Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/00ce31-2925-4722-ba45-c853d10b1bcd/1/Sd24d28V76HUXI5tJozId-LBxGU.roa
File: Sd24d28V76HUXI5tJozId-LBxGU.roa (raw, json)
Hash identifier: sz6vCalE+qZ8AG41dIYIziT32WF467U+LgWfS31nXaM=
Subject key identifier: 49:DD:B8:77:6F:15:EF:A1:D4:5C:8E:6D:26:8C:C8:77:E2:C1:C4:65
Certificate issuer: /CN=3840f14c7830344565d992aaed4f06ce5b3a3fec
Certificate serial: 019633C52305412F77F397BD9955BA66E5E8
Authority key identifier: 38:40:F1:4C:78:30:34:45:65:D9:92:AA:ED:4F:06:CE:5B:3A:3F:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OEDxTHgwNEVl2ZKq7U8Gzls6P-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/00ce31-2925-4722-ba45-c853d10b1bcd/1/Sd24d28V76HUXI5tJozId-LBxGU.roa
Signing time: Mon 14 Apr 2025 10:07:59 +0000
ROA not before: Mon 14 Apr 2025 10:07:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12414
IP address blocks: 91.212.184.0/24 maxlen: 24
2001:67c:874::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/00ce31-2925-4722-ba45-c853d10b1bcd/1/OEDxTHgwNEVl2ZKq7U8Gzls6P-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/00ce31-2925-4722-ba45-c853d10b1bcd/1/OEDxTHgwNEVl2ZKq7U8Gzls6P-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/OEDxTHgwNEVl2ZKq7U8Gzls6P-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:33:c5:23:05:41:2f:77:f3:97:bd:99:55:ba:66:e5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3840f14c7830344565d992aaed4f06ce5b3a3fec
Validity
Not Before: Apr 14 10:07:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49ddb8776f15efa1d45c8e6d268cc877e2c1c465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ab:e2:23:2a:ad:56:ec:95:d5:31:69:73:ef:
d1:b1:d0:41:56:1a:d6:24:8e:9c:45:ce:4e:1f:02:
05:da:1c:fb:b1:fa:3c:50:c8:d0:b6:7d:f4:94:97:
f7:ac:32:04:bf:08:ab:24:e5:d4:26:bf:ae:68:72:
6e:ce:6a:a3:df:97:fd:ac:dc:9a:a8:06:06:78:2f:
68:48:0b:63:d1:d2:b3:31:b2:9a:09:dd:d1:58:65:
1e:26:52:6c:ad:04:5a:7e:ac:89:90:c3:16:c8:e6:
bc:1f:9c:f6:e2:d1:6b:2f:ae:b6:9d:6a:e9:f0:56:
af:7d:51:dd:7c:0c:34:47:b2:67:80:c4:03:c4:9a:
2c:61:ba:a4:d6:33:69:05:3b:32:90:cd:ea:80:da:
d8:c0:44:65:d0:fe:9d:ab:a9:4c:e7:1f:38:3a:8b:
0d:01:46:55:33:f7:6d:13:98:70:c3:2f:06:65:20:
a5:f8:80:ce:61:66:9e:57:b4:cd:af:26:15:4f:55:
04:4c:86:c4:c0:6b:b7:d5:d0:be:c6:6f:9b:e0:67:
36:b2:9e:d6:c7:3c:e1:44:98:8f:bc:41:40:ad:60:
1c:81:de:3f:2c:0a:4c:07:42:d2:a9:27:9d:1f:87:
e9:57:0a:25:c3:79:90:f4:52:a2:5f:98:ef:ff:81:
6f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DD:B8:77:6F:15:EF:A1:D4:5C:8E:6D:26:8C:C8:77:E2:C1:C4:65
X509v3 Authority Key Identifier:
keyid:38:40:F1:4C:78:30:34:45:65:D9:92:AA:ED:4F:06:CE:5B:3A:3F:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OEDxTHgwNEVl2ZKq7U8Gzls6P-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/00ce31-2925-4722-ba45-c853d10b1bcd/1/Sd24d28V76HUXI5tJozId-LBxGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/00ce31-2925-4722-ba45-c853d10b1bcd/1/OEDxTHgwNEVl2ZKq7U8Gzls6P-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.184.0/24
IPv6:
2001:67c:874::/48
Signature Algorithm: sha256WithRSAEncryption
1f:3a:84:e9:b0:d6:10:11:47:6a:09:fc:80:de:a7:ee:07:70:
09:17:44:08:ea:8d:6a:00:08:99:b5:e3:18:7d:f6:c0:9e:9b:
21:69:4b:ae:61:a5:dd:eb:cb:9a:cd:81:4c:3c:ea:b1:70:ee:
4f:a3:6d:eb:85:f5:94:7c:39:21:ef:4c:86:f8:13:72:10:40:
38:82:f7:82:f5:46:5d:9c:d3:31:d6:f4:0c:ad:63:03:a3:92:
51:6f:6a:8f:df:cd:20:20:f2:8e:54:8d:26:aa:06:27:65:79:
a3:5e:f8:3f:a4:83:79:5b:48:c0:aa:80:c5:d5:f6:17:72:e4:
27:93:19:77:4f:f8:02:a7:8f:7a:1b:bf:f1:75:21:3d:ad:e6:
ba:40:7d:96:8a:5a:35:d6:aa:c3:65:07:3a:42:66:71:04:7d:
88:d0:58:58:48:e4:ae:79:90:6e:b0:ce:ae:ae:cd:00:da:57:
0b:ab:7d:7f:6a:e0:ef:e5:f2:62:5a:04:f8:fb:e6:2d:a5:e2:
97:2f:43:95:ba:8a:61:42:2c:46:a4:33:15:fc:a6:ec:3a:39:
44:47:ac:e1:8e:72:46:96:b3:90:a4:2f:0b:7c:08:ac:f3:62:
48:a4:51:2c:af:76:25:df:9c:42:c1:f4:11:c5:8b:1e:b0:c2:
46:30:24:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 05:03:42 2025 by rpki-client