Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/50a7da-162b-4bde-b0c4-5e2d6070ef83/1/DgOZwnFO8AhdHBgLmgcNwBsxDAc.roa
File: DgOZwnFO8AhdHBgLmgcNwBsxDAc.roa (raw, json)
Hash identifier: h4KsWMGXdyj/8wNpX8sYIR4JqIdgBrnn4TPvXbnDMpw=
Subject key identifier: 0E:03:99:C2:71:4E:F0:08:5D:1C:18:0B:9A:07:0D:C0:1B:31:0C:07
Certificate issuer: /CN=13fe9bcebae228b36c883c27ea5518e704c10991
Certificate serial: 019420D65F646EE148B169FBBB72470C9913
Authority key identifier: 13:FE:9B:CE:BA:E2:28:B3:6C:88:3C:27:EA:55:18:E7:04:C1:09:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_6bzrriKLNsiDwn6lUY5wTBCZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/50a7da-162b-4bde-b0c4-5e2d6070ef83/1/DgOZwnFO8AhdHBgLmgcNwBsxDAc.roa
Signing time: Wed 01 Jan 2025 07:48:27 +0000
ROA not before: Wed 01 Jan 2025 07:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213887
IP address blocks: 94.141.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/50a7da-162b-4bde-b0c4-5e2d6070ef83/1/E_6bzrriKLNsiDwn6lUY5wTBCZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/50a7da-162b-4bde-b0c4-5e2d6070ef83/1/E_6bzrriKLNsiDwn6lUY5wTBCZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/E_6bzrriKLNsiDwn6lUY5wTBCZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:5f:64:6e:e1:48:b1:69:fb:bb:72:47:0c:99:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13fe9bcebae228b36c883c27ea5518e704c10991
Validity
Not Before: Jan 1 07:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e0399c2714ef0085d1c180b9a070dc01b310c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:13:cf:b6:59:97:9b:65:1e:da:12:a1:55:b8:
c9:70:f7:f9:07:c1:e7:e3:44:90:46:31:1e:22:1e:
da:0e:77:67:ad:e0:49:7e:73:80:16:e7:77:c7:47:
06:4b:07:22:17:46:9f:d1:12:7e:ee:06:b9:02:20:
73:1f:67:2e:8c:43:94:df:5c:4a:a0:0c:69:ae:d2:
56:27:a4:03:0c:7a:6b:f9:52:0e:db:9d:89:c0:86:
fe:f4:a0:70:57:32:a7:43:1f:a5:6f:90:e0:77:28:
ff:06:98:b7:50:1e:5c:bd:1a:ac:19:1e:7a:d6:b3:
e3:14:5a:44:7a:2f:10:ec:d0:69:c3:b6:4e:43:5d:
29:78:22:c2:b4:81:71:8d:c7:e3:3e:1a:a7:fa:9f:
ba:a9:cc:be:05:89:d4:7c:13:bd:ec:85:8c:34:5e:
77:d8:a6:d0:d9:4f:9b:a6:4e:d8:42:b9:68:ef:6c:
b2:88:cd:bd:c9:55:6c:50:f3:97:5b:c3:24:7a:f4:
08:c9:65:96:16:59:4f:ed:01:8c:b9:9a:e9:88:84:
82:68:7d:85:4d:24:f0:b0:eb:e2:3b:73:1c:02:10:
5f:e8:ce:3a:9d:58:e2:5b:5c:29:5c:b5:a0:82:76:
f9:1b:c9:18:7d:30:b1:65:14:d7:78:d5:1f:d0:2d:
3c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:03:99:C2:71:4E:F0:08:5D:1C:18:0B:9A:07:0D:C0:1B:31:0C:07
X509v3 Authority Key Identifier:
keyid:13:FE:9B:CE:BA:E2:28:B3:6C:88:3C:27:EA:55:18:E7:04:C1:09:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_6bzrriKLNsiDwn6lUY5wTBCZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/50a7da-162b-4bde-b0c4-5e2d6070ef83/1/DgOZwnFO8AhdHBgLmgcNwBsxDAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/50a7da-162b-4bde-b0c4-5e2d6070ef83/1/E_6bzrriKLNsiDwn6lUY5wTBCZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.141.123.0/24
