Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/1-CTcDUEdN5WfEm_rs3o0JHhk5XU.roa
File: 1-CTcDUEdN5WfEm_rs3o0JHhk5XU.roa (raw, json)
Hash identifier: lk5WrQW7f4eLUx+kxUxuWVLfFLTkEmxU4/4R6+50tjM=
Subject key identifier: F8:24:DC:0D:41:1D:37:95:9F:12:6F:EB:B3:7A:34:24:78:64:E5:75
Certificate issuer: /CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Certificate serial: 0194266C15FAAE08CD5DB9BFEC364A5AC6DC
Authority key identifier: 77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/1-CTcDUEdN5WfEm_rs3o0JHhk5XU.roa
Signing time: Thu 02 Jan 2025 09:50:05 +0000
ROA not before: Thu 02 Jan 2025 09:50:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 46.253.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/d7xTS6ROnTy6LyRG1KPdbuqbj2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/d7xTS6ROnTy6LyRG1KPdbuqbj2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:15:fa:ae:08:cd:5d:b9:bf:ec:36:4a:5a:c6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Validity
Not Before: Jan 2 09:50:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f824dc0d411d37959f126febb37a34247864e575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:55:e9:7b:89:84:f7:aa:e4:ab:5e:e0:72:40:
6e:fe:70:ec:49:a1:53:d0:54:bb:f0:f7:d1:ff:93:
71:9d:f3:ce:86:a2:93:37:48:4d:c8:8f:f7:46:0b:
17:e2:c8:71:36:b0:42:74:9c:1b:60:75:2d:f9:49:
b9:f0:80:ab:6b:d8:b8:15:8e:8c:20:17:ec:89:bc:
cd:54:8b:a8:99:4b:b2:5d:fe:af:f3:f5:c2:a8:7e:
9b:76:c9:01:f5:e3:21:eb:6e:1e:6a:3d:ac:33:8e:
a3:23:43:ec:49:9d:b6:e9:a0:2f:2a:6b:16:bc:7e:
c7:da:e2:dd:90:b4:3e:91:1f:82:8d:96:eb:10:77:
61:d9:c6:38:4a:97:7c:32:7f:d0:94:1b:1b:30:6f:
21:dc:0e:26:1c:97:42:24:fc:0e:c6:d5:57:3a:24:
2f:e8:25:b7:bc:18:5b:43:22:99:b2:9b:81:26:33:
a4:3c:50:90:9b:35:9d:d7:1e:5b:fe:c6:c7:43:3f:
57:8f:fa:7a:e8:02:a9:57:e8:35:fd:24:a6:d4:e0:
58:23:1b:22:6d:fc:88:ce:12:e7:76:9d:8f:0a:af:
dd:29:72:c2:7e:5c:fd:12:16:f7:83:3b:00:b3:f8:
08:c5:96:6a:97:01:f1:e1:85:32:dd:a0:28:40:20:
d9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:24:DC:0D:41:1D:37:95:9F:12:6F:EB:B3:7A:34:24:78:64:E5:75
X509v3 Authority Key Identifier:
keyid:77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/1-CTcDUEdN5WfEm_rs3o0JHhk5XU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/d7xTS6ROnTy6LyRG1KPdbuqbj2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.129.0/24
Signature Algorithm: sha256WithRSAEncryption
43:7b:71:4c:e6:49:8c:a0:b0:52:45:87:91:27:ad:66:27:84:
