Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/EqxVNlycylxq6ufI9ng2ltdK1KM.roa
File: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (raw, json)
Hash identifier: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=
Subject key identifier: 12:AC:55:36:5C:9C:CA:5C:6A:EA:E7:C8:F6:78:36:96:D7:4A:D4:A3
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 019425FC421FD197D43CC92B3BF9C8746D0F
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/EqxVNlycylxq6ufI9ng2ltdK1KM.roa
Signing time: Thu 02 Jan 2025 07:47:56 +0000
ROA not before: Thu 02 Jan 2025 07:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208767
IP address blocks: 212.230.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:42:1f:d1:97:d4:3c:c9:2b:3b:f9:c8:74:6d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Jan 2 07:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12ac55365c9cca5c6aeae7c8f6783696d74ad4a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5b:54:1b:3c:76:f2:ea:86:b6:8f:cb:bc:ca:
1d:65:56:16:0c:9f:69:c0:9e:98:9d:58:ec:ec:22:
8d:a0:a6:a3:26:ab:22:00:07:3f:bf:c8:24:87:81:
a6:c1:7e:be:48:e8:6f:b5:7c:c0:0a:ab:aa:6a:00:
e6:ec:b6:98:f2:dd:a1:97:11:94:6e:fa:06:32:bc:
66:71:b7:2e:aa:4a:f5:5d:0c:6b:54:40:33:1c:36:
54:1b:c1:1d:1b:04:d8:ea:3f:7f:bd:5d:91:c0:ea:
b4:d6:bc:fd:63:45:2e:c5:bb:fe:2e:a9:ce:d2:6f:
1a:f2:82:31:96:8a:83:c1:66:27:c6:5b:5f:a8:8b:
e2:ec:e7:bd:8f:9c:86:83:29:fe:a7:dd:70:00:41:
f0:ee:53:86:98:7a:15:27:fd:cf:30:86:4a:a6:37:
8f:38:b8:de:ac:f4:ef:cd:9c:a8:ce:9a:bc:e3:69:
6a:ae:58:3d:f2:57:9d:46:ba:ca:27:df:39:01:02:
3a:6d:a0:71:70:ed:cd:57:7f:a9:d2:4d:42:09:ec:
c7:7f:b9:12:8e:2a:14:28:9c:1f:51:c7:0c:1d:12:
ac:10:4c:21:7e:08:9a:c0:3d:6d:d2:4b:e4:4b:c9:
bf:00:f9:05:e5:83:17:fd:76:b7:9c:dd:b6:fa:64:
21:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AC:55:36:5C:9C:CA:5C:6A:EA:E7:C8:F6:78:36:96:D7:4A:D4:A3
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/EqxVNlycylxq6ufI9ng2ltdK1KM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.230.163.0/24
Signature Algorithm: sha256WithRSAEncryption
51:20:31:26:af:54:07:4f:42:5c:02:ba:f0:d1:aa:b6:11:6b:
23:1d:23:fd:0b:ec:8d:0f:81:bb:54:c8:62:0b:6e:60:24:47:
83:4e:f1:be:c7:f1:3c:a7:a0:e5:49:94:10:11:9e:55:64:50:
72:86:e9:4f:f7:72:d2:8c:a9:dc:6e:32:66:6a:16:8e:6d:56:
ac:98:b6:c4:35:f6:c7:4d:43:25:fd:5a:8d:32:0c:7a:1b:13:
65:4a:80:1e:19:a9:e2:ea:bb:8b:20:1e:6e:59:d9:38:2a:3d:
78:c8:d0:a8:78:59:dd:4d:d4:a3:48:ee:e7:fe:6e:dd:34:bd:
c8:80:d2:5f:63:6a:68:f7:93:cd:d6:c4:e5:05:37:85:73:c8:
8c:dc:76:4a:31:3e:02:04:07:41:7c:92:b0:63:61:35:4c:44:
79:97:ba:c8:a0:bf:df:ff:3c:9c:08:2a:62:22:14:52:ad:03:
40:f8:95:67:65:ba:0e:a8:93:d5:c1:9b:fc:2f:e3:7e:bf:61:
02:5a:bf:d5:11:f8:56:23:ef:f4:af:fd:d1:ec:b0:2c:03:fd:
c9:f1:e8:e5:5a:f5:cd:88:b2:4f:13:26:24:57:fc:28:39:1d:
e4:db:8a:c4:a4:ff:43:7f:7e:12:59:20:64:d1:e3:64:fe:b8:
5f:d1:76:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/EIf0ZfUPMkrO/nIdG0PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi
MmUyY2QwHhcNMjUwMTAyMDc0NzU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmFjNTUzNjVjOWNjYTVjNmFlYWU3YzhmNjc4MzY5NmQ3NGFkNGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFtUGzx28uqGto/LvModZVYWDJ9p
wJ6YnVjs7CKNoKajJqsiAAc/v8gkh4GmwX6+SOhvtXzACquqagDm7LaY8t2hlxGU
bvoGMrxmcbcuqkr1XQxrVEAzHDZUG8EdGwTY6j9/vV2RwOq01rz9Y0Uuxbv+LqnO
0m8a8oIxloqDwWYnxltfqIvi7Oe9j5yGgyn+p91wAEHw7lOGmHoVJ/3PMIZKpjeP
OLjerPTvzZyozpq842lqrlg98ledRrrKJ985AQI6baBxcO3NV3+p0k1CCezHf7kS
jioUKJwfUccMHRKsEEwhfgiawD1t0kvkS8m/APkF5YMX/Xa3nN22+mQhgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBKsVTZcnMpcaurnyPZ4NpbXStSjMB8GA1UdIwQY
MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt
ZjEyODM1ZjAyNDdiLzEvRXF4Vk5seWN5bHhxNnVmSTluZzJsdGRLMUtNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi
LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1OajMA0G
CSqGSIb3DQEBCwUAA4IBAQBRIDEmr1QHT0JcArrw0aq2EWsjHSP9C+yND4G7VMhi
C25gJEeDTvG+x/E8p6DlSZQQEZ5VZFByhulP93LSjKncbjJmahaObVasmLbENfbH
TUMl/VqNMgx6GxNlSoAeGani6ruLIB5uWdk4Kj14yNCoeFndTdSjSO7n/m7dNL3I
gNJfY2po95PN1sTlBTeFc8iM3HZKMT4CBAdBfJKwY2E1TER5l7rIoL/f/zycCCpi
IhRSrQNA+JVnZboOqJPVwZv8L+N+v2ECWr/VEfhWI+/0r/3R7LAsA/3J8ejlWvXN
iLJPEyYkV/woOR3k24rEpP9Df34SWSBk0eNk/rhf0XYj
-----END CERTIFICATE-----
Generated at Tue Apr 15 06:18:43 2025 by rpki-client