Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/gF7051dp_cMuLgQvCjwhgEPPRqw.roa
File: gF7051dp_cMuLgQvCjwhgEPPRqw.roa (raw, json)
Hash identifier: q3Q/Dxx58MNi5+ugrnS2SfmFlMdjPiuWsnFSR9Imvjo=
Subject key identifier: 80:5E:F4:E7:57:69:FD:C3:2E:2E:04:2F:0A:3C:21:80:43:CF:46:AC
Certificate issuer: /CN=4eeb6b2c3e09ca1c45fd7547e458946cc8a468b4
Certificate serial: 01942444E8471AEB2BFBAF204FD4D8F2840E
Authority key identifier: 4E:EB:6B:2C:3E:09:CA:1C:45:FD:75:47:E4:58:94:6C:C8:A4:68:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TutrLD4JyhxF_XVH5FiUbMikaLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/gF7051dp_cMuLgQvCjwhgEPPRqw.roa
Signing time: Wed 01 Jan 2025 23:48:03 +0000
ROA not before: Wed 01 Jan 2025 23:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6453
IP address blocks: 185.109.120.0/22 maxlen: 24
193.188.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/TutrLD4JyhxF_XVH5FiUbMikaLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/TutrLD4JyhxF_XVH5FiUbMikaLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TutrLD4JyhxF_XVH5FiUbMikaLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:e8:47:1a:eb:2b:fb:af:20:4f:d4:d8:f2:84:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eeb6b2c3e09ca1c45fd7547e458946cc8a468b4
Validity
Not Before: Jan 1 23:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=805ef4e75769fdc32e2e042f0a3c218043cf46ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ff:77:37:b0:26:1b:b5:b0:77:e8:86:93:3f:
52:e9:30:82:7a:cb:82:11:3e:07:16:9e:8b:0b:b7:
aa:8b:25:ba:30:f7:ab:7e:a2:09:25:92:86:cb:68:
f3:cb:33:c5:99:79:00:23:0f:41:0e:5e:df:9e:b2:
7a:54:1d:62:66:5b:08:71:19:30:ed:98:6a:c3:f3:
d5:5e:1a:a7:b3:37:3c:5d:af:ce:0a:d0:ea:13:a1:
e3:fe:c3:71:73:e1:8b:68:45:e7:01:88:eb:43:33:
24:59:71:dc:7b:83:3b:87:2b:9d:da:21:58:b6:c7:
1d:01:f4:cb:cc:7d:c6:1e:36:f0:9f:99:22:5d:d4:
ec:24:01:37:fa:a7:37:01:c9:95:d9:92:78:24:40:
e8:12:b4:f1:7e:38:b7:ca:8f:52:9c:43:60:e8:42:
23:f6:07:c7:9a:66:13:8d:22:47:68:21:a9:f6:7b:
3a:e1:8b:a2:c2:e9:e9:56:91:2e:3c:5d:e9:bd:65:
29:52:cd:54:ff:4f:af:d0:3e:4e:c2:4a:cb:b1:99:
5e:4c:77:ef:c7:59:0c:f8:0b:6a:13:19:94:56:41:
0f:51:be:41:06:f5:ce:a8:52:98:2c:ec:6c:4c:a1:
b2:4e:80:42:70:0d:ca:80:b0:62:3d:1e:9c:4e:81:
54:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5E:F4:E7:57:69:FD:C3:2E:2E:04:2F:0A:3C:21:80:43:CF:46:AC
X509v3 Authority Key Identifier:
keyid:4E:EB:6B:2C:3E:09:CA:1C:45:FD:75:47:E4:58:94:6C:C8:A4:68:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TutrLD4JyhxF_XVH5FiUbMikaLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/gF7051dp_cMuLgQvCjwhgEPPRqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8f59ec-f92c-423d-8fb7-6e9addc8162b/1/TutrLD4JyhxF_XVH5FiUbMikaLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.120.0/22
193.188.64.0/19
Signature Algorithm: sha256WithRSAEncryption
86:2a:11:29:2c:bd:ae:0f:f0:c2:25:58:04:fa:f4:3f:91:eb:
16:c2:7f:00:ff:d8:ec:bc:78:2f:31:f8:62:a0:76:7f:13:d4:
a5:f4:69:0e:22:3a:51:81:2c:c4:89:17:ea:4a:62:4e:d9:08:
ce:ca:a9:9e:83:1e:6f:3f:9c:61:db:a5:2a:15:9c:b1:9c:e2:
64:a1:c1:4b:10:83:80:aa:db:00:a4:4e:86:6b:81:3f:2a:14:
bf:d4:0b:89:a9:8b:8b:9d:90:db:60:10:d9:94:8e:7b:19:d1:
75:60:50:f5:38:5d:7e:6d:3d:76:26:47:10:6d:ac:23:ea:39:
b6:f3:25:6f:23:36:b1:99:38:33:9d:6a:35:e0:96:c7:ac:c6:
14:50:db:38:ca:9c:29:0b:e6:b9:81:9b:21:72:5a:02:74:de:
4a:f0:a3:0e:cd:09:a5:ca:2d:1e:db:60:d2:06:38:7f:e7:50:
d0:c8:3c:78:7d:54:8e:14:9c:6f:bd:a6:1d:cf:8b:8f:47:2f:
3e:38:30:19:57:dd:cf:f5:3e:f8:f0:40:b6:72:36:9b:fd:cf:
f3:8e:c2:5e:76:15:26:0b:60:9c:a7:1f:31:67:84:da:3f:fe:
11:55:de:79:02:dc:6a:50:14:41:75:a7:fc:e7:91:85:a2:ec:
6e:a1:79:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:21:45 2025 by rpki-client