Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/660e54-5c85-4d25-8e61-7ca11dc3ae82/1/fHXFtYnbSLZ1gn7isNOv-X6g-Vc.roa
File: fHXFtYnbSLZ1gn7isNOv-X6g-Vc.roa (raw, json)
Hash identifier: oCDSfP23EAfcpuHp3yCgmbR/p7P3oSuSoD6KDdGkf7Q=
Subject key identifier: 7C:75:C5:B5:89:DB:48:B6:75:82:7E:E2:B0:D3:AF:F9:7E:A0:F9:57
Certificate issuer: /CN=9fe94d2eedcd824ac1de74ade36c1f9d69d496ca
Certificate serial: 019420D64E4CA815DAD39A90627586AC8B17
Authority key identifier: 9F:E9:4D:2E:ED:CD:82:4A:C1:DE:74:AD:E3:6C:1F:9D:69:D4:96:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n-lNLu3NgkrB3nSt42wfnWnUlso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/660e54-5c85-4d25-8e61-7ca11dc3ae82/1/fHXFtYnbSLZ1gn7isNOv-X6g-Vc.roa
Signing time: Wed 01 Jan 2025 07:48:23 +0000
ROA not before: Wed 01 Jan 2025 07:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58006
IP address blocks: 176.122.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/660e54-5c85-4d25-8e61-7ca11dc3ae82/1/n-lNLu3NgkrB3nSt42wfnWnUlso.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/660e54-5c85-4d25-8e61-7ca11dc3ae82/1/n-lNLu3NgkrB3nSt42wfnWnUlso.mft
rsync://rpki.ripe.net/repository/DEFAULT/n-lNLu3NgkrB3nSt42wfnWnUlso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:4e:4c:a8:15:da:d3:9a:90:62:75:86:ac:8b:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fe94d2eedcd824ac1de74ade36c1f9d69d496ca
Validity
Not Before: Jan 1 07:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c75c5b589db48b675827ee2b0d3aff97ea0f957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:90:66:99:66:a0:d9:52:83:d0:f6:44:89:1f:
cc:cf:53:fe:dc:02:79:8c:97:a1:2d:cd:bc:b3:10:
31:a5:de:c0:cf:29:62:d1:12:b0:d3:de:91:48:ee:
3c:59:7a:1b:19:1f:c2:d0:0b:a6:ce:f7:20:34:e0:
1d:06:84:04:58:09:71:95:0b:f0:bc:0d:a7:8b:ad:
97:51:e4:0c:67:31:e7:f2:09:57:ab:c8:33:b4:33:
72:13:4b:ca:b3:df:ab:d3:25:a2:9a:cf:12:d1:15:
f6:94:5e:26:d0:bf:40:3d:e1:de:8d:5f:c1:75:79:
95:4a:b1:64:89:af:4d:37:97:bb:bf:d6:14:cd:f6:
1c:dd:06:6e:df:3b:28:2f:5d:9c:73:05:a6:fd:a3:
c8:39:12:80:24:e5:e7:45:66:02:44:04:ea:55:d6:
a1:c3:48:8a:cf:95:27:d3:81:ee:f9:07:3b:6a:ac:
ba:0a:ed:d6:23:83:71:f5:af:df:e0:a0:1c:cd:c3:
e1:6b:79:ab:52:cf:66:d5:b7:db:f6:40:ef:c6:45:
b9:38:48:ac:67:59:e0:39:61:c2:05:c9:89:5d:ae:
f1:69:ab:ca:c6:61:89:5d:b4:2d:9a:a6:c7:42:67:
00:2c:23:f6:c1:98:cd:90:61:d2:78:ae:82:af:a2:
ca:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:75:C5:B5:89:DB:48:B6:75:82:7E:E2:B0:D3:AF:F9:7E:A0:F9:57
X509v3 Authority Key Identifier:
keyid:9F:E9:4D:2E:ED:CD:82:4A:C1:DE:74:AD:E3:6C:1F:9D:69:D4:96:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n-lNLu3NgkrB3nSt42wfnWnUlso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/660e54-5c85-4d25-8e61-7ca11dc3ae82/1/fHXFtYnbSLZ1gn7isNOv-X6g-Vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/660e54-5c85-4d25-8e61-7ca11dc3ae82/1/n-lNLu3NgkrB3nSt42wfnWnUlso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.122.206.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:b2:e2:0e:f2:a6:6b:ef:96:be:83:d5:54:c6:9f:99:1d:98:
04:9e:e7:c3:8c:96:44:f9:f7:07:82:4e:7a:91:23:1c:ff:d3:
3e:11:61:e9:3b:d3:4b:02:8c:bf:9e:e6:5a:f0:77:8c:aa:e5:
09:7d:63:98:51:0f:03:24:e4:42:7c:93:6f:31:9b:7f:fa:1f:
4c:30:f9:9a:75:8f:d1:59:85:b3:f9:cd:b1:3b:f6:1d:2f:80:
4b:42:f5:7e:12:8a:b6:b3:b4:3f:d7:67:11:87:47:f4:88:2b:
30:0c:39:80:2d:f4:e0:f4:1f:aa:c1:03:a1:00:3b:44:32:cc:
71:63:5b:63:4f:65:d1:75:e7:ab:6f:09:b5:0d:f1:e3:d2:91:
da:8c:c3:a1:ac:ff:a9:cb:ed:ac:82:29:0b:fd:50:43:40:32:
d5:b5:df:d1:76:2a:2d:d6:18:60:b7:f1:a9:0d:8a:7d:44:7c:
b4:16:c6:42:2f:c1:71:e0:cf:74:1a:cf:23:24:a4:85:2d:84:
b5:02:ee:38:29:44:bf:1f:b6:96:54:19:8e:03:66:da:46:9d:
3f:fb:22:26:d6:2a:d8:ee:dc:61:3f:14:a2:13:ad:47:50:79:
ce:76:be:86:d7:a6:93:6c:e8:52:7b:c3:6b:c5:63:e8:d0:41:
85:e6:84:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 19:09:16 2025 by rpki-client