Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/RVuh9Ovnia6HGIxuY5C4mqQkVzw.roa
File: RVuh9Ovnia6HGIxuY5C4mqQkVzw.roa (raw, json)
Hash identifier: 7MdQXOdkGadK2Vo4n1LYddNyvg9R887clmJN5QnKDO0=
Subject key identifier: 45:5B:A1:F4:EB:E7:89:AE:87:18:8C:6E:63:90:B8:9A:A4:24:57:3C
Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Certificate serial: 01941F8C94E33D276906E65F98C341EE77AC
Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/RVuh9Ovnia6HGIxuY5C4mqQkVzw.roa
Signing time: Wed 01 Jan 2025 01:48:14 +0000
ROA not before: Wed 01 Jan 2025 01:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43618
IP address blocks: 5.183.150.0/24 maxlen: 24
134.255.241.0/24 maxlen: 24
185.161.186.0/23 maxlen: 23
194.147.22.0/24 maxlen: 24
194.147.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.mft
rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:94:e3:3d:27:69:06:e6:5f:98:c3:41:ee:77:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Validity
Not Before: Jan 1 01:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=455ba1f4ebe789ae87188c6e6390b89aa424573c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:83:12:5c:0c:08:4d:bc:bb:4f:a4:5c:1d:71:
54:6d:64:7b:34:36:30:af:7e:f7:89:0b:13:8a:49:
e4:83:a5:5e:95:40:6f:fe:a1:2a:10:56:a9:c8:50:
d1:0c:bf:ca:95:e8:cb:2d:f8:cc:41:31:cc:07:92:
36:50:e7:63:f3:62:65:9a:5d:a7:28:af:6c:29:49:
38:2e:c0:54:39:5e:c3:b7:50:86:4a:b2:ff:86:94:
8b:44:94:58:d5:c5:28:45:3e:da:22:16:5b:74:74:
e6:99:d0:5f:d2:5c:79:bd:0b:3f:63:4c:e3:23:45:
54:68:12:70:4e:67:04:a5:93:37:0c:17:1b:5d:9c:
7b:8f:62:e8:ba:55:7a:36:95:d6:42:e3:c0:5a:a2:
a2:69:e7:f9:76:6b:bb:63:a5:fa:2f:50:f8:99:30:
ee:6e:c5:53:b7:b1:86:c0:ab:c0:e6:27:79:f7:eb:
0f:ac:1f:d1:83:16:58:2d:56:4f:af:5e:30:af:8d:
34:84:17:a9:27:bc:ab:94:ef:ad:d8:ba:c2:5c:95:
c8:72:bb:08:b2:89:d4:b6:3e:31:b5:ef:1f:9b:b9:
8e:87:5e:53:4c:5e:20:d3:9a:48:da:b4:47:97:50:
a4:c2:39:ec:7b:2d:24:01:9f:17:3b:5e:70:a3:d3:
fa:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5B:A1:F4:EB:E7:89:AE:87:18:8C:6E:63:90:B8:9A:A4:24:57:3C
X509v3 Authority Key Identifier:
keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/RVuh9Ovnia6HGIxuY5C4mqQkVzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.150.0/24
134.255.241.0/24
185.161.186.0/23
194.147.22.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:bc:00:af:1e:97:15:3d:81:41:5e:e4:7a:a3:af:f2:69:65:
a7:7b:76:0c:ba:57:d4:b8:4f:ef:a4:6a:97:c0:43:58:7f:e5:
f6:3b:75:a8:ff:0e:72:ff:31:26:4d:0d:b7:59:51:58:8a:6d:
86:d7:80:1b:54:10:e0:13:43:cb:8f:d2:07:f1:63:71:76:a7:
f2:b5:89:03:74:91:5c:68:ac:a7:48:ff:4d:62:f6:30:26:7f:
08:c4:0a:4c:64:cd:b6:43:e0:0d:5a:5c:fc:93:df:65:b1:5f:
42:fa:7d:63:5f:6f:66:f4:3b:c5:51:37:a5:87:c9:52:b7:9e:
9e:95:66:f6:c7:73:22:d6:c7:96:29:ab:ae:9e:06:d8:8e:f8:
fc:69:1f:4c:1f:04:55:38:1f:0a:2d:ef:db:6d:03:bf:5c:c2:
6e:ad:80:c7:c3:ab:d4:96:b1:97:97:f9:57:bb:d3:e5:a1:6a:
85:90:8b:a5:7d:8a:5b:a1:f5:0c:7d:16:76:cd:d9:3b:48:f5:
28:b0:e3:03:95:54:d4:44:ba:a9:a6:73:c0:8e:4d:ae:85:b6:
72:e0:c2:82:1f:7a:3a:ad:93:cb:39:56:2d:2d:be:b5:29:a0:
10:76:37:5c:ba:0a:9e:96:45:64:00:5d:55:5e:d9:0b:c4:50:
1e:a1:7d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:12:41 2025 by rpki-client