Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/DqONGyN4f2QiR_JBPW1YDEERSgY.roa
File: DqONGyN4f2QiR_JBPW1YDEERSgY.roa (raw, json)
Hash identifier: hcUdhN/Q72hQMfPXTJG/rkvmfnNKO0VTd/wDCAV6Uog=
Subject key identifier: 0E:A3:8D:1B:23:78:7F:64:22:47:F2:41:3D:6D:58:0C:41:11:4A:06
Certificate issuer: /CN=2bb330942298f75823cbb980c8eb2acf0b7c0c1b
Certificate serial: 01942827F954BF6DC0B90E328E521D092004
Authority key identifier: 2B:B3:30:94:22:98:F7:58:23:CB:B9:80:C8:EB:2A:CF:0B:7C:0C:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7MwlCKY91gjy7mAyOsqzwt8DBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/DqONGyN4f2QiR_JBPW1YDEERSgY.roa
Signing time: Thu 02 Jan 2025 17:54:55 +0000
ROA not before: Thu 02 Jan 2025 17:54:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215284
IP address blocks: 185.40.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/K7MwlCKY91gjy7mAyOsqzwt8DBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/K7MwlCKY91gjy7mAyOsqzwt8DBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7MwlCKY91gjy7mAyOsqzwt8DBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 05:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:f9:54:bf:6d:c0:b9:0e:32:8e:52:1d:09:20:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb330942298f75823cbb980c8eb2acf0b7c0c1b
Validity
Not Before: Jan 2 17:54:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0ea38d1b23787f642247f2413d6d580c41114a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bc:b0:98:c0:f9:bd:72:d3:a6:a4:29:5e:61:
a0:d3:05:a0:2f:a6:b3:ff:c1:c6:fe:4f:d5:7d:d6:
c3:48:e4:bf:46:6d:bd:86:33:b1:98:54:78:a5:c0:
7d:fc:56:74:0a:1c:5a:5b:0e:02:23:62:75:5f:26:
75:65:13:99:d6:eb:d9:57:ad:de:71:da:d5:27:9b:
34:a8:b9:ea:43:27:4d:6f:ff:91:ad:6c:bc:13:44:
4c:be:db:96:23:66:4f:70:35:8b:ad:0d:4a:d3:d6:
97:9e:e9:ad:29:b9:fb:06:a0:d4:0d:9d:e8:92:b8:
b8:f7:18:84:d2:ca:6a:d2:dd:7c:48:5c:ec:99:37:
55:75:38:d3:e4:35:ed:89:87:b7:87:63:7b:6a:58:
60:eb:1c:fe:af:0d:a7:c1:6b:4e:e9:21:fb:37:14:
8b:ff:05:b9:90:42:07:8e:74:f0:62:c2:34:b8:a8:
aa:4c:0b:06:7f:8b:ba:eb:43:3f:66:79:66:7e:dd:
69:02:b7:3d:64:ae:65:ee:1b:78:ae:54:a6:10:2a:
9a:c9:c8:82:19:fb:47:07:c8:05:63:4f:78:f9:8b:
ca:b3:51:6e:ee:53:aa:02:c5:38:4e:54:6b:26:0c:
e0:57:0b:7a:86:25:29:07:c0:05:4d:e5:d8:8d:3d:
8e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A3:8D:1B:23:78:7F:64:22:47:F2:41:3D:6D:58:0C:41:11:4A:06
X509v3 Authority Key Identifier:
keyid:2B:B3:30:94:22:98:F7:58:23:CB:B9:80:C8:EB:2A:CF:0B:7C:0C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7MwlCKY91gjy7mAyOsqzwt8DBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/DqONGyN4f2QiR_JBPW1YDEERSgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/990747-3454-4412-8f06-6b3a47667ca8/1/K7MwlCKY91gjy7mAyOsqzwt8DBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.34.0/24
