Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/goC_YpQrwJcU48WyzOg3OlsUAbY.roa
File: goC_YpQrwJcU48WyzOg3OlsUAbY.roa (raw, json)
Hash identifier: OHpeanfXRy8bamPYQwO5dLykWIe4C63dtCxwNHxZdBc=
Subject key identifier: 82:80:BF:62:94:2B:C0:97:14:E3:C5:B2:CC:E8:37:3A:5B:14:01:B6
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 019425FDC34E629C3941219CCECB8D3DE693
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/goC_YpQrwJcU48WyzOg3OlsUAbY.roa
Signing time: Thu 02 Jan 2025 07:49:35 +0000
ROA not before: Thu 02 Jan 2025 07:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 93.187.32.0/24 maxlen: 24
93.187.36.0/24 maxlen: 24
185.52.116.0/24 maxlen: 24
185.52.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:c3:4e:62:9c:39:41:21:9c:ce:cb:8d:3d:e6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Jan 2 07:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8280bf62942bc09714e3c5b2cce8373a5b1401b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:05:26:24:8a:a9:da:f8:fa:93:0e:9e:6d:f6:
e9:6e:5f:e5:38:2f:76:a4:9e:e2:c5:1f:ef:aa:09:
56:06:66:91:86:ac:dc:a3:c1:8e:ef:35:9c:54:ef:
5b:78:29:29:2b:58:4c:68:1a:f2:22:c2:0a:e3:f2:
d5:63:dc:ec:7b:6a:c3:c5:bb:b8:2f:52:99:ae:72:
45:6a:b5:15:af:85:8c:bb:d1:af:aa:ef:ca:ab:c8:
a8:0c:27:c4:ee:a1:40:a6:30:1a:94:89:9f:b7:d4:
44:b5:b5:42:42:fa:22:90:63:69:f1:39:68:11:de:
20:7c:89:f6:c9:39:84:6b:c8:ba:fa:59:24:73:c3:
59:de:22:6b:3d:48:2b:87:40:21:58:6c:d5:3c:8d:
97:5d:c8:0f:d8:ff:1d:c2:29:95:d7:d9:da:20:8c:
5e:51:97:4f:ae:c1:ab:9a:7c:95:ca:08:d4:36:59:
dd:19:2f:5e:de:6a:86:ee:30:aa:c8:14:c5:2b:f2:
37:d8:31:3c:18:e1:cd:1d:be:32:c3:ea:4c:4b:e6:
0c:43:10:dd:74:59:d5:45:2d:e9:d9:d5:9e:d6:90:
23:6e:29:8d:c6:39:c7:f1:e7:7f:72:49:75:05:1a:
6b:8b:e7:c2:83:5e:f7:39:29:3c:0f:e1:d4:bb:21:
f7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:80:BF:62:94:2B:C0:97:14:E3:C5:B2:CC:E8:37:3A:5B:14:01:B6
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/goC_YpQrwJcU48WyzOg3OlsUAbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.187.32.0/24
93.187.36.0/24
185.52.116.0/24
185.52.118.0/24
Signature Algorithm: sha256WithRSAEncryption
05:1f:f7:55:c3:5e:a7:b6:47:e9:8a:16:83:a6:bb:f9:5d:11:
c6:01:16:6b:d0:d7:5f:02:78:1e:26:31:d8:b6:bd:7f:1e:04:
70:56:cb:69:4d:0c:e3:1d:25:0a:38:2d:86:2a:87:5f:99:92:
cb:5c:e9:9b:5f:37:f9:ca:24:79:e9:d9:65:9c:8b:87:86:26:
aa:56:0b:c5:5f:7b:38:6e:07:46:36:fd:25:d6:16:a1:87:d9:
d0:ac:79:25:80:c2:66:ee:80:60:d0:09:1f:10:eb:c2:45:68:
ea:26:6f:1d:e5:8b:9c:e4:f5:84:e5:45:f4:85:25:9c:03:43:
20:62:7c:55:c1:35:0b:84:75:25:74:02:7b:84:48:c8:12:6e:
10:bf:0c:20:3f:f7:4f:84:63:67:ad:17:91:e2:2c:aa:b8:8b:
4a:cb:93:a3:76:58:9f:45:c0:fc:ad:44:dd:b4:79:03:b9:38:
b5:38:55:24:95:7c:35:f1:97:7c:0f:35:7a:9d:76:9d:05:f5:
ed:ab:2d:18:1b:c7:b0:e8:a2:f5:47:0d:40:d2:59:bc:c0:00:
e8:de:b9:c3:c0:3a:91:95:95:24:4d:c9:70:80:91:4e:af:06:
86:7b:12:00:db:89:f8:cb:53:f6:a3:4a:1e:bf:3f:54:16:e8:
58:87:97:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 15:57:58 2025 by rpki-client