Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f493c6-103c-4d79-9ae2-9e2da37b419e/1/BX2JPGJy6RMaPcWuXvWlFqwNrIA.roa
File: BX2JPGJy6RMaPcWuXvWlFqwNrIA.roa (raw, json)
Hash identifier: u+UX2pAd1eP7HJXW9NY0JTLVGtLaRb7rjxt8LHxvOj8=
Subject key identifier: 05:7D:89:3C:62:72:E9:13:1A:3D:C5:AE:5E:F5:A5:16:AC:0D:AC:80
Certificate issuer: /CN=01cbc6e744eef9c0167401d56c1f9380eef64948
Certificate serial: 0194221FF19F1F503856DC9B98160B995E83
Authority key identifier: 01:CB:C6:E7:44:EE:F9:C0:16:74:01:D5:6C:1F:93:80:EE:F6:49:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcvG50Tu-cAWdAHVbB-TgO72SUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/f493c6-103c-4d79-9ae2-9e2da37b419e/1/BX2JPGJy6RMaPcWuXvWlFqwNrIA.roa
Signing time: Wed 01 Jan 2025 13:48:26 +0000
ROA not before: Wed 01 Jan 2025 13:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51099
IP address blocks: 91.216.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/f493c6-103c-4d79-9ae2-9e2da37b419e/1/AcvG50Tu-cAWdAHVbB-TgO72SUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/f493c6-103c-4d79-9ae2-9e2da37b419e/1/AcvG50Tu-cAWdAHVbB-TgO72SUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/AcvG50Tu-cAWdAHVbB-TgO72SUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f1:9f:1f:50:38:56:dc:9b:98:16:0b:99:5e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01cbc6e744eef9c0167401d56c1f9380eef64948
Validity
Not Before: Jan 1 13:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=057d893c6272e9131a3dc5ae5ef5a516ac0dac80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c1:0a:c3:e0:a0:f2:e6:12:88:1d:e5:42:6a:
cb:fe:fb:0e:8c:d1:2c:0e:46:eb:bf:22:fb:ce:e2:
e6:69:a4:49:ce:0e:9e:75:69:62:a8:9f:5f:06:11:
b4:61:4a:af:71:b6:b8:36:3a:16:28:25:5c:0a:1d:
36:01:a2:1b:34:f6:fc:4a:c0:d1:df:be:7e:4e:4f:
21:f9:15:b9:e2:81:70:22:9f:8e:39:92:d8:11:e9:
2f:96:8d:db:46:06:b9:1a:e6:01:10:b7:59:fe:71:
20:b7:8a:9f:71:75:61:af:64:80:59:bc:86:2e:fb:
94:60:29:a6:3b:f5:cf:1b:f1:27:9c:5c:15:70:b0:
aa:59:8b:f2:ad:d3:6d:a8:1d:41:81:96:85:82:36:
5c:0a:c2:52:6f:4c:fb:3a:66:6b:eb:75:6a:23:85:
5a:9a:73:e7:8c:70:e2:6b:9d:9f:8f:04:14:b4:1b:
63:17:e8:bb:c1:cd:5f:b3:c3:ba:48:6e:c0:a4:ae:
74:35:db:26:4a:86:9e:23:cd:fa:a4:f1:34:ad:0f:
fd:76:e5:5c:4c:46:bf:b9:93:c5:e8:ec:5c:eb:58:
8f:ee:e9:f9:2b:ed:38:48:07:40:4b:d2:df:0c:d7:
e1:57:2d:1a:46:ed:63:e4:6a:5c:e9:b1:f1:05:92:
11:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:7D:89:3C:62:72:E9:13:1A:3D:C5:AE:5E:F5:A5:16:AC:0D:AC:80
X509v3 Authority Key Identifier:
keyid:01:CB:C6:E7:44:EE:F9:C0:16:74:01:D5:6C:1F:93:80:EE:F6:49:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcvG50Tu-cAWdAHVbB-TgO72SUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f493c6-103c-4d79-9ae2-9e2da37b419e/1/BX2JPGJy6RMaPcWuXvWlFqwNrIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f493c6-103c-4d79-9ae2-9e2da37b419e/1/AcvG50Tu-cAWdAHVbB-TgO72SUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.151.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:01:70:4a:ae:c8:e5:4d:af:1d:bf:d9:3f:df:72:81:e0:7d:
70:c7:b4:2f:88:30:41:b1:ca:0b:ac:e7:7a:55:e1:fd:1c:4b:
4a:dc:c4:93:f6:bf:43:8b:b4:38:ea:4d:6b:de:fa:6f:d0:b1:
bc:57:97:8a:74:3e:17:36:7e:00:1d:fe:75:6f:41:ee:d5:0f:
ae:32:08:60:cf:97:9b:a0:be:0f:0a:df:f6:ee:e8:13:3f:fe:
b9:b1:a5:35:b4:83:a8:df:34:72:ff:ce:d0:fc:52:92:46:df:
c5:f5:97:78:ab:94:8f:33:56:fd:a8:7f:7f:72:29:0a:16:ed:
62:d1:6d:b8:0c:47:e4:4c:38:da:3d:42:85:2e:01:db:26:d9:
e8:0c:60:41:58:f6:ae:c9:e8:b3:2c:64:79:7a:db:54:cb:1f:
74:7a:6b:e9:5e:e9:60:11:b6:cc:64:45:7f:18:a1:a5:5a:9e:
d9:89:d1:d2:b3:56:8b:e1:c7:cf:07:8d:21:69:a9:55:9c:df:
9c:21:99:e4:ca:d7:6a:48:7d:2e:c8:ef:f5:c6:51:56:ba:1b:
6d:24:53:37:42:7e:79:27:d3:92:44:87:42:c8:49:f2:d0:0c:
ee:53:2a:ec:97:2f:ce:5a:cf:d9:2c:53:95:2e:e3:d2:f5:59:
b3:04:81:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:35:00 2025 by rpki-client