Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/627c4c-f881-484f-b07b-d6df6b795dea/1/5ze_5LXqTepNW7Je4Ym8zEitXnY.roa
File: 5ze_5LXqTepNW7Je4Ym8zEitXnY.roa (raw, json)
Hash identifier: tyryO1Qhdqt2btJPStJg69B7TfysrsFnQZfSGcB4W94=
Subject key identifier: E7:37:BF:E4:B5:EA:4D:EA:4D:5B:B2:5E:E1:89:BC:CC:48:AD:5E:76
Certificate issuer: /CN=07401351fc3cf73370a1e322e0527e569ef05797
Certificate serial: 019425FDA9B4D0459A0CEF6431E243748E37
Authority key identifier: 07:40:13:51:FC:3C:F7:33:70:A1:E3:22:E0:52:7E:56:9E:F0:57:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0ATUfw89zNwoeMi4FJ-Vp7wV5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/627c4c-f881-484f-b07b-d6df6b795dea/1/5ze_5LXqTepNW7Je4Ym8zEitXnY.roa
Signing time: Thu 02 Jan 2025 07:49:28 +0000
ROA not before: Thu 02 Jan 2025 07:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48955
IP address blocks: 193.239.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/627c4c-f881-484f-b07b-d6df6b795dea/1/B0ATUfw89zNwoeMi4FJ-Vp7wV5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/627c4c-f881-484f-b07b-d6df6b795dea/1/B0ATUfw89zNwoeMi4FJ-Vp7wV5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/B0ATUfw89zNwoeMi4FJ-Vp7wV5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 03:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:a9:b4:d0:45:9a:0c:ef:64:31:e2:43:74:8e:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07401351fc3cf73370a1e322e0527e569ef05797
Validity
Not Before: Jan 2 07:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e737bfe4b5ea4dea4d5bb25ee189bccc48ad5e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8f:c1:4b:63:e2:53:0a:5c:82:b1:5f:11:c6:
4d:e2:5b:4e:78:5f:5f:43:d6:cb:1e:4c:95:e8:5f:
e2:8a:9c:fe:f2:8f:4d:81:ea:f2:50:9f:07:2c:19:
e3:ee:33:a0:57:8c:a2:56:51:6c:3a:a7:39:98:37:
b1:84:be:08:79:00:3b:93:1f:e3:23:ef:ba:07:52:
27:91:ba:fc:30:52:9b:5f:df:e6:26:96:8b:9b:d3:
86:f6:22:33:34:fc:60:0b:a6:40:20:57:f4:20:92:
dd:0b:c3:54:67:2d:dc:f5:06:17:cc:d7:52:3e:97:
ef:94:f9:88:fe:b8:fe:7d:90:29:bb:a7:11:57:e5:
2f:6f:8e:5a:71:46:3c:21:78:22:13:d1:1c:1b:ad:
4f:42:b5:cb:fd:bd:aa:5c:ce:d4:ac:1d:ca:e2:7c:
f2:d4:75:22:ac:b6:95:c2:ec:b1:14:40:cc:b2:99:
9e:1b:d3:28:82:c7:0a:3a:84:22:9c:6a:c1:57:10:
0d:cd:a4:82:47:3a:ea:fd:a2:f3:3f:bf:bc:03:a4:
c9:35:79:14:12:a2:df:92:ee:3f:85:09:27:20:be:
2d:cf:32:96:d5:7e:8a:a6:7b:1e:00:6b:37:b1:48:
a2:21:04:51:6e:cc:bf:de:35:85:10:1d:9a:7c:e4:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:37:BF:E4:B5:EA:4D:EA:4D:5B:B2:5E:E1:89:BC:CC:48:AD:5E:76
X509v3 Authority Key Identifier:
keyid:07:40:13:51:FC:3C:F7:33:70:A1:E3:22:E0:52:7E:56:9E:F0:57:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0ATUfw89zNwoeMi4FJ-Vp7wV5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/627c4c-f881-484f-b07b-d6df6b795dea/1/5ze_5LXqTepNW7Je4Ym8zEitXnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/627c4c-f881-484f-b07b-d6df6b795dea/1/B0ATUfw89zNwoeMi4FJ-Vp7wV5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.176.0/24
Signature Algorithm: sha256WithRSAEncryption
37:66:4b:a2:a8:98:5a:59:88:d6:e1:4c:7a:71:05:f5:e8:17:
f7:44:62:25:d2:f6:7d:72:42:53:f4:77:52:b6:17:a5:e7:ef:
6e:9f:ee:13:82:1b:b9:61:55:00:53:f9:f9:6a:96:fd:66:d8:
ec:12:8a:7b:05:de:8c:fa:21:8d:ce:9c:79:a3:68:2a:a0:1d:
04:b8:85:34:f3:ee:a7:e4:ae:6a:e2:c2:2e:2f:bc:35:38:cd:
9f:aa:84:d8:af:7f:b5:a2:e3:2c:ac:38:95:40:c4:81:a1:92:
d9:3c:4c:f3:29:24:71:75:90:ed:4d:c4:49:85:83:6c:db:36:
cb:a2:48:22:62:46:27:fe:32:da:7e:3b:bc:e9:f5:d2:36:ed:
b1:3b:f3:d6:3c:20:03:05:f7:d0:b9:c3:0b:77:cf:41:d4:6e:
b7:cb:20:ec:21:0f:13:f6:fd:86:e9:48:09:44:2b:1f:f5:60:
fa:31:8c:34:e6:32:cf:83:39:49:56:5e:9f:5c:49:69:aa:f7:
3b:87:b9:5c:26:b5:57:eb:0a:1f:59:91:d4:2a:2b:0c:84:1f:
50:5c:8d:fc:df:f4:40:ae:78:20:c5:10:12:a7:5c:95:0d:95:
ac:4e:30:34:ca:b3:24:db:81:d7:2a:7f:3a:69:37:c7:96:c0:
f9:ea:82:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:19:39 2025 by rpki-client