Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/DxImOx_LjbbW5qRqk68u0Cu1-sQ.roa
File: DxImOx_LjbbW5qRqk68u0Cu1-sQ.roa (raw, json)
Hash identifier: ape7uiR4ZZbTkIG/kyNeBwlIHv8cWlil9k64NhQAZCk=
Subject key identifier: 0F:12:26:3B:1F:CB:8D:B6:D6:E6:A4:6A:93:AF:2E:D0:2B:B5:FA:C4
Certificate issuer: /CN=525b705a91dbc30ed10eb7222b7797b834e01863
Certificate serial: 019425FDE8567DC9EC33A6EDF685C31ABB5C
Authority key identifier: 52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/DxImOx_LjbbW5qRqk68u0Cu1-sQ.roa
Signing time: Thu 02 Jan 2025 07:49:44 +0000
ROA not before: Thu 02 Jan 2025 07:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213169
IP address blocks: 2a0d:eb04:8::/46 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/UltwWpHbww7RDrciK3eXuDTgGGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/UltwWpHbww7RDrciK3eXuDTgGGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 12:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:e8:56:7d:c9:ec:33:a6:ed:f6:85:c3:1a:bb:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=525b705a91dbc30ed10eb7222b7797b834e01863
Validity
Not Before: Jan 2 07:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f12263b1fcb8db6d6e6a46a93af2ed02bb5fac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b7:e3:a9:ab:ac:e2:1e:9d:8c:12:28:ee:bf:
49:8b:d8:b3:66:c0:07:ad:18:b6:2d:f7:54:5f:04:
b1:1c:0e:e0:7d:4c:9f:ed:45:93:1e:0d:11:08:16:
ee:f1:c0:d8:24:22:8d:30:72:0f:64:12:ee:2b:c2:
a7:ed:5a:5d:89:7b:89:38:f1:18:b6:fe:82:cc:59:
81:e7:5d:89:ff:1d:23:97:3e:09:44:60:2c:98:9d:
d4:a0:34:6c:86:fc:65:92:c0:68:a2:95:c2:22:92:
db:83:c6:e3:72:b4:8c:24:9e:11:b8:9d:7a:a7:a6:
55:08:61:71:cb:34:aa:f1:06:d1:94:bc:0b:e0:8d:
c0:48:5b:b6:48:f4:3c:50:b2:bf:d8:e6:47:90:aa:
af:98:f2:82:f6:22:4a:e2:07:92:52:e8:7e:00:49:
b1:6a:8c:69:a1:61:29:d4:c4:dc:a7:78:41:87:d2:
7f:9f:69:52:1d:c5:58:9b:1c:74:5b:10:d5:97:63:
a3:16:ab:05:fc:ad:34:f3:25:6f:2b:8c:ca:98:20:
06:12:4b:62:b6:e6:eb:a9:ca:66:4c:e3:af:09:d4:
de:32:e8:18:a6:de:34:fb:98:79:2b:8f:26:a7:cf:
68:a4:9e:e3:8e:bd:5b:c5:0c:c3:56:48:48:cf:3e:
a7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:12:26:3B:1F:CB:8D:B6:D6:E6:A4:6A:93:AF:2E:D0:2B:B5:FA:C4
X509v3 Authority Key Identifier:
keyid:52:5B:70:5A:91:DB:C3:0E:D1:0E:B7:22:2B:77:97:B8:34:E0:18:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UltwWpHbww7RDrciK3eXuDTgGGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/DxImOx_LjbbW5qRqk68u0Cu1-sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f462dc-9e59-4e8d-9c6d-f46887df9863/1/UltwWpHbww7RDrciK3eXuDTgGGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:eb04:8::/46
Signature Algorithm: sha256WithRSAEncryption
41:72:7e:df:d9:4a:ce:c0:70:22:74:82:22:58:07:72:da:a7:
ba:dc:40:ed:d7:ef:e2:d7:45:30:e5:a0:65:7d:ea:83:b1:92:
83:c2:83:52:9b:e5:f9:f9:f6:97:af:69:8b:db:62:22:f9:67:
c6:8b:43:2d:b4:ed:fc:04:6d:cc:16:1f:95:e6:28:e0:e6:62:
8f:28:92:d6:73:dc:95:9e:54:fe:83:4b:0f:2b:95:8e:02:e3:
4d:14:3f:7a:ea:8a:df:e3:c5:03:1a:6f:2b:ba:36:00:f0:7f:
6f:32:ee:1d:b2:9f:f5:8a:03:78:7c:10:91:4f:7e:ce:1d:7e:
66:34:1d:79:ba:3b:ee:58:f5:fd:1f:4a:c7:c3:6e:4f:9c:00:
99:d9:64:88:f2:fd:db:e5:f3:48:34:5e:67:1f:f1:3e:5f:56:
8e:67:ac:46:4b:3f:cc:c0:ac:0f:96:73:58:9c:39:1c:c4:5e:
cc:8a:15:fd:af:83:23:53:b2:fb:1b:c2:5a:d2:c0:24:bc:4c:
12:3e:25:f2:d0:ce:49:b0:6f:ca:84:4d:71:3d:98:a8:7b:33:
f7:17:ee:d9:9c:af:e7:ca:84:95:8f:74:5d:bb:31:87:33:cd:
6f:35:31:8f:1b:79:e8:49:a5:cc:10:cd:67:e4:64:43:e1:b3:
62:b3:92:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:49:01 2025 by rpki-client