Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/4sWj8i7vRryJSCNDCbfEp1hlcTg.roa
File: 4sWj8i7vRryJSCNDCbfEp1hlcTg.roa (raw, json)
Hash identifier: vNPNBYN1nUhed4j+PRjHE75t7GtK+pbCWaOwWZ1P5Dk=
Subject key identifier: E2:C5:A3:F2:2E:EF:46:BC:89:48:23:43:09:B7:C4:A7:58:65:71:38
Certificate issuer: /CN=8bfca7c96e804505a48b99603d9b2124f1dd3702
Certificate serial: 019428231EBDA2CE569F6D6FB75F5EF9ACF8
Authority key identifier: 8B:FC:A7:C9:6E:80:45:05:A4:8B:99:60:3D:9B:21:24:F1:DD:37:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i_ynyW6ARQWki5lgPZshJPHdNwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/4sWj8i7vRryJSCNDCbfEp1hlcTg.roa
Signing time: Thu 02 Jan 2025 17:49:37 +0000
ROA not before: Thu 02 Jan 2025 17:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 195.182.218.0/23 maxlen: 32
2001:7f8:42::/48 maxlen: 128
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/i_ynyW6ARQWki5lgPZshJPHdNwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/i_ynyW6ARQWki5lgPZshJPHdNwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i_ynyW6ARQWki5lgPZshJPHdNwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:1e:bd:a2:ce:56:9f:6d:6f:b7:5f:5e:f9:ac:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bfca7c96e804505a48b99603d9b2124f1dd3702
Validity
Not Before: Jan 2 17:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e2c5a3f22eef46bc8948234309b7c4a758657138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5a:8c:8c:fb:b6:50:e9:c7:bd:00:e9:b9:f1:
2a:8d:b7:ac:15:3d:3d:85:fc:93:3c:57:4c:62:a0:
c6:2c:84:4f:1f:8f:f0:26:90:da:1d:ed:92:06:0b:
a2:65:db:71:bc:51:e4:6e:bc:ed:41:8b:db:34:ef:
58:6c:42:35:63:63:16:27:c2:9e:d3:cd:08:ff:2d:
e8:74:04:d7:e7:49:4c:53:57:1a:e9:31:4c:20:7c:
3e:aa:d1:24:fd:76:1f:f8:8b:5a:4b:4e:40:92:ff:
c5:c8:f9:a8:70:0e:47:23:ab:83:c6:38:be:21:06:
c1:1c:25:e7:68:86:95:54:7c:70:99:40:89:69:60:
28:3a:39:f0:ca:06:7b:51:86:82:dd:79:07:ae:13:
14:31:c1:43:8d:dc:ce:44:4c:53:cd:68:3a:ba:19:
2a:9b:da:0a:24:66:b0:5f:8c:4b:3b:2d:64:37:54:
e9:3c:7f:d6:36:bf:20:55:f7:ee:5f:c9:de:9d:43:
e9:23:d1:5d:cc:d0:af:40:3b:1b:15:e4:0a:e6:0e:
6e:b9:a5:5a:88:dc:dc:9f:df:b1:c8:d5:db:a2:aa:
e9:01:f3:2f:72:50:55:80:46:fe:dc:d2:a5:ce:da:
23:18:e5:11:34:37:03:f1:fc:4e:68:bd:a1:9e:86:
4a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C5:A3:F2:2E:EF:46:BC:89:48:23:43:09:B7:C4:A7:58:65:71:38
X509v3 Authority Key Identifier:
keyid:8B:FC:A7:C9:6E:80:45:05:A4:8B:99:60:3D:9B:21:24:F1:DD:37:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i_ynyW6ARQWki5lgPZshJPHdNwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/4sWj8i7vRryJSCNDCbfEp1hlcTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/i_ynyW6ARQWki5lgPZshJPHdNwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.182.218.0/23
IPv6:
2001:7f8:42::/48
Signature Algorithm: sha256WithRSAEncryption
47:f4:58:1e:21:3a:48:76:0c:40:e4:bc:a4:f2:5e:10:d6:fc:
df:0d:48:f3:0f:2a:f3:a1:dd:bb:4c:10:c3:10:8c:e5:b0:f3:
66:07:2d:b3:8d:af:5c:a4:58:f9:bf:94:f4:a1:af:65:f6:5e:
11:58:47:04:c6:c8:16:66:1f:7a:76:3a:b5:fb:1a:d2:1a:9d:
48:a3:a9:63:42:b4:51:f1:89:ae:40:a6:68:fb:35:c0:45:1a:
b6:57:be:ff:32:4b:33:69:f0:6e:27:f7:1d:d1:83:f6:62:82:
a8:8e:fc:72:1f:84:01:40:c5:09:f2:cb:55:f2:d4:0d:36:9a:
ea:43:4f:91:97:6a:75:8d:d7:7f:af:f6:c9:ec:e7:6f:8a:db:
cb:05:99:f0:0e:9d:77:44:63:59:78:db:57:e1:06:0d:f5:06:
ad:1b:92:c1:a7:92:e2:23:32:c5:71:b9:3f:05:9c:19:6e:dc:
b2:ed:df:6f:61:32:fc:d7:20:b5:fe:b1:ad:ed:96:da:43:d4:
c5:9b:d1:e6:88:35:35:0a:2e:87:6b:e1:60:34:d5:20:24:0b:
ad:b5:42:27:92:e5:90:7e:09:6a:25:10:ea:e9:1f:36:b2:ef:
33:56:d6:49:f8:18:a8:6a:ba:c8:be:a5:a7:e0:83:7a:d8:7f:
a3:e1:e3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:58 2025 by rpki-client