Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/vpR9-ZbcT1ltDzDic6BcBQlvL2k.roa
File: vpR9-ZbcT1ltDzDic6BcBQlvL2k.roa (raw, json)
Hash identifier: 0ArIhEz6bgQZv//SNxZOBrdaxKUoYY4IRksSFSrZU6c=
Subject key identifier: BE:94:7D:F9:96:DC:4F:59:6D:0F:30:E2:73:A0:5C:05:09:6F:2F:69
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0194228D3CBE98405FBABC18FF837427D15F
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/vpR9-ZbcT1ltDzDic6BcBQlvL2k.roa
Signing time: Wed 01 Jan 2025 15:47:48 +0000
ROA not before: Wed 01 Jan 2025 15:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205349
IP address blocks: 62.89.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:3c:be:98:40:5f:ba:bc:18:ff:83:74:27:d1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 15:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be947df996dc4f596d0f30e273a05c05096f2f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0d:f8:4d:82:10:70:0b:a7:24:52:56:ea:59:
c4:ba:3d:dd:50:50:10:f3:98:dc:a3:45:d1:b1:0f:
10:d9:4d:fb:e3:b5:dd:bb:09:39:64:0c:bd:e1:32:
eb:86:f6:d2:1b:d2:67:be:70:c8:0f:80:33:39:2a:
c0:c1:48:25:de:69:9e:32:d0:5f:95:ce:6d:13:84:
29:08:91:3e:48:ae:59:cb:9e:3d:57:a3:1c:ee:b5:
d8:7f:79:e8:c9:f2:f8:bf:df:9a:51:65:4b:99:b9:
ad:42:b0:46:b3:68:f0:18:90:01:e6:5c:7d:a7:f6:
35:b5:7f:d3:3f:3d:e0:70:e8:40:b1:e8:82:30:58:
5d:6b:d3:1b:18:17:91:7a:ee:02:94:a5:60:11:93:
ff:29:34:e5:2c:97:d9:71:a0:ce:74:99:84:31:5c:
30:34:58:7a:54:5b:f6:10:f8:99:59:45:bb:f6:78:
13:4f:3f:31:03:91:8b:86:5e:bb:7b:40:b0:69:c4:
86:5e:56:d5:8f:c1:9a:49:75:49:23:7b:26:02:ad:
e0:c5:28:46:97:16:d7:fb:10:b5:d3:81:02:d4:6b:
f1:b8:0b:2d:0f:71:43:15:16:c8:92:99:b8:f2:62:
33:32:5b:7c:2d:ac:e1:7f:22:1b:54:52:0a:12:07:
68:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:94:7D:F9:96:DC:4F:59:6D:0F:30:E2:73:A0:5C:05:09:6F:2F:69
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/vpR9-ZbcT1ltDzDic6BcBQlvL2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.89.205.0/24
Signature Algorithm: sha256WithRSAEncryption
78:6b:b9:51:ed:84:2a:c0:3e:2f:e7:64:e9:11:06:7b:fc:ab:
67:6d:3c:5e:4e:d4:15:dd:01:1f:9f:55:d7:45:33:47:0a:13:
0c:9a:66:5b:88:85:c2:f1:10:40:36:59:cb:e4:de:fd:0c:da:
43:46:dc:18:bb:fa:d1:79:88:28:44:f6:ae:e6:64:d5:ac:49:
72:88:bc:7a:7f:c5:23:e0:0f:d2:4a:e1:7e:a3:8f:d6:a7:04:
45:2f:2f:c6:26:25:9b:51:0f:1d:21:63:c1:a1:23:a5:73:81:
a8:c9:46:56:7f:19:95:03:3e:c5:bb:fb:30:62:d5:9e:2c:8f:
11:0c:8f:5d:20:72:1e:f9:5f:1f:82:72:d4:d6:c0:bf:a0:ce:
17:d3:8e:48:21:42:fe:dc:92:94:ad:9c:e3:8a:ad:7d:05:b8:
16:fe:bf:3f:87:f8:7a:82:9c:e8:f8:35:2c:96:16:7c:c9:c1:
3a:e0:54:28:c2:dc:bc:08:14:fa:0c:76:8f:f5:0b:e7:af:32:
0d:cd:ad:12:1e:4e:35:11:14:6b:6c:bd:6d:2a:37:fe:43:c5:
13:0c:1b:84:c1:37:11:5e:22:05:8a:a7:b9:3e:c5:7b:56:aa:
65:b1:b5:95:e9:7e:93:2c:3a:ff:02:de:e7:f6:7d:1b:2d:6b:
41:fe:82:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:46 2025 by rpki-client