Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wC6DsFwXeb5eGnIgBiuuCnh9et4.roa
File: wC6DsFwXeb5eGnIgBiuuCnh9et4.roa (raw, json)
Hash identifier: sGsXZWDl7SypOrlv+5/efuocDxm8kzfpm5Fu/6yQLrA=
Subject key identifier: C0:2E:83:B0:5C:17:79:BE:5E:1A:72:20:06:2B:AE:0A:78:7D:7A:DE
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 019422FC14C373B1686F5BC615015F9E02E1
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wC6DsFwXeb5eGnIgBiuuCnh9et4.roa
Signing time: Wed 01 Jan 2025 17:48:53 +0000
ROA not before: Wed 01 Jan 2025 17:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215955
IP address blocks: 81.22.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:14:c3:73:b1:68:6f:5b:c6:15:01:5f:9e:02:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 17:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c02e83b05c1779be5e1a7220062bae0a787d7ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fc:0a:71:65:02:f7:0a:c9:71:5a:47:b3:05:
03:46:81:6d:46:b3:67:90:32:e5:97:f3:8c:ce:5b:
cf:60:68:c6:d9:0a:38:9b:da:e8:2e:12:4c:da:5b:
e3:02:c6:88:46:25:8b:b7:25:21:00:51:99:f0:2f:
0b:3d:12:6b:01:80:06:55:fd:de:2e:90:81:e2:9e:
5f:7a:fd:1c:12:a3:bb:c7:c2:51:6c:44:57:93:83:
2a:54:c3:04:99:bd:ec:b8:aa:3b:91:d4:00:4f:64:
a4:33:ca:bb:58:cb:28:27:c7:bd:d5:c9:46:1d:5e:
f2:43:c3:d3:db:03:6a:b0:3b:f2:ac:cb:fb:47:c4:
3b:07:94:9d:da:91:ea:72:84:08:60:7f:a4:17:69:
ef:80:be:66:a4:40:e3:7b:81:77:e3:4c:f4:8d:b8:
3c:a0:fa:e8:8d:57:5a:c7:0a:7a:b0:02:44:8f:38:
cc:c2:32:9f:b1:3a:43:b1:da:d1:f8:6a:d2:fe:31:
90:7c:a3:a9:37:28:ab:53:65:e7:00:ad:99:3b:b3:
51:08:25:2e:78:0b:a1:21:40:14:44:38:c8:b5:7e:
c2:30:9d:85:9d:ac:1e:9d:48:a8:ba:60:6c:43:21:
46:c2:93:61:e4:36:51:b4:cd:4b:5f:eb:60:3d:d1:
4a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:2E:83:B0:5C:17:79:BE:5E:1A:72:20:06:2B:AE:0A:78:7D:7A:DE
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wC6DsFwXeb5eGnIgBiuuCnh9et4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.136.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b0:c0:c5:1f:7b:fb:1d:8c:a7:66:1d:69:db:96:19:3e:fd:
8d:7e:dd:3b:ca:2a:11:fc:38:79:5d:bc:f2:f3:41:07:e7:bb:
df:a4:2e:01:77:a7:3a:b6:85:15:31:f0:53:2f:cf:a7:77:47:
d8:f3:66:8f:2d:d2:9e:ff:7f:51:38:ae:bb:39:e8:4b:04:6f:
88:6c:b6:5e:6a:39:40:93:55:4b:39:ed:4c:73:03:3d:3e:b9:
be:9f:41:f3:95:89:b9:99:37:17:4b:ef:0a:82:c7:4b:0e:1e:
aa:5e:ec:6f:74:91:5f:ea:ef:77:ab:01:30:28:79:47:cc:81:
3b:11:7b:7f:0c:4e:27:c6:58:3b:ac:60:d9:da:de:c7:a4:32:
f0:40:a1:69:64:4b:fe:ca:a7:30:18:fe:52:21:aa:e9:87:fc:
9c:e8:3d:45:ad:ae:a2:38:c5:8e:f5:96:39:5f:a0:3c:aa:a4:
53:d0:31:a8:a1:32:78:08:5c:07:f2:a1:a0:b4:f8:ca:5d:9e:
db:f8:e1:33:d1:b4:a7:67:92:99:e3:c0:86:ef:ad:2b:3a:dc:
8e:ab:03:a5:f4:cb:ca:18:db:fe:22:09:c2:a7:d5:a7:7c:eb:
a1:a2:6f:a1:d9:2a:20:a6:4e:51:3b:64:9a:a8:9b:04:d5:ff:
70:16:dd:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:20:03 2025 by rpki-client