Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/SgPPQdtZUoyiOUWM0sxUHUlUJr8.roa
File: SgPPQdtZUoyiOUWM0sxUHUlUJr8.roa (raw, json)
Hash identifier: ZuhWu6sSU08RMDp6zp0rn4nSexubUB6ztzo9uaGATPk=
Subject key identifier: 4A:03:CF:41:DB:59:52:8C:A2:39:45:8C:D2:CC:54:1D:49:54:26:BF
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0194258F9F15DF1367EF76CA9BD538D5BDBE
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/SgPPQdtZUoyiOUWM0sxUHUlUJr8.roa
Signing time: Thu 02 Jan 2025 05:49:16 +0000
ROA not before: Thu 02 Jan 2025 05:49:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62036
IP address blocks: 92.63.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 13:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:9f:15:df:13:67:ef:76:ca:9b:d5:38:d5:bd:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 05:49:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a03cf41db59528ca239458cd2cc541d495426bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:35:7a:6a:a9:bb:ef:ca:74:f5:07:92:e3:be:
1b:f5:7c:ca:94:62:6f:ba:53:e7:af:18:00:28:f7:
2f:4b:6e:ad:66:7e:a2:ea:59:51:66:a4:25:f1:e2:
43:7a:b0:80:b3:70:28:8b:2f:70:fc:e3:2c:3a:33:
d6:28:45:71:1b:b5:36:fc:4a:d1:2e:00:09:51:7e:
39:4b:73:29:2c:cf:fe:fb:3b:ce:04:98:93:13:d8:
74:dd:52:de:2f:1c:63:5a:9a:2a:0d:86:1c:dc:1d:
39:0b:59:08:03:62:4a:1a:27:6a:6d:e0:70:1b:cb:
7a:73:e3:00:a5:da:33:8d:1f:b3:90:72:19:ef:22:
d8:8f:2a:88:1c:9c:8d:8c:ca:09:73:a4:d4:a8:b9:
c5:de:3d:3c:ac:47:65:d7:40:32:b1:61:79:36:ab:
db:bb:63:f4:0f:3a:bd:25:51:4a:d1:8c:3a:6c:49:
e6:ef:98:b7:36:6a:26:04:29:7f:4e:2f:6a:0d:8b:
74:90:43:54:c1:b0:9d:71:ad:2e:17:5f:cc:a1:97:
ad:2f:24:ed:6a:6f:a4:4a:b3:c6:e8:a5:c7:d1:97:
8d:87:88:c5:53:09:9e:0c:9e:5f:43:8e:6b:6c:2e:
88:36:f3:08:5d:7a:a8:d8:5b:07:b3:5c:32:e7:1d:
dc:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:03:CF:41:DB:59:52:8C:A2:39:45:8C:D2:CC:54:1D:49:54:26:BF
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/SgPPQdtZUoyiOUWM0sxUHUlUJr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.190.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d1:07:cb:a3:cb:a7:66:0d:44:32:12:c2:cc:20:b4:37:91:
77:57:e7:02:52:14:76:b6:1a:0a:aa:2d:55:c7:78:68:86:00:
58:33:9f:aa:fe:d8:ab:b6:07:c8:5e:d6:41:e9:df:a3:83:f5:
45:9b:e0:17:03:75:d4:58:26:35:10:25:0c:56:21:51:c5:00:
99:f2:98:a8:0f:2f:7a:91:a0:38:3f:f9:62:b0:22:2e:13:33:
55:1e:d1:b4:94:77:39:95:6e:ea:64:33:7d:99:66:81:26:1c:
e3:ac:13:f8:d3:6b:bb:6e:01:0b:42:3d:19:cd:45:e5:50:cd:
af:f5:28:60:a1:05:73:6c:f5:37:5e:80:c6:71:2c:0a:4c:3f:
3a:62:52:3d:25:18:86:f8:d4:9f:cd:24:69:4a:c4:e8:8a:22:
56:82:03:d0:34:84:ed:45:3d:27:46:a7:c9:46:19:a7:4f:06:
f2:13:f5:4e:03:a3:c5:44:2b:b7:3d:82:a1:91:f6:2b:1e:be:
45:19:db:1d:65:9c:88:2f:47:db:f1:b7:52:d6:37:3a:f3:0f:
d4:9d:ac:06:55:ed:bb:06:4a:63:8f:40:84:c3:13:86:ba:cb:
d4:3b:37:9a:45:39:ec:12:31:65:2a:15:f2:5e:86:50:6f:31:
95:11:5b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:32:23 2025 by rpki-client