Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/uZ2FUQIy4-BglbDIW_Uj_e4ZY2c.roa
File: uZ2FUQIy4-BglbDIW_Uj_e4ZY2c.roa (raw, json)
Hash identifier: cy6Tl3qgTi1iMP0dxF44E6e2zGcGBO8MstsvupGrtLU=
Subject key identifier: B9:9D:85:51:02:32:E3:E0:60:95:B0:C8:5B:F5:23:FD:EE:19:63:67
Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Certificate serial: 0194228DE5391AC4AF4CEA5A3D3D805B7F2F
Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/uZ2FUQIy4-BglbDIW_Uj_e4ZY2c.roa
Signing time: Wed 01 Jan 2025 15:48:32 +0000
ROA not before: Wed 01 Jan 2025 15:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211623
IP address blocks: 2a00:1ca8:56::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.mft
rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:e5:39:1a:c4:af:4c:ea:5a:3d:3d:80:5b:7f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Validity
Not Before: Jan 1 15:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b99d85510232e3e06095b0c85bf523fdee196367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:34:6d:55:50:73:69:6b:25:4f:4d:bc:b9:
1c:75:4f:79:30:fa:10:2f:80:37:b5:ec:9d:53:bf:
13:1a:09:63:42:e5:5e:bc:57:65:8e:12:e0:dc:a0:
ac:c6:ec:a2:ee:ce:15:2b:49:ae:d7:17:ca:5f:13:
68:8a:cb:94:c4:fd:c6:8f:57:ce:f1:71:dd:8e:99:
41:28:6a:e1:d0:26:49:32:aa:dc:58:89:dc:dc:c5:
84:96:74:89:f6:b0:8c:f9:1f:2b:14:aa:e3:3f:ab:
0e:8b:b1:6f:00:e5:17:1b:d7:5d:4b:8b:b7:f8:d6:
5c:9c:b8:8f:7c:ad:aa:8c:b8:95:1e:e8:16:82:b7:
ee:65:3b:b2:ef:db:29:df:6f:f1:09:6b:be:28:c4:
9d:a2:be:41:39:3e:9c:67:20:bb:58:70:f7:ad:7d:
eb:0e:ee:32:e7:99:f1:5e:40:aa:24:ab:01:60:2c:
a1:c8:5e:cc:c6:1c:9f:a2:44:ee:8b:b9:2b:97:f9:
a4:6b:e0:15:f6:af:93:ce:9f:59:69:1d:00:fc:97:
03:7d:8c:db:e5:43:e5:dc:1d:41:4a:48:97:80:a1:
3b:d1:c1:91:67:c8:25:aa:a4:e7:29:92:57:90:49:
fd:31:6a:85:ab:6d:d1:cd:47:a2:8b:f2:e6:f1:15:
c2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:9D:85:51:02:32:E3:E0:60:95:B0:C8:5B:F5:23:FD:EE:19:63:67
X509v3 Authority Key Identifier:
keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/uZ2FUQIy4-BglbDIW_Uj_e4ZY2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1ca8:56::/48
Signature Algorithm: sha256WithRSAEncryption
99:34:db:1e:53:6b:eb:9a:20:33:3d:80:f3:a1:76:87:bb:5c:
f9:4e:51:4d:b4:6b:88:a5:ad:5f:95:3c:8e:10:d2:a8:99:70:
88:cd:1d:70:0d:61:5d:a2:7b:fd:0a:a1:87:1b:d2:1d:f3:58:
23:4b:89:4b:07:96:90:61:62:54:b7:c5:0a:35:de:f7:89:73:
12:d1:8f:53:33:06:9a:7e:e5:18:dd:26:63:74:20:0d:d8:d1:
c7:3b:14:f2:50:1f:f3:db:fb:fb:c8:01:42:35:72:50:49:67:
0f:32:a4:03:18:32:12:ea:f6:78:44:f2:19:e2:3b:ef:92:21:
1c:96:3d:70:91:b3:27:60:63:15:9c:93:87:50:98:d8:ad:8a:
4e:5f:b8:26:2c:03:69:bc:4f:2d:d5:12:aa:dc:b7:69:8e:eb:
66:cf:35:af:ce:23:2d:18:09:b3:93:62:7d:7a:04:71:2e:69:
41:98:4b:0a:d4:40:55:57:8d:41:93:92:e8:93:e6:df:87:42:
23:43:3d:85:03:27:fe:66:b2:df:da:1b:6f:23:5d:7b:48:c7:
22:4b:a4:8c:e6:e4:d0:6f:ef:f9:a9:59:91:24:9d:67:8e:bc:
f6:86:ed:fd:94:a4:3d:da:b1:7f:2f:5c:f4:fb:fe:04:15:b3:
d6:33:aa:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:26:12 2025 by rpki-client