59:df:10:7a:fd:a7:c9:29:11:19:75:3a:66:dc:29:4c:29:86:
5c:05:5f:20:77:df:99:72:ce:5e:20:26:69:ca:a3:e7:fe:cd:
a2:6c:34:02:af:75:e6:c1:81:b6:99:22:22:d9:59:7b:fb:34:
63:82:5e:ec:cd:a5:50:12:82:b5:ff:56:c5:24:db:ee:e4:2d:
e0:4c:68:fc:cb:0b:b9:78:67:f5:49:dd:36:2b:9b:0d:f3:61:
5b:30:89:0a:fb:5d:bc:3b:37:fe:af:15:85:f3:22:1f:3e:5c:
fa:f1:3a:41:17:0c:c3:6d:8e:03:8e:d0:00:c9:a2:2f:6b:d8:
88:1a:13:56:6c:aa:5f:82:b7:28:fa:a4:dc:f2:93:dd:2f:44:
ca:d3:34:ac:cf:9f:31:a3:95:54:f3:26:92:6b:b5:c5:92:ad:
a8:85:ef:4d:d4:fa:e1:20:d3:16:2b:f4:e1:85:a7:5d:40:c8:
e9:85:c0:c6:de:69:cd:cc:41:44:86:e1:23:41:66:0f:62:07:
2f:57:93:dc:e5:4f:34:fb:99:0e:0a:c6:fe:ef:ff:00:87:1d:
6c:b6:7c:2a:8d:ee:f7:57:dc:7c:ba:58:7a:34:f2:d7:2d:04:
2f:08:f6:0f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQmbBX6rgjNXbm/7DZKWsbcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YmM1MzRiYTQ0ZTlkM2NiYTJmMjQ0NmQ0YTNkZDZlZWE5
YjhmNjEwHhcNMjUwMTAyMDk1MDA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODI0ZGMwZDQxMWQzNzk1OWYxMjZmZWJiMzdhMzQyNDc4NjRlNTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVXpe4mE96rkq17gckBu/nDsSaFT
0FS78PfR/5NxnfPOhqKTN0hNyI/3RgsX4shxNrBCdJwbYHUt+Um58ICra9i4FY6M
IBfsibzNVIuomUuyXf6v8/XCqH6bdskB9eMh624eaj2sM46jI0PsSZ226aAvKmsW
vH7H2uLdkLQ+kR+CjZbrEHdh2cY4Spd8Mn/QlBsbMG8h3A4mHJdCJPwOxtVXOiQv
6CW3vBhbQyKZspuBJjOkPFCQmzWd1x5b/sbHQz9Xj/p66AKpV+g1/SSm1OBYIxsi
bfyIzhLndp2PCq/dKXLCflz9Ehb3gzsAs/gIxZZqlwHx4YUy3aAoQCDZ6wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPgk3A1BHTeVnxJv67N6NCR4ZOV1MB8GA1UdIwQY
MBaAFHe8U0ukTp08ui8kRtSj3W7qm49hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDd4VFM2Uk9uVHk2THlSRzFLUGRidXFiajJFLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi8yZmRkNTYtYmEyYy00NmZiLTk4ODIt
OWIyNTdmNGZlYThkLzEvMS1DVGNEVUVkTjVXZkVtX3JzM28wSkhoazVYVS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYjIvMmZkZDU2LWJhMmMtNDZmYi05ODgyLTliMjU3ZjRmZWE4
ZC8xL2Q3eFRTNlJPblR5Nkx5UkcxS1BkYnVxYmoyRS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC79gTAN
BgkqhkiG9w0BAQsFAAOCAQEAQ3txTOZJjKCwUkWHkSetZieEWd8Qev2nySkRGXU6
ZtwpTCmGXAVfIHffmXLOXiAmacqj5/7Nomw0Aq915sGBtpkiItlZe/s0Y4Je7M2l
UBKCtf9WxSTb7uQt4Exo/MsLuXhn9UndNiubDfNhWzCJCvtdvDs3/q8VhfMiHz5c
+vE6QRcMw22OA47QAMmiL2vYiBoTVmyqX4K3KPqk3PKT3S9EytM0rM+fMaOVVPMm
kmu1xZKtqIXvTdT64SDTFiv04YWnXUDI6YXAxt5pzcxBRIbhI0FmD2IHL1eT3OVP
NPuZDgrG/u//AIcdbLZ8Ko3u91fcfLpYejTy1y0ELwj2Dw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:50:46 2025 by rpki-client