Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/Vb0-789rc47LW8FxTDR4BhZEbvA.roa
File: Vb0-789rc47LW8FxTDR4BhZEbvA.roa (raw, json)
Hash identifier: dHaW6YDIWoFXZpmo8DPKjrjTfdr4GddJ2UYHgkZFOZw=
Subject key identifier: 55:BD:3E:EF:CF:6B:73:8E:CB:5B:C1:71:4C:34:78:06:16:44:6E:F0
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 01942369C3B46E3B6A5D3347267C8B630ED4
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/Vb0-789rc47LW8FxTDR4BhZEbvA.roa
Signing time: Wed 01 Jan 2025 19:48:41 +0000
ROA not before: Wed 01 Jan 2025 19:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34665
IP address blocks: 77.83.81.0/24 maxlen: 24
109.196.165.0/24 maxlen: 24
194.93.1.0/24 maxlen: 24
213.226.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:c3:b4:6e:3b:6a:5d:33:47:26:7c:8b:63:0e:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 19:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55bd3eefcf6b738ecb5bc1714c34780616446ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e4:7f:63:dd:74:b9:e0:6e:2c:95:70:ed:a4:
02:df:ff:84:3f:36:27:2e:fc:5f:8d:45:c7:14:de:
8b:68:8d:eb:dd:d7:eb:2d:9a:0d:b0:e4:c6:67:2f:
b0:bd:d8:b6:25:e6:f6:13:70:89:f5:25:67:90:c0:
81:7a:d3:40:eb:9a:9d:c1:63:1b:ac:e8:01:9a:ca:
ee:3a:3f:8e:d1:c3:70:1b:89:0f:4b:e8:32:66:34:
fd:ce:eb:99:91:30:da:d2:11:69:59:98:00:a2:8d:
88:b7:5e:7e:43:39:5a:14:99:5d:bb:fc:b7:e2:a2:
91:07:ec:d1:83:d2:50:cf:a3:8b:9d:ca:fa:bd:ae:
f6:e2:5b:54:a2:d7:7d:8e:e9:06:4f:8a:79:96:18:
78:55:6d:b8:db:9c:59:b6:0e:7d:55:ab:79:45:b6:
87:77:9c:e1:1f:66:f3:55:a7:c4:ac:dd:9a:8e:03:
5e:8d:69:82:48:59:9b:a4:ec:b5:c4:03:1b:1c:28:
c9:29:e2:4a:99:52:6a:eb:40:78:91:ff:81:bd:76:
dc:81:0f:69:e3:15:5b:cc:58:c3:4e:97:99:82:aa:
0e:ce:14:8a:b8:66:d5:ad:48:e5:9d:72:e8:4c:c6:
cf:8b:5e:fa:61:45:15:80:a0:45:ba:19:89:09:c7:
86:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BD:3E:EF:CF:6B:73:8E:CB:5B:C1:71:4C:34:78:06:16:44:6E:F0
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/Vb0-789rc47LW8FxTDR4BhZEbvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.81.0/24
109.196.165.0/24
194.93.1.0/24
213.226.113.0/24
Signature Algorithm: sha256WithRSAEncryption
67:df:9d:f8:1c:b5:66:06:d3:0b:2f:7f:90:09:f5:42:09:71:
ba:29:98:4e:2b:f4:4b:03:52:92:8b:73:9e:a1:01:b8:8c:a7:
b4:11:9a:61:5c:27:6f:0e:d2:28:2e:5b:14:2b:0a:d6:12:b5:
1d:a5:b7:df:21:c1:00:c7:ac:6f:9d:da:79:54:5a:2b:35:04:
77:f6:de:04:31:45:da:45:91:4e:8a:b5:60:17:77:e0:68:5e:
d3:28:81:1f:aa:c4:74:a6:13:5e:56:c8:fd:20:05:76:3d:89:
50:16:ba:d0:aa:dc:65:bb:97:4b:bf:18:f5:8f:c2:5e:8d:12:
de:a1:23:22:8b:ed:3a:21:a7:96:63:d1:0c:39:a9:40:9f:8c:
5f:26:5f:6e:f9:37:c6:6b:d8:a5:51:dd:4f:e5:94:15:7e:02:
b2:c8:2c:d1:23:75:78:70:75:66:43:4a:e1:0d:07:09:41:9e:
df:9c:a9:34:0c:1e:d8:c4:bf:02:97:07:cc:62:5b:d1:a9:07:
e3:83:5b:8e:ea:7f:5c:db:c5:d0:8d:a6:2f:c5:82:1a:59:5c:
95:34:10:a9:ad:2e:55:f3:c3:5e:d5:50:1e:f7:3c:80:52:f0:
6a:e5:05:b7:6d:01:2f:2b:eb:72:84:1a:8e:56:bc:1b:4d:df:
1b:8b:4f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 16:09:40 2025 by rpki-client