Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/393a0f-e456-46e2-a754-e46c13b1c76d/1/BZ13VNeYDJ675QrTvza6Su89fFQ.roa
File: BZ13VNeYDJ675QrTvza6Su89fFQ.roa (raw, json)
Hash identifier: 1LD0YSVmtKovTGtmhUY3CjQg1PtKAp7I1QWK9ijZOII=
Subject key identifier: 05:9D:77:54:D7:98:0C:9E:BB:E5:0A:D3:BF:36:BA:4A:EF:3D:7C:54
Certificate issuer: /CN=a83f1debd5d4784843faa288b2e01c88506c1cc9
Certificate serial: 019423D6DE5CFCBDD86DCAE0783A16884D83
Authority key identifier: A8:3F:1D:EB:D5:D4:78:48:43:FA:A2:88:B2:E0:1C:88:50:6C:1C:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD8d69XUeEhD-qKIsuAciFBsHMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/393a0f-e456-46e2-a754-e46c13b1c76d/1/BZ13VNeYDJ675QrTvza6Su89fFQ.roa
Signing time: Wed 01 Jan 2025 21:47:51 +0000
ROA not before: Wed 01 Jan 2025 21:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35009
IP address blocks: 45.82.180.0/24 maxlen: 24
45.82.181.0/24 maxlen: 24
45.82.182.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/393a0f-e456-46e2-a754-e46c13b1c76d/1/qD8d69XUeEhD-qKIsuAciFBsHMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/393a0f-e456-46e2-a754-e46c13b1c76d/1/qD8d69XUeEhD-qKIsuAciFBsHMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD8d69XUeEhD-qKIsuAciFBsHMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 09:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:de:5c:fc:bd:d8:6d:ca:e0:78:3a:16:88:4d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83f1debd5d4784843faa288b2e01c88506c1cc9
Validity
Not Before: Jan 1 21:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=059d7754d7980c9ebbe50ad3bf36ba4aef3d7c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:bd:32:02:2b:34:3e:91:8a:6c:62:aa:b6:ae:
d1:f5:dd:91:dc:2b:5f:9b:19:9c:2d:79:39:53:51:
df:4e:3e:9b:43:63:56:a8:22:1e:90:92:fd:9c:58:
81:4f:b4:9f:1d:23:d9:02:47:8a:e2:c4:f6:53:9a:
9a:ce:76:8c:86:81:68:a3:35:87:23:d4:ef:a8:4d:
a4:4e:11:e0:4b:52:53:40:21:91:79:1f:a2:c0:15:
74:f1:cf:03:c9:fe:f2:e0:9b:44:39:63:05:59:35:
6d:a2:85:3e:47:28:73:db:92:8d:f8:5d:9c:4d:f7:
b7:24:aa:29:48:14:9f:21:0a:31:5e:de:c6:c9:e1:
d8:6e:45:41:cb:89:c7:6e:bd:f1:f2:9b:d0:4a:ad:
82:c8:62:ab:09:bc:38:1d:ce:a9:1f:a4:de:a0:c4:
36:2d:ac:02:9b:fd:65:fd:b7:e3:e5:71:74:16:cd:
55:3d:5e:eb:98:cc:03:44:be:29:71:4c:d9:a5:83:
20:1c:0f:77:95:d6:21:a9:22:ec:d4:98:61:ca:d7:
13:02:4d:50:7e:f3:ba:6d:ab:16:98:6a:73:46:23:
c4:84:2b:ec:bf:37:5f:23:6c:75:f1:42:76:07:e7:
08:ba:98:7e:7d:62:d7:c3:8f:c3:68:1b:11:6d:cd:
53:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:9D:77:54:D7:98:0C:9E:BB:E5:0A:D3:BF:36:BA:4A:EF:3D:7C:54
X509v3 Authority Key Identifier:
keyid:A8:3F:1D:EB:D5:D4:78:48:43:FA:A2:88:B2:E0:1C:88:50:6C:1C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD8d69XUeEhD-qKIsuAciFBsHMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/393a0f-e456-46e2-a754-e46c13b1c76d/1/BZ13VNeYDJ675QrTvza6Su89fFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/393a0f-e456-46e2-a754-e46c13b1c76d/1/qD8d69XUeEhD-qKIsuAciFBsHMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.180.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:41:62:dd:5c:08:f3:da:49:dd:78:e9:fc:99:1b:20:4e:23:
89:e1:8f:a2:40:98:c2:06:dd:64:e4:44:bf:be:d9:09:5a:16:
6b:9d:13:e9:a1:40:65:eb:ff:f5:5a:34:f8:a2:68:76:3d:55:
72:8a:02:af:4a:f5:1a:9d:09:76:1c:5b:1b:ac:6f:8f:d7:8e:
99:30:a6:91:75:72:c4:bd:6a:ff:e3:45:38:7f:a0:9f:68:91:
1e:3e:85:e7:03:6a:83:f6:ee:3d:45:f1:18:d9:4b:94:93:cb:
ee:02:37:77:6a:da:ab:46:3c:f8:7e:8b:d2:5b:50:da:9f:b9:
da:29:e3:25:b9:ec:4a:cc:b9:60:ad:b3:79:f3:b4:a9:b5:c4:
cb:05:13:a7:dd:ed:6c:54:13:9c:67:c8:67:c0:f2:81:c3:d2:
a2:ac:38:25:30:a9:84:c1:1f:e2:b5:f4:94:94:9f:97:de:d4:
83:fe:33:9f:cf:d6:fb:81:8e:2f:85:6e:b4:12:ab:d8:5e:7a:
28:ed:7d:d3:80:22:29:17:4a:65:0e:58:a9:dd:88:38:22:dc:
2d:8d:be:1f:0d:9a:d1:e7:b4:23:5e:01:43:24:1f:b3:d0:24:
bb:2c:a2:e8:f5:9e:ce:3e:c1:a7:49:3f:1a:bc:12:b3:63:8f:
d6:33:da:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:38 2025 by rpki-client