Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/UOgjlDZ-hlIE51uRVoyR7KP99NE.roa
File: UOgjlDZ-hlIE51uRVoyR7KP99NE.roa (raw, json)
Hash identifier: 1AY5DsB6GoL7krCLNb7v1DdRQDuAlUbr226PuiYccH4=
Subject key identifier: 50:E8:23:94:36:7E:86:52:04:E7:5B:91:56:8C:91:EC:A3:FD:F4:D1
Certificate issuer: /CN=37ff55b95743a915b793d72de71ac96ce6198a97
Certificate serial: 019426D9B9C4ABD9CBEF85E2AC8DE48684F2
Authority key identifier: 37:FF:55:B9:57:43:A9:15:B7:93:D7:2D:E7:1A:C9:6C:E6:19:8A:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_9VuVdDqRW3k9ct5xrJbOYZipc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/UOgjlDZ-hlIE51uRVoyR7KP99NE.roa
Signing time: Thu 02 Jan 2025 11:49:50 +0000
ROA not before: Thu 02 Jan 2025 11:49:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39702
IP address blocks: 193.31.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/N_9VuVdDqRW3k9ct5xrJbOYZipc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/N_9VuVdDqRW3k9ct5xrJbOYZipc.mft
rsync://rpki.ripe.net/repository/DEFAULT/N_9VuVdDqRW3k9ct5xrJbOYZipc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:b9:c4:ab:d9:cb:ef:85:e2:ac:8d:e4:86:84:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ff55b95743a915b793d72de71ac96ce6198a97
Validity
Not Before: Jan 2 11:49:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50e82394367e865204e75b91568c91eca3fdf4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d7:4d:b0:07:97:36:6d:da:cb:f1:05:68:91:
9f:7f:c8:31:85:fb:ec:ca:d9:a9:09:87:c0:47:e6:
fb:38:18:ff:fd:c7:1c:e9:e7:9e:dc:ae:ee:4e:ad:
ad:a5:1f:6b:ad:9a:fe:9c:f9:77:4a:35:42:63:93:
36:78:89:2a:d1:2c:e6:60:f0:45:38:f9:23:6e:61:
ab:b4:4f:d0:84:71:ca:5b:05:0e:f5:5a:59:7f:be:
7e:22:6a:5e:7a:04:15:ee:da:92:a1:83:24:3a:d7:
d7:dd:e5:77:01:83:50:b2:91:5a:93:d7:87:4a:52:
68:09:3e:d0:0b:25:f9:8b:2c:69:63:e3:c6:53:0b:
af:a7:08:e2:b5:12:c1:c2:38:d7:78:a5:b4:e1:3e:
ff:88:c6:d0:3f:73:66:af:92:4e:e2:1a:75:92:70:
12:dd:f5:82:15:64:a8:a2:cb:0b:6c:42:5d:e0:4a:
76:5b:15:e1:6c:44:de:3b:c9:bf:58:c4:0f:58:1b:
52:ab:ae:52:37:6c:70:0b:eb:b1:36:8c:b0:54:1b:
37:e7:ff:4c:eb:03:17:c1:7b:00:82:fc:6d:c9:08:
aa:dc:7c:e7:9c:fd:a3:f7:b0:69:d9:e8:c7:06:5b:
45:15:c7:28:cb:ce:36:17:b8:c7:e4:44:76:7f:63:
2a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E8:23:94:36:7E:86:52:04:E7:5B:91:56:8C:91:EC:A3:FD:F4:D1
X509v3 Authority Key Identifier:
keyid:37:FF:55:B9:57:43:A9:15:B7:93:D7:2D:E7:1A:C9:6C:E6:19:8A:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_9VuVdDqRW3k9ct5xrJbOYZipc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/UOgjlDZ-hlIE51uRVoyR7KP99NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0059f-b910-4bb7-9341-7750972265aa/1/N_9VuVdDqRW3k9ct5xrJbOYZipc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.18.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:58:78:8d:42:25:a7:04:6c:45:36:ca:2a:1a:72:f7:05:3a:
f4:84:52:71:df:94:9e:c2:48:d9:e3:ba:26:02:32:a8:b8:ce:
d6:9b:73:df:34:05:44:78:c9:e6:90:eb:8d:36:dd:92:66:c6:
41:e4:13:17:dd:cb:08:54:c2:fa:f9:65:2e:dd:ac:ae:a3:18:
ee:1f:ed:ae:68:51:ab:f5:23:83:84:f2:25:1a:9a:bd:6c:ab:
30:e2:40:13:68:95:81:4d:4a:94:65:f0:60:7c:29:55:70:04:
8c:2f:4a:60:d6:cc:23:73:ce:b9:f6:62:bd:54:67:88:a2:2a:
a0:e1:19:46:b7:f4:78:31:ce:81:a7:7d:7c:7d:3b:c1:96:68:
2e:09:ba:d9:e6:1d:53:0b:6c:54:88:d3:6e:cb:b4:b4:78:6e:
0a:dc:dc:67:0f:07:ca:76:63:d2:93:ea:7a:8b:66:41:93:b2:
f2:04:87:16:d3:23:a4:6a:d7:f7:ff:d4:57:3d:08:9b:95:3a:
52:1f:92:d7:66:b1:67:be:31:79:e8:95:76:a1:a3:89:99:f3:
8b:f5:32:c8:56:4d:38:86:b0:6e:0e:37:cb:63:9d:33:c8:b3:
73:fb:6d:b2:c6:2e:9a:86:29:b0:ba:85:60:17:dc:31:e9:bf:
6e:39:bf:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 10:43:29 2025 by rpki-client