Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EoHqxCkF_YxDUv3GCDUwLxmxty4.roa
File: EoHqxCkF_YxDUv3GCDUwLxmxty4.roa (raw, json)
Hash identifier: fqJ1ZYVz6+LeqQJqzVI01pDD/xfJqNkbvVMUqCoK3wk=
Subject key identifier: 12:81:EA:C4:29:05:FD:8C:43:52:FD:C6:08:35:30:2F:19:B1:B7:2E
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0194222033BC0B364CF16DDB8BBB6F9D1324
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EoHqxCkF_YxDUv3GCDUwLxmxty4.roa
Signing time: Wed 01 Jan 2025 13:48:43 +0000
ROA not before: Wed 01 Jan 2025 13:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206150
IP address blocks: 45.130.82.0/24 maxlen: 24
2a0b:64c6::/32 maxlen: 48
2a10:7400::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:33:bc:0b:36:4c:f1:6d:db:8b:bb:6f:9d:13:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 13:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1281eac42905fd8c4352fdc60835302f19b1b72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:25:3e:b4:11:cc:91:ce:7d:d2:32:1b:e4:6c:
fc:fe:67:ac:89:d1:3e:e0:4f:e3:42:ce:16:24:7e:
a3:d4:71:18:b0:b7:20:f3:ca:20:7d:52:8c:f3:6d:
7e:da:b1:ac:de:b5:8f:ae:78:f5:3a:96:8d:92:66:
bb:b6:d3:a0:de:9d:5d:cf:f3:08:28:79:0f:59:c4:
a3:b2:08:2f:94:c5:50:72:15:1a:00:6b:ec:aa:d5:
de:01:aa:14:1f:c2:1e:01:38:dd:39:b7:f3:df:45:
c8:bc:da:25:68:7d:bb:5e:54:5e:7a:8b:05:ad:3f:
2c:5f:b1:c8:d9:cc:94:87:42:25:f7:64:4a:86:89:
5a:80:e8:3c:a5:5b:1d:7a:c2:ce:df:cf:27:01:6e:
2d:92:8c:f0:72:48:76:47:44:b2:67:2d:86:ee:0f:
a0:0c:73:d5:64:5b:91:a9:c7:04:99:81:5b:29:a4:
7b:76:81:44:ea:12:da:4b:2a:d6:f6:f8:fe:62:da:
78:26:0c:2c:9c:f1:71:98:2b:cd:b8:dd:99:0a:0e:
c3:4e:17:c7:ff:63:16:bc:b7:72:e8:b5:83:86:0f:
84:07:13:ad:00:e8:3b:84:c1:f3:64:71:9a:d7:8e:
c2:d8:fa:65:bb:a0:3a:53:d0:6d:d0:72:cb:91:1c:
46:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:81:EA:C4:29:05:FD:8C:43:52:FD:C6:08:35:30:2F:19:B1:B7:2E
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/EoHqxCkF_YxDUv3GCDUwLxmxty4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.82.0/24
IPv6:
2a0b:64c6::/32
2a10:7400::/32
Signature Algorithm: sha256WithRSAEncryption
4e:fe:48:e7:0b:a9:8a:9f:77:c0:d7:46:4f:35:de:11:e3:05:
53:bf:99:23:59:7f:5a:e4:f5:47:fd:0c:be:f7:17:d6:4b:5f:
88:b8:7c:35:de:1e:3a:00:ce:cb:95:27:13:3d:3a:0d:90:9b:
ff:33:70:d1:db:e6:f7:aa:e4:b5:a4:ea:25:1e:d5:81:64:82:
0c:b2:5f:de:ff:da:02:24:13:81:b3:c6:2b:86:e4:cf:b0:b0:
50:60:6f:1a:e9:cd:69:01:26:9d:1d:91:9a:e7:4a:0d:80:69:
3c:a1:ee:b1:a4:1b:10:9e:ec:ee:12:f1:12:9d:f6:7e:34:22:
74:74:e7:6a:9c:1c:a3:68:a3:5f:5d:49:f6:79:7e:cb:80:87:
20:ab:72:84:14:ab:42:75:f5:20:f1:b2:86:41:57:88:f1:39:
95:fe:16:ba:bc:6c:4b:f6:8d:21:f1:56:cb:73:a9:14:0a:9e:
9a:4b:a4:8d:7e:76:11:42:27:13:c5:d2:fd:62:47:a2:03:2c:
57:db:7b:44:91:d7:11:3c:8c:a4:04:e5:5c:6b:26:05:ff:2a:
d2:b5:ea:56:45:00:b9:dd:1f:9b:2e:87:f6:f0:5f:77:8d:30:
c7:d0:65:6f:2e:84:c2:4f:7a:cf:69:16:7a:e4:00:08:65:31:
13:84:45:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 07:49:17 2025 by rpki-client