Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/gHlRquCMx6iwfFhK1AbziJf-SOA.roa
File: gHlRquCMx6iwfFhK1AbziJf-SOA.roa (raw, json)
Hash identifier: vGvXkm75uZ6w5eWBxSl4fiUVkztcBJ6xWRWL2h8kjfg=
Subject key identifier: 80:79:51:AA:E0:8C:C7:A8:B0:7C:58:4A:D4:06:F3:88:97:FE:48:E0
Certificate issuer: /CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Certificate serial: 019427B5EBDE567B0C706BDEAD37EE9EA30F
Authority key identifier: FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/gHlRquCMx6iwfFhK1AbziJf-SOA.roa
Signing time: Thu 02 Jan 2025 15:50:21 +0000
ROA not before: Thu 02 Jan 2025 15:50:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15576
IP address blocks: 193.17.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 00:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:eb:de:56:7b:0c:70:6b:de:ad:37:ee:9e:a3:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa7b5a2b9070913d34932815feb47e3631fdf5f
Validity
Not Before: Jan 2 15:50:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=807951aae08cc7a8b07c584ad406f38897fe48e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:1d:53:ab:a5:99:e0:f4:00:ec:0b:25:53:
18:9a:0f:47:01:61:e6:ec:71:d6:f9:62:38:90:52:
d4:83:74:7a:35:9f:69:dd:dd:fb:9e:3a:d7:f1:85:
50:38:e7:b1:68:84:c6:f2:ed:fc:b4:f9:fe:09:44:
05:b4:20:8f:71:de:f4:d1:5f:25:db:a3:ea:0e:b5:
8a:ed:85:de:e2:3c:20:dd:05:11:3e:95:cd:87:e3:
6f:53:ca:b9:30:51:a5:f3:16:71:41:c9:42:7d:9c:
ea:b9:b7:6c:3d:a6:21:f3:3a:ed:da:39:c9:54:01:
49:62:c9:7f:66:9a:9b:db:34:45:30:45:a4:b3:5c:
05:75:e1:0b:1e:b0:a9:1f:9b:e3:f7:0c:e2:75:5b:
78:9f:a5:ef:70:a9:e1:3c:3a:84:d7:e8:1b:2e:8e:
bd:85:b2:8b:aa:8a:df:dc:e1:6b:da:6f:42:0d:35:
38:1a:9b:1a:94:43:2b:e7:12:fa:2f:90:c9:83:90:
f1:ec:fe:9b:15:1f:4d:e5:cc:03:6d:49:48:32:c0:
06:f5:17:7d:c5:9f:0c:53:b5:84:3f:97:7b:d3:e2:
7a:e8:8f:c2:a4:dc:5e:0f:51:e1:c2:9b:4c:03:41:
17:96:aa:5e:32:55:9d:18:3b:62:c2:05:05:d7:3f:
4a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:79:51:AA:E0:8C:C7:A8:B0:7C:58:4A:D4:06:F3:88:97:FE:48:E0
X509v3 Authority Key Identifier:
keyid:FA:A7:B5:A2:B9:07:09:13:D3:49:32:81:5F:EB:47:E3:63:1F:DF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qe1orkHCRPTSTKBX-tH42Mf318.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/gHlRquCMx6iwfFhK1AbziJf-SOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/51ad54-dd30-4f35-906c-811dcb7c44fc/1/1-qe1orkHCRPTSTKBX-tH42Mf318.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.76.0/24
Signature Algorithm: sha256WithRSAEncryption
62:44:d3:ab:43:2e:43:f5:a6:e2:64:79:c2:8c:22:a0:b1:34:
c6:e2:4f:ea:11:61:62:cb:95:3a:18:d8:22:16:33:75:2c:b8:
42:03:33:bf:b4:76:87:97:38:0b:ed:d2:3f:bc:0a:3a:aa:32:
73:05:d8:6b:6e:e6:a5:1e:9b:44:14:30:84:11:59:9c:0d:61:
49:a2:40:35:d7:93:1b:70:80:43:07:54:f8:8d:0d:5b:8a:54:
a1:83:f1:48:0c:d1:ff:15:ff:3c:e6:5c:62:20:84:6d:56:2f:
4c:5b:a5:dc:5f:60:7a:69:86:67:76:36:71:19:9b:db:88:32:
a4:15:5a:69:04:2f:d0:af:0a:4a:b6:9b:2c:97:03:6c:33:82:
71:8a:f5:b3:e8:66:1b:c3:2e:4b:cb:e3:a6:f8:68:8c:f6:39:
fd:57:25:db:e4:91:6c:47:1a:52:57:43:b3:ef:13:22:cc:41:
50:d8:4a:2c:47:e8:4d:ad:07:85:1b:ce:e9:96:01:8a:b1:9d:
3d:ae:d3:50:b3:5b:07:3c:10:ee:c6:95:79:1b:d7:9b:21:1f:
e4:bf:27:6b:a0:08:37:aa:4a:8a:5a:0c:69:55:f5:15:a7:23:
2b:e7:4e:0c:8c:53:ca:91:71:a2:b2:38:96:c6:16:5c:f4:92:
eb:91:6b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 09:59:50 2025 by rpki-client