Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/eIUbhEvS312QdpTsSOJbOfKRhjg.roa
File: eIUbhEvS312QdpTsSOJbOfKRhjg.roa (raw, json)
Hash identifier: TDTdEPNKnFdTs1u7Iy6p2CE/KWnf5yhsocLiaVIOsqA=
Subject key identifier: 78:85:1B:84:4B:D2:DF:5D:90:76:94:EC:48:E2:5B:39:F2:91:86:38
Certificate issuer: /CN=ea583d61f2e57a6b16ea4b1a9ca27bb250d748ef
Certificate serial: 0194258EE4CD3171A567B54632697C6449EF
Authority key identifier: EA:58:3D:61:F2:E5:7A:6B:16:EA:4B:1A:9C:A2:7B:B2:50:D7:48:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6lg9YfLlemsW6ksanKJ7slDXSO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/eIUbhEvS312QdpTsSOJbOfKRhjg.roa
Signing time: Thu 02 Jan 2025 05:48:29 +0000
ROA not before: Thu 02 Jan 2025 05:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8495
IP address blocks: 193.25.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/6lg9YfLlemsW6ksanKJ7slDXSO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/6lg9YfLlemsW6ksanKJ7slDXSO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/6lg9YfLlemsW6ksanKJ7slDXSO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 20:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:e4:cd:31:71:a5:67:b5:46:32:69:7c:64:49:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea583d61f2e57a6b16ea4b1a9ca27bb250d748ef
Validity
Not Before: Jan 2 05:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78851b844bd2df5d907694ec48e25b39f2918638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:3d:bb:68:52:47:6f:a2:0f:38:79:de:96:
84:6c:d4:50:7b:5f:79:f5:c3:47:65:b1:d4:e6:90:
52:8d:b1:c8:f6:c2:4e:7e:89:f7:ca:7e:77:05:d5:
e8:a7:97:3e:ad:d6:30:78:f3:07:fa:1c:e3:8b:55:
40:a1:7b:4d:99:79:be:c5:7c:7f:5d:9a:34:e9:cb:
f8:4a:1c:d1:23:b3:88:56:3c:3c:71:bf:bd:5b:19:
5e:04:6f:36:a8:80:e3:47:5d:06:35:3d:63:ff:c6:
24:85:11:91:2f:9b:b3:d9:13:a2:db:99:24:e0:43:
e4:cf:9f:d3:69:da:b9:cf:28:5e:ee:5d:37:77:e1:
02:d1:04:ba:c9:34:03:0e:11:8e:6f:4b:6f:7a:35:
84:a1:03:b9:cb:ff:d1:32:1c:e0:9e:26:36:ec:36:
04:16:da:f6:19:1c:31:a6:82:5e:0e:d6:d4:6d:23:
41:2a:c2:79:ef:30:5d:a0:95:80:d7:af:32:b2:58:
ad:fb:1b:d5:d5:b5:03:9a:49:4b:4d:18:60:2d:11:
ec:cd:69:9f:64:cf:27:b4:a9:cc:d7:4c:84:23:b4:
ea:97:60:20:d2:04:c9:8f:1b:21:50:93:8b:e4:a6:
ee:88:6b:91:54:38:7d:a8:48:f4:c9:b9:e2:77:22:
e6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:85:1B:84:4B:D2:DF:5D:90:76:94:EC:48:E2:5B:39:F2:91:86:38
X509v3 Authority Key Identifier:
keyid:EA:58:3D:61:F2:E5:7A:6B:16:EA:4B:1A:9C:A2:7B:B2:50:D7:48:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6lg9YfLlemsW6ksanKJ7slDXSO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/eIUbhEvS312QdpTsSOJbOfKRhjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/6lg9YfLlemsW6ksanKJ7slDXSO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.172.0/24
Signature Algorithm: sha256WithRSAEncryption
17:9d:b0:0a:a0:8c:c7:69:00:28:12:00:67:25:f5:dd:50:a4:
c7:01:dc:03:d5:99:8e:59:78:f1:87:ef:06:14:61:24:29:57:
c2:7f:ba:e7:de:01:5f:ea:2c:a5:ba:06:7f:ba:51:70:e4:26:
16:d0:76:67:b4:0d:7b:20:d1:b6:eb:9f:f4:bb:6c:e7:b9:d6:
0a:4a:c1:29:6c:44:b7:54:c2:20:7d:96:85:ef:3f:3a:90:df:
d4:42:b7:b0:76:3b:50:b3:ca:2d:9b:44:7a:51:55:3d:c2:3d:
a9:a9:d1:33:bd:d6:56:34:b1:76:65:60:7a:e2:77:39:f4:f2:
8a:6f:07:55:bd:4a:35:e7:9a:c4:58:06:69:3d:06:9a:77:53:
99:28:9c:f2:03:85:6d:67:1f:7c:6e:52:63:ae:ae:ff:bf:46:
15:c6:79:39:b8:e0:bd:8c:ef:aa:e0:24:04:bb:06:ad:e8:6b:
bc:9a:da:83:17:ae:53:1c:46:cc:1d:07:6b:2e:f0:7f:b0:da:
0b:e8:61:d6:30:1b:63:94:a4:47:98:95:f1:ff:0e:68:b1:4d:
a0:de:09:00:b6:ba:fa:5c:a5:73:4c:b6:fe:3e:66:63:65:b7:
dc:9a:9d:35:87:39:3b:35:ec:de:4b:9a:21:50:9e:75:7d:61:
a3:ce:63:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:09:57 2025 by rpki-client