Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/uDu_9P9n8eoGu8X-iDdUh-TfwAY.roa
File: uDu_9P9n8eoGu8X-iDdUh-TfwAY.roa (raw, json)
Hash identifier: SstG8OSmlbUZo2JnDI9jEdpMEQNgUKMYMBzo75QnAgQ=
Subject key identifier: B8:3B:BF:F4:FF:67:F1:EA:06:BB:C5:FE:88:37:54:87:E4:DF:C0:06
Certificate issuer: /CN=69b01927a1a177d4261221d94628514a525a96e0
Certificate serial: 01965D48BF0BE945C60461168FA2DD425FEE
Authority key identifier: 69:B0:19:27:A1:A1:77:D4:26:12:21:D9:46:28:51:4A:52:5A:96:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/abAZJ6Ghd9QmEiHZRihRSlJaluA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/uDu_9P9n8eoGu8X-iDdUh-TfwAY.roa
Signing time: Tue 22 Apr 2025 11:36:10 +0000
ROA not before: Tue 22 Apr 2025 11:36:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6730
IP address blocks: 213.146.0.0/24 maxlen: 24
213.146.6.0/24 maxlen: 24
213.146.8.0/24 maxlen: 24
213.146.9.0/24 maxlen: 24
213.146.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/abAZJ6Ghd9QmEiHZRihRSlJaluA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/abAZJ6Ghd9QmEiHZRihRSlJaluA.mft
rsync://rpki.ripe.net/repository/DEFAULT/abAZJ6Ghd9QmEiHZRihRSlJaluA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:48:bf:0b:e9:45:c6:04:61:16:8f:a2:dd:42:5f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69b01927a1a177d4261221d94628514a525a96e0
Validity
Not Before: Apr 22 11:36:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b83bbff4ff67f1ea06bbc5fe88375487e4dfc006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:75:f8:59:fb:29:a7:8e:db:a1:37:b8:15:1f:
16:87:fb:48:c1:30:33:b4:b2:96:fe:bf:5b:60:5b:
c3:f6:80:dd:5d:d8:3c:8f:50:fd:81:80:35:17:22:
2c:13:92:88:7c:f4:a3:16:c9:7d:81:ab:d3:b9:4a:
6c:32:f0:57:2d:42:6f:91:23:e9:51:07:25:35:65:
6a:bb:c9:59:bf:c8:76:d0:f4:bb:9d:9b:57:5e:7a:
c0:cf:4b:d9:53:80:57:4b:a7:fc:78:7f:5b:7e:60:
33:3f:8b:5f:39:0b:d5:a3:ba:93:be:2f:f1:30:92:
e2:db:d3:de:8c:b8:da:3a:d3:e7:bf:54:38:d1:a4:
cb:01:d0:12:43:24:ce:9f:b7:91:df:1a:a4:8e:12:
a8:a1:6a:e2:99:e6:86:79:82:57:68:21:b9:90:37:
3a:2d:5f:ec:7d:0e:22:b5:90:fe:39:bb:5d:a1:02:
48:6a:a2:3e:f8:81:b7:4a:c1:9b:f9:5c:15:5c:9e:
b9:36:11:fb:66:9c:65:95:ba:23:06:eb:1f:40:69:
0b:b2:d7:af:a1:43:c4:1d:48:63:b2:db:3f:00:54:
fe:34:41:15:2c:c4:d3:16:2e:b0:e9:41:1b:5d:ec:
16:0a:0b:40:96:1f:cd:2d:a1:9b:20:20:c3:a2:6d:
44:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3B:BF:F4:FF:67:F1:EA:06:BB:C5:FE:88:37:54:87:E4:DF:C0:06
X509v3 Authority Key Identifier:
keyid:69:B0:19:27:A1:A1:77:D4:26:12:21:D9:46:28:51:4A:52:5A:96:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/abAZJ6Ghd9QmEiHZRihRSlJaluA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/uDu_9P9n8eoGu8X-iDdUh-TfwAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/328eb3-5603-4955-aa92-2252bccfdbf9/1/abAZJ6Ghd9QmEiHZRihRSlJaluA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.146.0.0/24
213.146.6.0/24
213.146.8.0/23
213.146.11.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:a4:36:ce:7c:39:0a:c8:12:de:bd:b0:83:e2:1e:48:bf:3d:
bd:c1:e9:78:4a:85:85:f4:e7:19:2b:94:85:ac:cb:51:76:56:
88:a0:db:ee:27:be:09:3f:48:37:31:06:0d:60:31:21:ed:29:
6d:b7:e7:15:59:d5:26:b2:20:82:95:b6:7e:9c:c6:b3:ed:bb:
79:72:75:f0:0b:2e:9c:31:01:19:81:9f:cd:ef:7b:8b:db:97:
4e:c6:2c:f4:45:c3:aa:f1:81:45:6d:90:2f:5a:08:cb:71:65:
c6:30:6c:2e:09:0e:93:dd:12:a4:0a:6f:6e:fc:37:64:50:b6:
e3:33:2f:b2:e2:86:3f:16:81:9b:73:9e:3d:69:89:e8:d8:ad:
49:74:31:5a:b4:33:99:f9:b3:27:75:56:b9:ff:a9:00:2b:9c:
8e:c7:ff:4d:02:6b:a7:72:ca:d3:5f:e2:aa:57:9c:3e:89:4b:
f0:a8:24:53:60:24:b4:1a:42:e9:e5:08:f5:90:a0:4c:63:54:
c3:9c:fa:fd:90:8b:80:89:8e:ee:47:e2:cd:b9:f5:97:e4:0a:
95:55:ce:32:c5:1a:fc:6a:f5:2f:36:66:cd:a2:93:80:60:b0:
1e:6b:d2:3a:20:63:02:54:bb:bb:51:97:b2:7a:b1:de:e1:fb:
46:e7:a6:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 06:37:07 2025 by rpki-client