Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/ptXbX8Zqa-anm64RYPO3MNfDgCc.roa
File: ptXbX8Zqa-anm64RYPO3MNfDgCc.roa (raw, json)
Hash identifier: X1KaAT7AfL8kdySxiP0OJr7eJjZG/di68v2W2Al5EUw=
Subject key identifier: A6:D5:DB:5F:C6:6A:6B:E6:A7:9B:AE:11:60:F3:B7:30:D7:C3:80:27
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 01942827FC0254ECE387675D4DA226CE74DF
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/ptXbX8Zqa-anm64RYPO3MNfDgCc.roa
Signing time: Thu 02 Jan 2025 17:54:56 +0000
ROA not before: Thu 02 Jan 2025 17:54:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48716
IP address blocks: 45.8.98.0/24 maxlen: 24
92.118.115.0/24 maxlen: 24
94.198.220.0/23 maxlen: 23
94.198.220.0/24 maxlen: 24
94.198.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:fc:02:54:ec:e3:87:67:5d:4d:a2:26:ce:74:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 2 17:54:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6d5db5fc66a6be6a79bae1160f3b730d7c38027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4c:35:3e:bd:a9:61:eb:8b:be:75:5e:d7:b8:
15:07:9a:9e:01:bd:a6:a7:73:5f:c4:91:60:93:42:
ce:c1:81:61:c3:03:ff:fe:95:5c:70:72:11:32:e2:
07:df:ad:d3:d0:d1:2f:b9:a1:03:c1:18:95:f6:10:
da:9d:81:98:8a:1a:e0:79:97:b4:68:c8:83:34:79:
d0:7d:d6:67:1e:12:5e:8a:58:56:22:31:57:ea:df:
e0:d5:27:39:7e:2f:ff:a8:26:ba:eb:9d:80:63:c4:
01:0b:55:98:a1:24:6f:d9:6e:60:1c:35:ca:4a:60:
ce:91:78:eb:a2:9b:22:99:50:b7:c0:26:1f:54:5e:
27:79:d0:c1:87:9f:2f:d8:c2:36:da:4e:51:fb:ba:
86:49:8a:65:3f:6e:1a:65:73:fc:be:5c:a5:a3:fe:
64:5d:f5:15:d8:61:69:1b:a8:20:90:55:7d:05:31:
54:92:da:12:c5:cd:69:2d:8c:43:fe:43:c6:f1:05:
4b:37:bc:0a:4b:fe:f2:48:90:68:83:a2:50:3d:53:
26:e2:f6:38:e9:7f:02:16:07:f3:27:ed:a6:3a:28:
f5:b2:3c:fe:5d:94:4e:c2:6b:fe:2b:d3:5f:b7:4e:
16:3b:ca:39:19:ee:07:f5:46:05:bf:5b:05:5f:95:
9f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D5:DB:5F:C6:6A:6B:E6:A7:9B:AE:11:60:F3:B7:30:D7:C3:80:27
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/ptXbX8Zqa-anm64RYPO3MNfDgCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.98.0/24
92.118.115.0/24
94.198.220.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:48:29:ef:51:c9:49:aa:d7:1c:25:12:ea:d5:19:4e:50:37:
06:56:7a:83:4f:e7:5e:49:12:6d:6a:d3:2c:ef:2d:17:9d:02:
b1:09:25:ee:6b:51:c0:bc:4b:b7:e5:6f:a7:a6:43:f1:f5:33:
17:fa:ab:2c:ef:5b:a3:b3:1e:f0:ca:eb:8a:79:ab:a1:98:2b:
b3:0c:07:56:c3:93:ac:ca:03:90:cf:e5:28:6c:bf:ba:3e:60:
07:79:8a:8d:15:29:bd:01:7d:ba:e8:f8:2a:17:6c:1c:a3:85:
35:bb:cf:3e:22:a5:ec:e3:dc:84:f2:37:d5:24:ac:30:ef:f1:
e2:6a:1d:e5:d4:b2:f0:43:16:27:09:dc:f3:8c:00:a7:15:d8:
7b:cb:ad:bc:f2:8d:3e:1c:99:f2:d5:41:54:ab:d0:79:46:0b:
0b:e0:74:b8:c8:d3:5d:cf:2c:34:e2:e7:ef:4f:2a:a0:00:c6:
ca:66:39:e5:6e:09:87:81:8c:6a:8c:8c:cb:45:2c:1b:78:b7:
47:6c:1e:03:ef:0b:66:ce:38:98:e8:15:7f:97:9b:1c:0e:1c:
38:7f:4c:14:74:29:62:38:02:b9:ba:c7:34:c1:4a:8f:5e:1e:
35:71:d5:64:6c:c1:e5:c8:25:de:cd:a5:40:a4:1a:df:e7:34:
3f:0a:3f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:23:03 2025 by rpki-client