Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/n_G3q99_J87xXbyhHChLFkt5oiI.roa
File: n_G3q99_J87xXbyhHChLFkt5oiI.roa (raw, json)
Hash identifier: upEzI14/PmLIvtecdVIMJuBQOmGylGfDUM9jYQx3gTI=
Subject key identifier: 9F:F1:B7:AB:DF:7F:27:CE:F1:5D:BC:A1:1C:28:4B:16:4B:79:A2:22
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019422200BC35A3BA7FB32E2655AE9E22D6E
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/n_G3q99_J87xXbyhHChLFkt5oiI.roa
Signing time: Wed 01 Jan 2025 13:48:32 +0000
ROA not before: Wed 01 Jan 2025 13:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13335
IP address blocks: 77.111.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0b:c3:5a:3b:a7:fb:32:e2:65:5a:e9:e2:2d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jan 1 13:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ff1b7abdf7f27cef15dbca11c284b164b79a222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c4:b4:48:b5:21:ae:0a:66:a1:91:3b:ee:32:
58:25:0d:dc:89:ed:80:b9:40:d4:0b:d8:c5:c6:57:
75:0b:0c:8e:77:7e:84:17:9c:d3:6c:60:49:a6:db:
a5:20:cb:c0:ca:f1:2b:c2:53:4c:3f:b4:52:a6:d7:
f8:a8:98:b2:d6:03:b5:46:f6:98:5f:a4:df:cd:0a:
e2:f2:89:af:b1:c0:12:fc:4c:f2:62:a3:af:d4:be:
d0:f8:c3:23:7e:94:ea:63:82:3e:8f:08:31:76:0e:
ab:26:c6:79:b2:60:31:00:8f:66:93:69:4d:68:51:
5a:1b:3b:e1:65:d0:07:1f:8e:3b:fb:26:8c:06:6e:
94:ed:1e:b0:b8:19:cc:f0:e7:84:bb:14:c5:c1:51:
60:92:74:fc:eb:69:4d:28:f9:a3:7b:6c:c6:7d:a0:
f2:33:11:a2:07:8c:fb:c3:19:e2:80:a8:83:c4:4f:
7b:78:57:7b:df:99:0e:75:fe:36:17:fc:5e:f6:21:
29:2f:3e:2a:f2:e8:1c:81:96:c2:73:25:4c:99:9e:
54:f0:be:9a:8b:5b:1e:cd:b5:06:12:ce:3e:52:75:
c1:03:dd:f2:0c:cc:7c:12:76:8f:cd:11:b1:a7:23:
d2:23:58:11:b1:01:f9:bc:33:f6:b7:3a:82:0f:67:
32:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F1:B7:AB:DF:7F:27:CE:F1:5D:BC:A1:1C:28:4B:16:4B:79:A2:22
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/n_G3q99_J87xXbyhHChLFkt5oiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.106.0/24
Signature Algorithm: sha256WithRSAEncryption
91:c3:a7:0c:25:79:da:86:c4:74:c7:81:a0:76:1e:53:2f:fa:
cf:55:a3:95:2e:e3:f7:25:da:4c:84:a7:68:ca:c3:30:30:c5:
b4:c8:34:7a:5e:34:20:da:c4:95:e6:d1:c4:fe:29:a7:f1:ba:
24:a6:90:f2:b8:18:c6:42:e3:6f:fe:fa:9e:f2:65:af:2c:15:
4a:41:b1:63:4c:0e:d1:ea:6d:4f:2e:e2:e1:87:65:0b:fb:43:
7b:91:ca:98:92:79:4e:10:93:98:d0:3e:ed:33:dd:e2:d6:b9:
fd:db:d1:50:16:48:94:c0:47:4b:97:50:c4:55:d4:4e:ca:e2:
81:13:da:a4:62:bf:a0:60:08:ba:a1:62:27:5c:d6:aa:ea:25:
26:44:8b:bf:14:c7:df:37:97:e4:4f:5d:93:1c:b7:1d:0a:16:
a5:0d:c5:4e:0c:ce:1d:a2:1f:85:9a:30:c8:80:ab:19:19:e2:
a0:7a:8d:b7:a7:63:9c:12:e3:73:a9:7b:49:fb:4d:1c:82:fe:
1b:95:e2:b6:98:26:b2:df:f4:28:c5:bd:22:7f:dc:0e:5e:96:
b3:3c:e6:30:31:3e:17:14:54:12:47:31:4d:61:f6:51:37:bd:
23:44:48:37:1e:f9:24:07:47:6d:4c:7f:e8:1e:26:5b:fc:a0:
b0:6b:94:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIAvDWjun+zLiZVrp4i1uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjUwMTAxMTM0ODMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmYxYjdhYmRmN2YyN2NlZjE1ZGJjYTExYzI4NGIxNjRiNzlhMjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm8S0SLUhrgpmoZE77jJYJQ3cie2A
uUDUC9jFxld1CwyOd36EF5zTbGBJptulIMvAyvErwlNMP7RSptf4qJiy1gO1RvaY
X6TfzQri8omvscAS/EzyYqOv1L7Q+MMjfpTqY4I+jwgxdg6rJsZ5smAxAI9mk2lN
aFFaGzvhZdAHH447+yaMBm6U7R6wuBnM8OeEuxTFwVFgknT862lNKPmje2zGfaDy
MxGiB4z7wxnigKiDxE97eFd735kOdf42F/xe9iEpLz4q8ugcgZbCcyVMmZ5U8L6a
i1sezbUGEs4+UnXBA93yDMx8EnaPzRGxpyPSI1gRsQH5vDP2tzqCD2cyWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ/xt6vffyfO8V28oRwoSxZLeaIiMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvbl9HM3E5OV9KODd4WGJ5aEhDaExGa3Q1b2lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATW9qMA0G
CSqGSIb3DQEBCwUAA4IBAQCRw6cMJXnahsR0x4Ggdh5TL/rPVaOVLuP3JdpMhKdo
ysMwMMW0yDR6XjQg2sSV5tHE/imn8bokppDyuBjGQuNv/vqe8mWvLBVKQbFjTA7R
6m1PLuLhh2UL+0N7kcqYknlOEJOY0D7tM93i1rn929FQFkiUwEdLl1DEVdROyuKB
E9qkYr+gYAi6oWInXNaq6iUmRIu/FMffN5fkT12THLcdChalDcVODM4doh+FmjDI
gKsZGeKgeo23p2OcEuNzqXtJ+00cgv4bleK2mCay3/Qoxb0if9wOXpazPOYwMT4X
FFQSRzFNYfZRN70jREg3HvkkB0dtTH/oHiZb/KCwa5Q+
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:21 2025 by rpki-client