Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/FsUxuSAEJxcJvbQQbnEmdzyGBMM.roa
File: FsUxuSAEJxcJvbQQbnEmdzyGBMM.roa (raw, json)
Hash identifier: JUy66RzJLN9pwvog5+NOwd/k0EE8faYmzaGcXwEZppg=
Subject key identifier: 16:C5:31:B9:20:04:27:17:09:BD:B4:10:6E:71:26:77:3C:86:04:C3
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0194228E391DB9B578BC32A615BFC5A47C6E
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/FsUxuSAEJxcJvbQQbnEmdzyGBMM.roa
Signing time: Wed 01 Jan 2025 15:48:53 +0000
ROA not before: Wed 01 Jan 2025 15:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212384
IP address blocks: 45.149.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 21:19:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:39:1d:b9:b5:78:bc:32:a6:15:bf:c5:a4:7c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jan 1 15:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16c531b92004271709bdb4106e7126773c8604c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:cf:29:ee:38:d9:c7:e7:42:02:59:bd:a2:91:
c7:e8:b3:b7:62:32:5c:8d:dd:c8:9a:c3:d0:f7:b9:
2a:be:01:0d:e1:c4:e4:75:16:97:a3:ed:5c:6d:60:
7c:f2:5d:c9:5a:1e:9d:91:0a:c3:b1:b3:2b:61:b7:
72:74:0f:f3:93:23:75:8e:ce:24:78:0c:54:c4:d4:
a4:5f:cb:7d:fe:cd:ef:25:cc:0b:f8:7f:63:cd:3d:
7f:dc:40:7b:7f:c6:bc:5d:f9:64:5c:3c:d6:4a:7c:
51:47:8d:de:65:fe:13:97:f9:86:18:36:b3:03:3d:
41:db:5b:59:f9:81:9a:e9:26:4f:bd:e6:06:5d:b5:
44:a1:3c:3d:25:fa:e8:c8:5c:3c:52:44:93:5f:a0:
39:60:a9:86:78:de:5b:7e:b8:17:4f:6b:b6:5f:82:
a2:dd:55:5a:39:a7:1f:03:b0:16:1a:f2:14:e6:bc:
33:77:cc:64:6d:03:9f:eb:45:c5:3d:8b:27:1b:6c:
57:fd:68:6c:1f:b7:19:f8:7d:df:a1:f5:c1:53:e0:
c9:03:10:fa:cc:a4:d8:1d:4b:3c:6e:0a:38:ad:72:
38:3a:26:ec:37:fd:ad:d1:70:8c:b8:3b:ba:68:b9:
9c:3e:34:49:70:60:61:29:d7:5d:aa:98:00:c6:05:
75:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C5:31:B9:20:04:27:17:09:BD:B4:10:6E:71:26:77:3C:86:04:C3
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/FsUxuSAEJxcJvbQQbnEmdzyGBMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.166.0/24
Signature Algorithm: sha256WithRSAEncryption
55:b8:e8:8e:55:7b:b6:ca:91:15:fc:fa:0b:bb:07:e6:3c:8b:
ff:de:4e:45:cc:97:9b:86:b2:aa:94:d3:98:f5:67:9b:c7:7e:
d5:d4:9c:6f:b3:c3:c1:4e:9a:84:6d:b5:ba:f4:bd:f8:b3:5b:
72:39:a9:bc:e7:65:2c:e2:f3:5e:96:56:7a:d1:e5:00:65:60:
f2:b0:fa:f0:71:de:0e:5b:c3:18:da:5d:a0:fc:b1:7b:5d:2b:
8c:b4:83:aa:70:ca:eb:5c:27:ed:e5:04:db:ce:ba:32:00:c6:
9a:c6:bd:7a:55:43:6f:99:17:dc:8e:23:6f:24:40:7f:a6:3b:
5e:e2:85:9a:76:b1:66:36:12:82:6b:70:b1:7d:4f:86:ef:cc:
65:b5:31:d1:9f:55:f3:87:48:08:f9:ba:ea:08:bc:77:89:d7:
24:d0:21:26:21:37:98:c9:01:b5:2e:db:b1:72:a1:fe:07:4c:
ea:45:07:76:d2:3c:ba:2c:70:d1:68:1b:c2:a7:a8:bf:f7:aa:
df:6b:36:80:52:06:9b:66:8b:47:1a:cf:99:8a:57:eb:23:34:
52:53:77:ef:87:3f:57:bc:7a:0f:11:7b:60:7a:0f:46:b4:36:
65:aa:f6:74:06:cc:a7:d0:f3:fb:d7:93:e3:44:db:9a:fb:d9:
e7:25:9c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:23 2025 by rpki-client