Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/6VURpuoGIEu-l_P4ZeBewDi5ITQ.roa
File: 6VURpuoGIEu-l_P4ZeBewDi5ITQ.roa (raw, json)
Hash identifier: 4B+IYvzd1z7mLmwV7sB69BtJr1xQnLEcg/11m55OmVA=
Subject key identifier: E9:55:11:A6:EA:06:20:4B:BE:97:F3:F8:65:E0:5E:C0:38:B9:21:34
Certificate issuer: /CN=d447813ce52a823ea1efc9a0f4933c5d3353ee2b
Certificate serial: 01942068723951EF4530731DFAE4A784812F
Authority key identifier: D4:47:81:3C:E5:2A:82:3E:A1:EF:C9:A0:F4:93:3C:5D:33:53:EE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EeBPOUqgj6h78mg9JM8XTNT7is.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/6VURpuoGIEu-l_P4ZeBewDi5ITQ.roa
Signing time: Wed 01 Jan 2025 05:48:23 +0000
ROA not before: Wed 01 Jan 2025 05:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208976
IP address blocks: 45.130.46.0/24 maxlen: 24
2a12:66c0::/32 maxlen: 32
2a12:66c7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/1EeBPOUqgj6h78mg9JM8XTNT7is.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/1EeBPOUqgj6h78mg9JM8XTNT7is.mft
rsync://rpki.ripe.net/repository/DEFAULT/1EeBPOUqgj6h78mg9JM8XTNT7is.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:72:39:51:ef:45:30:73:1d:fa:e4:a7:84:81:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d447813ce52a823ea1efc9a0f4933c5d3353ee2b
Validity
Not Before: Jan 1 05:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e95511a6ea06204bbe97f3f865e05ec038b92134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:46:ee:d3:9e:99:43:5f:78:3f:ef:ee:46:08:
24:d8:4f:c4:de:a4:b8:3e:ae:df:ec:60:b2:42:f3:
af:ca:f4:d3:9b:4a:d7:06:ab:33:ac:59:e6:53:c1:
58:6b:e0:c4:44:cc:d8:1b:88:bc:a9:c1:27:41:ab:
0c:38:c5:4c:b9:81:75:07:2e:2e:8e:ae:f2:aa:26:
d9:f7:e8:e3:f0:06:ea:80:b7:1d:77:24:51:a6:f0:
d7:cc:fb:7e:88:c6:75:b7:03:44:56:91:70:c9:75:
11:94:23:1e:f4:08:4f:ad:20:0a:46:94:a9:90:2c:
d9:28:da:6e:85:3b:09:f7:ce:07:d8:c8:0e:2a:d1:
93:72:d2:fa:ad:ef:29:e4:40:ab:cb:ac:3b:30:27:
b4:b1:e0:05:43:32:24:88:88:af:4e:d5:ff:c8:eb:
5a:93:d8:e6:36:bc:89:77:33:1f:2d:3e:65:04:ee:
b9:70:94:c6:75:a1:3b:a1:fb:a8:70:10:a6:62:b3:
70:69:cb:ff:b9:d0:3b:91:b0:f2:b4:6b:57:a6:dd:
0e:00:de:bc:9f:d6:4f:33:e8:46:de:8a:cd:95:07:
ef:97:47:8b:5f:e4:fc:6f:8d:79:df:8f:22:7b:c0:
83:e4:d1:0b:c2:62:b3:18:f9:f8:a4:a8:85:21:9e:
c6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:55:11:A6:EA:06:20:4B:BE:97:F3:F8:65:E0:5E:C0:38:B9:21:34
X509v3 Authority Key Identifier:
keyid:D4:47:81:3C:E5:2A:82:3E:A1:EF:C9:A0:F4:93:3C:5D:33:53:EE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EeBPOUqgj6h78mg9JM8XTNT7is.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/6VURpuoGIEu-l_P4ZeBewDi5ITQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/fa77d3-cedb-459d-95cf-dc7e126ca234/1/1EeBPOUqgj6h78mg9JM8XTNT7is.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.46.0/24
IPv6:
2a12:66c0::/32
2a12:66c7::/48
Signature Algorithm: sha256WithRSAEncryption
32:b6:a5:82:85:df:23:30:39:04:d8:9e:ab:67:1a:94:42:c3:
cf:2f:49:05:67:c1:76:fa:78:97:31:1e:38:a6:88:44:a8:12:
57:cd:2f:fa:57:5e:5b:9a:aa:2a:c7:d9:20:49:87:b4:6d:9e:
1d:7f:69:49:ec:dd:61:60:4b:a2:04:d4:77:1e:c0:0a:42:8e:
05:42:ac:86:bc:97:b4:10:b9:3b:45:e8:77:2b:43:1c:bc:ff:
65:99:ca:40:91:a6:9f:fa:1f:2e:a4:f8:67:3b:d9:fe:da:4f:
d3:57:45:40:32:ad:ef:f0:e1:2e:02:0d:03:2e:08:49:fb:77:
9c:ae:f9:a7:2e:f4:4b:3e:aa:30:fa:30:65:48:e8:25:58:a9:
95:f3:3d:e5:25:1f:eb:38:7d:4e:82:19:66:e6:a2:ab:e4:9c:
75:4d:45:81:dc:c7:0b:5f:e7:d6:65:58:79:ee:b9:81:a0:06:
2b:ac:ee:e0:68:89:67:3a:53:b1:98:be:ba:98:8b:ec:d3:8b:
cc:81:aa:3c:e2:65:6b:26:31:f1:f9:ae:83:a2:05:5e:b8:f9:
b1:38:a6:0c:60:f4:9c:47:7a:ae:26:67:83:1d:bf:88:22:f5:
ea:f5:cc:bf:aa:4d:58:f1:36:f3:39:20:bd:cd:7f:b9:e6:58:
e6:8e:3a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:44 2025 by rpki-client