Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/05Tg0UTrs2bglsb4atVMOsvRYS0.roa
File: 05Tg0UTrs2bglsb4atVMOsvRYS0.roa (raw, json)
Hash identifier: VhJZRocRnbLToarK8Wb3G47273juDPcLT4qOnhmDcBI=
Subject key identifier: D3:94:E0:D1:44:EB:B3:66:E0:96:C6:F8:6A:D5:4C:3A:CB:D1:61:2D
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 01942827FC6EC4B415419D5F4F944C4E4702
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/05Tg0UTrs2bglsb4atVMOsvRYS0.roa
Signing time: Thu 02 Jan 2025 17:54:56 +0000
ROA not before: Thu 02 Jan 2025 17:54:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48763
IP address blocks: 5.44.40.0/24 maxlen: 24
5.44.41.0/24 maxlen: 24
194.28.193.0/24 maxlen: 24
217.171.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:fc:6e:c4:b4:15:41:9d:5f:4f:94:4c:4e:47:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 2 17:54:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d394e0d144ebb366e096c6f86ad54c3acbd1612d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:99:8e:59:f3:94:3d:7f:8e:ab:9b:34:6b:ea:
d7:1b:98:d1:34:90:8e:72:2c:8f:ab:10:3b:88:0b:
94:12:ff:73:97:62:c5:35:05:55:b4:ec:fc:09:ee:
1f:d1:09:02:cc:48:75:cf:dd:74:39:af:93:f7:7d:
2a:49:99:1a:f4:fd:e9:b5:39:c5:e3:98:b2:cf:21:
df:de:7d:9f:e8:f2:d4:5a:f7:2f:8a:37:87:23:e3:
1b:47:13:98:54:69:fb:0a:71:f1:3d:36:93:09:fd:
cb:6a:b8:f4:ff:ae:c8:83:b5:68:5a:6e:81:90:57:
f4:5b:6b:5f:1a:d6:89:b6:dc:62:0c:49:e5:09:f7:
63:f7:80:d1:a6:7b:a2:28:6f:72:d7:dc:b5:2b:a6:
2b:e8:3c:6a:6a:91:35:ac:21:d5:46:60:14:b6:55:
7b:ad:ed:56:f5:ef:64:6f:db:ff:f6:99:60:ef:09:
d8:43:0f:d7:f3:89:09:a6:dc:89:62:c1:0a:bf:31:
16:ac:d6:2d:71:b6:59:92:cc:10:f0:de:80:b2:da:
46:fd:4f:d4:02:ea:5c:f4:c4:70:d9:5d:0c:35:8a:
c5:f7:e7:c3:19:da:e7:ba:6f:b5:cb:ac:39:e3:01:
3f:ec:bb:84:fe:88:d9:3e:3a:57:7a:af:c5:8a:c3:
2f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:94:E0:D1:44:EB:B3:66:E0:96:C6:F8:6A:D5:4C:3A:CB:D1:61:2D
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/05Tg0UTrs2bglsb4atVMOsvRYS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.40.0/23
194.28.193.0/24
217.171.147.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:32:bb:4a:ec:bc:69:6e:1b:9a:b8:9e:83:87:0d:bf:3c:b7:
f8:f8:34:bf:c9:ae:e4:35:8e:d6:0f:38:ff:eb:72:41:ef:9f:
c6:1c:5e:f6:4f:7b:39:29:15:08:be:50:20:ad:3e:82:2a:dc:
d2:ef:43:e6:df:56:b2:b1:cb:5c:c9:64:07:3b:33:80:9d:df:
20:e8:a3:23:a4:7a:01:dc:15:60:54:e5:a0:53:bb:4a:ea:5f:
2e:95:8c:1d:45:a0:8e:9b:cb:a0:05:b2:b0:82:11:14:e1:6b:
7f:3b:ab:bc:1d:cb:8f:6a:d6:0b:d5:42:4d:2f:47:b1:94:50:
6c:7e:6e:30:5e:e1:f2:c8:96:17:29:95:be:7b:c8:be:c9:7c:
94:e9:2d:f0:2e:74:58:26:6e:a1:87:19:94:67:63:9c:84:5f:
1c:ce:8c:79:20:ad:3e:6c:12:34:9d:a5:b7:91:8d:85:b7:9b:
0a:e4:6c:3d:c8:77:71:fa:c4:4f:a4:a0:63:9d:53:99:76:4b:
0d:cf:3b:8c:f0:c7:87:28:d5:4c:fe:e1:ed:5a:13:bd:55:22:
90:80:15:7b:37:41:80:5a:bc:85:a4:af:16:bb:f7:86:47:f0:
83:eb:b5:66:63:3d:b4:65:23:c6:1b:e4:54:06:ea:36:14:df:
03:ed:8c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 10:22:35 2025 by rpki-client