Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/6vn0S84Of3Am641RtQSWgEcI8LQ.roa
File: 6vn0S84Of3Am641RtQSWgEcI8LQ.roa (raw, json)
Hash identifier: liXU+EaS34eLz4h7mt5PwqdMf8bXjU0VdoViqn9V7yA=
Subject key identifier: EA:F9:F4:4B:CE:0E:7F:70:26:EB:8D:51:B5:04:96:80:47:08:F0:B4
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 0194F42FCAE2685CE9E822EDCB5B4A5ED115
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/6vn0S84Of3Am641RtQSWgEcI8LQ.roa
Signing time: Tue 11 Feb 2025 08:46:00 +0000
ROA not before: Tue 11 Feb 2025 08:46:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209193
IP address blocks: 185.52.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f4:2f:ca:e2:68:5c:e9:e8:22:ed:cb:5b:4a:5e:d1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Feb 11 08:46:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eaf9f44bce0e7f7026eb8d51b50496804708f0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:57:ef:e9:bf:19:ce:61:e1:0e:6e:a6:5c:93:
64:8d:62:a8:87:22:27:35:3e:a7:d0:cf:1b:96:2d:
68:fc:9f:c0:05:2e:cf:c3:b2:24:f0:75:25:07:73:
e9:87:b9:b1:bd:11:bd:01:d6:b2:6a:7d:1f:83:28:
e8:01:46:3f:5c:43:8a:68:85:90:0d:82:29:1d:e7:
4b:10:83:52:c4:ab:65:b0:c0:2d:b5:d9:a3:5c:e6:
58:83:6a:ca:57:ce:f1:b1:be:e7:32:87:9a:78:e0:
bd:f4:da:a2:41:48:7b:c3:38:58:1d:7f:ff:9b:cc:
db:3e:71:46:d6:b7:d4:ff:f3:8c:0d:bc:6b:06:69:
f9:2a:ad:c9:40:15:5d:ab:85:a0:78:2d:76:22:7d:
a9:d5:67:81:11:af:78:aa:17:53:4f:2a:8d:5e:d4:
82:73:d7:46:26:85:c0:8e:51:e2:f6:9a:d5:be:28:
00:70:7b:3c:ea:f4:fe:32:82:0d:53:85:96:2d:07:
b0:af:74:29:ba:6a:a6:6e:9a:5b:fb:a2:fd:66:05:
c3:6b:95:b6:12:08:b4:bd:29:30:65:cd:85:ef:77:
01:4e:2d:9f:de:34:0a:5f:c3:d7:46:67:a2:4e:17:
43:fd:53:d9:7e:42:56:b5:f5:56:3f:10:be:ca:81:
7b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F9:F4:4B:CE:0E:7F:70:26:EB:8D:51:B5:04:96:80:47:08:F0:B4
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/6vn0S84Of3Am641RtQSWgEcI8LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.116.0/24
Signature Algorithm: sha256WithRSAEncryption
69:75:85:d6:88:f0:79:a6:98:99:58:b3:b9:b6:5d:72:bf:20:
2d:38:b8:7a:2a:99:73:9c:f4:b9:7f:f5:db:7a:b5:48:ba:59:
e8:42:17:db:c3:bc:ef:e8:8c:59:25:10:a6:70:e6:37:77:ec:
21:49:e9:cb:6c:89:ad:b5:7d:7d:c5:51:fa:29:70:f2:3c:ff:
50:35:00:75:04:3a:e4:26:ce:bd:d4:2c:2a:cf:2f:89:a1:94:
48:4b:29:cb:e5:3c:28:34:cc:75:9e:01:cd:7d:6e:21:14:34:
dd:13:ba:40:7f:26:ef:0f:fb:d9:fb:1d:4e:55:6d:be:56:e9:
79:ea:0b:33:d4:33:de:c2:d4:54:75:19:9c:1e:b7:a3:d4:4e:
9f:96:4f:ca:c0:2f:f1:d0:eb:9d:18:8a:b7:b8:d8:dc:e9:d0:
50:0a:4f:3b:cc:8c:af:d6:e9:8f:44:f7:a0:4a:ca:b0:06:07:
15:34:f5:55:f3:64:61:bf:7b:6a:7d:2a:cb:94:f3:d9:ad:a8:
df:42:a7:ba:98:3c:30:42:c8:e8:48:d5:7a:d0:06:34:15:c2:
43:cd:fb:b9:fc:f4:bf:0a:7c:eb:0c:63:93:72:14:37:66:7c:
4e:a7:e9:2a:c0:f2:b4:ba:4f:60:76:52:37:67:25:0a:50:a5:
14:7e:a5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:40:27 2025 by rpki-client