Signature Algorithm: sha256WithRSAEncryption
04:67:59:2f:2c:a8:03:1f:27:de:90:c6:7e:2e:e2:e5:91:a2:
a0:54:ac:e9:36:67:c1:fe:e9:6f:c2:30:53:17:1b:c3:b1:ed:
7d:33:97:ac:32:94:87:7f:04:e5:67:a2:6c:84:04:55:67:a3:
37:95:e0:dd:74:8c:bb:be:09:ed:f7:ea:2b:85:27:01:b6:ff:
c3:fd:46:05:f1:5e:2f:07:32:25:51:97:3c:1a:ed:45:f9:9a:
4b:ae:13:cf:1f:79:33:84:01:ce:21:f2:ca:1f:7b:7f:7f:49:
67:ed:2a:ec:71:c3:36:5e:2c:b4:d9:8e:14:d6:2c:77:04:13:
75:1b:f8:a8:af:10:1b:81:84:79:f8:47:ed:6a:47:b6:67:fc:
35:58:dd:06:2a:0e:52:e4:e5:54:48:76:a3:9e:11:9d:21:3d:
be:0a:ed:c0:e0:4b:78:8a:3e:b6:64:9c:92:0e:e8:c6:f4:1e:
82:0c:e8:1c:14:bd:41:9b:5a:77:1c:81:31:f3:86:55:a3:c6:
03:a5:13:d3:2e:10:06:77:70:b5:7a:74:db:b8:31:6f:c2:15:
0a:c7:1c:f7:7a:a7:bb:ab:59:67:22:bb:c6:d3:60:bc:45:6e:
53:1d:da:73:5f:93:0f:ab:af:99:1b:3e:42:f3:da:87:5c:99:
1d:4c:f1:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1l9kbuFIsWn7u3JHDJkTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzZmU5YmNlYmFlMjI4YjM2Yzg4M2MyN2VhNTUxOGU3MDRj
MTA5OTEwHhcNMjUwMTAxMDc0ODI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTAzOTljMjcxNGVmMDA4NWQxYzE4MGI5YTA3MGRjMDFiMzEwYzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhPPtlmXm2Ue2hKhVbjJcPf5B8Hn
40SQRjEeIh7aDndnreBJfnOAFud3x0cGSwciF0af0RJ+7ga5AiBzH2cujEOU31xK
oAxprtJWJ6QDDHpr+VIO252JwIb+9KBwVzKnQx+lb5Dgdyj/Bpi3UB5cvRqsGR56
1rPjFFpEei8Q7NBpw7ZOQ10peCLCtIFxjcfjPhqn+p+6qcy+BYnUfBO97IWMNF53
2KbQ2U+bpk7YQrlo72yyiM29yVVsUPOXW8MkevQIyWWWFllP7QGMuZrpiISCaH2F
TSTwsOviO3McAhBf6M46nVjiW1wpXLWggnb5G8kYfTCxZRTXeNUf0C08qwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA4DmcJxTvAIXRwYC5oHDcAbMQwHMB8GA1UdIwQY
MBaAFBP+m8664iizbIg8J+pVGOcEwQmRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRV82YnpycmlLTE5zaUR3bjZsVVk1d1RCQ1pFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81MGE3ZGEtMTYyYi00YmRlLWIwYzQt
NWUyZDYwNzBlZjgzLzEvRGdPWnduRk84QWhkSEJnTG1nY053QnN4REFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS81MGE3ZGEtMTYyYi00YmRlLWIwYzQtNWUyZDYwNzBlZjgz
LzEvRV82YnpycmlLTE5zaUR3bjZsVVk1d1RCQ1pFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXo17MA0G
CSqGSIb3DQEBCwUAA4IBAQAEZ1kvLKgDHyfekMZ+LuLlkaKgVKzpNmfB/ulvwjBT
FxvDse19M5esMpSHfwTlZ6JshARVZ6M3leDddIy7vgnt9+orhScBtv/D/UYF8V4v
BzIlUZc8Gu1F+ZpLrhPPH3kzhAHOIfLKH3t/f0ln7SrsccM2Xiy02Y4U1ix3BBN1
G/iorxAbgYR5+Eftake2Z/w1WN0GKg5S5OVUSHajnhGdIT2+Cu3A4Et4ij62ZJyS
DujG9B6CDOgcFL1Bm1p3HIEx84ZVo8YDpRPTLhAGd3C1enTbuDFvwhUKxxz3eqe7
q1lnIrvG02C8RW5THdpzX5MPq6+ZGz5C89qHXJkdTPF/
-----END CERTIFICATE-----
Generated at Sat Apr 12 08:50:28 2025 by rpki-client