086c4ea1d8ca/1/w22fMY9NDCCcG4e2_IUcNQ_Kq9Q.roa
Signing time: Thu 02 Jan 2025 07:49:40 +0000
ROA not before: Thu 02 Jan 2025 07:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204819
IP address blocks: 185.69.64.0/22 maxlen: 22
2a05:2080::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/c7156a-8feb-439e-a88f-086c4ea1d8ca/1/MF140gdceCCXnXulDSWxQntn1FY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/c7156a-8feb-439e-a88f-086c4ea1d8ca/1/MF140gdceCCXnXulDSWxQntn1FY.mft
rsync://rpki.ripe.net/repository/DEFAULT/MF140gdceCCXnXulDSWxQntn1FY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:da:05:f2:6c:65:eb:c3:cc:b3:f7:0c:a3:b5:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305d78d2075c7820979d7ba50d25b1427b67d456
Validity
Not Before: Jan 2 07:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c36d9f318f4d0c209c1b87b6fc851c350fcaabd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e3:06:35:d8:6a:a2:9f:61:c5:d9:9f:05:24:
69:d5:a3:cd:6c:eb:08:95:ce:88:1b:5f:59:13:92:
23:54:78:58:bd:23:33:64:e7:d3:c9:5b:e9:92:26:
04:2a:04:d6:7d:da:64:4b:fe:6e:d2:7f:dc:77:5a:
85:13:2e:ce:79:cb:5d:98:1a:ab:a3:2b:26:f1:41:
51:7b:9b:a6:b7:2e:ee:a9:8f:f1:00:c9:c2:95:6c:
d7:51:2e:9b:aa:0d:b6:9e:c4:06:78:32:1e:ee:ce:
65:ce:6d:aa:9f:bc:bb:79:a7:29:cd:bd:b3:2b:5d:
66:4b:d5:fb:ac:2f:9c:1a:04:a6:29:33:7e:d8:51:
e3:20:69:20:13:94:89:42:9b:b7:60:4c:ad:11:07:
7e:4b:62:07:b4:1a:83:2c:db:99:99:90:16:a6:56:
7a:6f:54:ef:3c:1d:22:ef:94:6b:7f:ec:78:62:a9:
e2:81:73:b4:bd:f4:d0:21:be:5c:bc:8f:e3:2f:7e:
76:17:58:ac:4e:63:6b:d1:4c:37:dd:19:26:8b:b7:
a1:ab:2d:c7:98:e6:65:7c:ff:14:f8:43:cb:0b:1f:
b3:69:66:26:01:0d:23:f2:a9:0d:00:6d:c8:9a:b1:
40:f5:4b:d6:cc:d4:b4:09:db:c0:50:60:77:ad:46:
27:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6D:9F:31:8F:4D:0C:20:9C:1B:87:B6:FC:85:1C:35:0F:CA:AB:D4
X509v3 Authority Key Identifier:
keyid:30:5D:78:D2:07:5C:78:20:97:9D:7B:A5:0D:25:B1:42:7B:67:D4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MF140gdceCCXnXulDSWxQntn1FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c7156a-8feb-439e-a88f-086c4ea1d8ca/1/w22fMY9NDCCcG4e2_IUcNQ_Kq9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c7156a-8feb-439e-a88f-086c4ea1d8ca/1/MF140gdceCCXnXulDSWxQntn1FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.64.0/22
IPv6:
2a05:2080::/29
Signature Algorithm: sha256WithRSAEncryption
3b:71:51:f3:d5:a3:a0:10:e6:c7:6f:95:cf:28:db:03:46:ce:
ea:48:10:b4:6f:54:b8:a8:7c:b6:bb:9c:4a:5e:ce:23:fd:d2:
5d:c6:73:8b:4f:ef:19:41:44:a4:0a:06:9c:94:72:50:6e:2b:
be:80:20:09:0c:42:b5:a8:8d:7e:dc:8d:9f:68:fc:33:74:d5:
c1:20:4d:5f:7d:ea:94:67:b7:39:08:51:0a:45:e9:66:55:0f:
35:cb:bb:f8:30:61:55:d6:b9:65:52:e1:62:07:f8:ab:c4:8e:
01:6d:2c:b3:f7:ad:b5:cd:a1:b8:73:7c:a7:50:ed:ee:eb:48:
e1:87:cd:52:b2:79:fa:af:1f:9e:1b:22:79:15:7f:fd:07:38:
59:01:4b:19:fd:ad:01:59:cb:c8:f1:65:7c:51:9f:68:41:a8:
55:31:33:90:ed:50:5a:04:3d:66:6e:ad:6b:7b:5b:68:75:13:
1b:ab:45:ab:de:24:e7:49:8f:e3:2f:f9:a8:21:75:43:c4:ba:
7f:f4:ea:9b:93:c7:20:f6:9b:a4:fe:53:33:65:d7:2d:b3:5c:
67:80:9e:2e:f6:d6:72:bd:81:ef:f0:10:16:42:9a:d0:32:13:
e2:9b:b9:33:1c:8b:10:82:de:42:a9:07:a0:60:32:b9:3e:e1:
57:59:19:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:01 2025 by rpki-client