Signature Algorithm: sha256WithRSAEncryption
66:2c:61:a6:e5:29:ba:83:d0:ca:dc:5a:f4:97:cb:14:8c:f0:
d7:7e:7e:a6:8d:35:68:ab:5e:81:0e:d6:76:e6:77:fd:5a:83:
c6:f8:18:95:a7:db:fd:3f:98:4c:96:97:41:75:84:4e:28:bf:
d0:3f:da:64:bc:2d:4b:3a:3b:ae:17:2c:27:ba:3c:8e:44:bf:
d9:48:9a:28:5c:6e:e6:a8:30:43:e0:42:b0:c8:d0:35:f4:a8:
c5:85:68:80:5a:39:b7:56:2d:54:d2:b1:e4:fe:e2:d0:20:25:
bc:6d:81:6d:d4:b8:8a:57:6d:75:46:28:a7:9c:fa:d8:b1:3e:
04:76:0c:15:6d:6e:68:df:1c:6e:40:9a:f9:ca:b1:be:f4:87:
da:af:c6:27:a4:70:2c:6b:98:a2:7b:c0:58:f7:46:7c:69:7b:
5b:75:85:46:62:c6:1e:43:b3:9a:13:ad:3e:a0:5c:7b:72:d6:
05:89:cc:20:f7:bb:b9:8b:bc:06:4a:ba:d0:a0:4f:9c:af:2a:
66:83:6c:22:d6:46:c7:dc:a3:35:09:3a:f4:2b:14:f0:e8:c9:
cf:05:0b:d5:85:ce:c8:0c:4e:c8:10:a3:dd:fe:6c:67:5e:d8:
ac:8c:17:da:1a:6a:9f:80:74:81:45:5e:ad:99:bc:ec:d6:ff:
61:7d:66:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJ/lUv23AuQ4yjlIdCSAEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYjMzMDk0MjI5OGY3NTgyM2NiYjk4MGM4ZWIyYWNmMGI3
YzBjMWIwHhcNMjUwMTAyMTc1NDU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWEzOGQxYjIzNzg3ZjY0MjI0N2YyNDEzZDZkNTgwYzQxMTE0YTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbywmMD5vXLTpqQpXmGg0wWgL6az
/8HG/k/VfdbDSOS/Rm29hjOxmFR4pcB9/FZ0ChxaWw4CI2J1XyZ1ZROZ1uvZV63e
cdrVJ5s0qLnqQydNb/+RrWy8E0RMvtuWI2ZPcDWLrQ1K09aXnumtKbn7BqDUDZ3o
kri49xiE0spq0t18SFzsmTdVdTjT5DXtiYe3h2N7alhg6xz+rw2nwWtO6SH7NxSL
/wW5kEIHjnTwYsI0uKiqTAsGf4u660M/Znlmft1pArc9ZK5l7ht4rlSmECqayciC
GftHB8gFY094+YvKs1Fu7lOqAsU4TlRrJgzgVwt6hiUpB8AFTeXYjT2O3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA6jjRsjeH9kIkfyQT1tWAxBEUoGMB8GA1UdIwQY
MBaAFCuzMJQimPdYI8u5gMjrKs8LfAwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzdNd2xDS1k5MWdqeTdtQXlPc3F6d3Q4REJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85OTA3NDctMzQ1NC00NDEyLThmMDYt
NmIzYTQ3NjY3Y2E4LzEvRHFPTkd5TjRmMlFpUl9KQlBXMVlERUVSU2dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85OTA3NDctMzQ1NC00NDEyLThmMDYtNmIzYTQ3NjY3Y2E4
LzEvSzdNd2xDS1k5MWdqeTdtQXlPc3F6d3Q4REJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSgiMA0G
CSqGSIb3DQEBCwUAA4IBAQBmLGGm5Sm6g9DK3Fr0l8sUjPDXfn6mjTVoq16BDtZ2
5nf9WoPG+BiVp9v9P5hMlpdBdYROKL/QP9pkvC1LOjuuFywnujyORL/ZSJooXG7m
qDBD4EKwyNA19KjFhWiAWjm3Vi1U0rHk/uLQICW8bYFt1LiKV211RiinnPrYsT4E
dgwVbW5o3xxuQJr5yrG+9Ifar8YnpHAsa5iie8BY90Z8aXtbdYVGYsYeQ7OaE60+
oFx7ctYFicwg97u5i7wGSrrQoE+crypmg2wi1kbH3KM1CTr0KxTw6MnPBQvVhc7I
DE7IEKPd/mxnXtisjBfaGmqfgHSBRV6tmbzs1v9hfWbd
-----END CERTIFICATE-----
Generated at Sun Apr 13 14:30:14 2025 by rpki-client