Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/TveYMpv43ads8kL3tJIaF2Lq5Pc.roa
File: TveYMpv43ads8kL3tJIaF2Lq5Pc.roa (raw, json)
Hash identifier: ejisx3Wb0866dp+ZOEjX4YrYq2/QpbZKuvGuyNEFbcQ=
Subject key identifier: 4E:F7:98:32:9B:F8:DD:A7:6C:F2:42:F7:B4:92:1A:17:62:EA:E4:F7
Certificate issuer: /CN=74c7f8e91b81fe6487307c5226eb044f92396cea
Certificate serial: 0194228D4A53189EB992ECEEF92A534A5030
Authority key identifier: 74:C7:F8:E9:1B:81:FE:64:87:30:7C:52:26:EB:04:4F:92:39:6C:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dMf46RuB_mSHMHxSJusET5I5bOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/TveYMpv43ads8kL3tJIaF2Lq5Pc.roa
Signing time: Wed 01 Jan 2025 15:47:52 +0000
ROA not before: Wed 01 Jan 2025 15:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12315
IP address blocks: 193.176.136.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/dMf46RuB_mSHMHxSJusET5I5bOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/dMf46RuB_mSHMHxSJusET5I5bOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dMf46RuB_mSHMHxSJusET5I5bOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:4a:53:18:9e:b9:92:ec:ee:f9:2a:53:4a:50:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74c7f8e91b81fe6487307c5226eb044f92396cea
Validity
Not Before: Jan 1 15:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4ef798329bf8dda76cf242f7b4921a1762eae4f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5d:da:8e:53:07:3b:ed:89:24:86:38:cf:b9:
80:e4:31:14:cc:03:d2:8d:83:5f:8d:98:3e:97:5a:
3d:92:63:01:5c:e9:fa:af:cc:de:9e:9c:b3:6d:51:
80:cb:d8:d3:f5:4c:32:8b:d5:df:cf:7d:05:e0:34:
f2:0d:59:17:06:54:07:29:ee:60:e4:da:1b:e9:59:
39:66:5e:b3:04:b4:88:1a:b7:5f:14:5a:57:2c:9d:
7d:8e:09:72:e0:f1:ad:da:2a:51:96:4a:6b:a4:e1:
ca:5f:86:ec:b5:9a:a4:2e:db:f0:76:ed:fd:d6:20:
a0:10:a3:03:b2:75:c7:15:81:76:4d:96:64:e6:53:
e2:88:04:ae:1c:77:ce:67:34:c8:79:1d:83:f9:fc:
f1:d9:13:3d:18:f7:a9:bf:51:10:3c:a3:6d:3d:9e:
95:a8:b4:e9:52:dc:5f:62:db:0d:3b:eb:ab:4d:b0:
ee:12:da:c7:9a:dc:38:ac:13:f1:a5:44:f9:44:8b:
ab:a0:bd:cf:10:9b:c2:40:ca:fb:a2:c3:c8:53:3d:
90:53:4c:88:c2:5c:69:18:28:93:8f:84:e1:67:78:
b0:20:dc:5d:9f:46:99:01:46:74:47:fc:b8:f9:dc:
90:9e:bd:b5:d3:76:f3:61:5c:09:12:72:48:9d:4c:
f9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F7:98:32:9B:F8:DD:A7:6C:F2:42:F7:B4:92:1A:17:62:EA:E4:F7
X509v3 Authority Key Identifier:
keyid:74:C7:F8:E9:1B:81:FE:64:87:30:7C:52:26:EB:04:4F:92:39:6C:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dMf46RuB_mSHMHxSJusET5I5bOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/TveYMpv43ads8kL3tJIaF2Lq5Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/dMf46RuB_mSHMHxSJusET5I5bOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.136.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:e5:18:d7:39:b1:02:93:76:de:95:c6:48:5b:b6:f3:b1:53:
dc:70:06:19:5d:45:d3:4e:4a:7a:a3:e7:ec:87:ea:6f:4e:5a:
c9:f9:5f:bb:1e:21:c9:bd:e6:1c:7e:88:3d:69:10:22:87:a8:
2c:b5:3c:01:f1:02:a6:63:70:a2:cd:a9:00:03:37:7c:39:17:
de:e9:61:e5:81:c1:4c:96:34:60:77:bb:fa:76:fd:13:5d:a1:
e6:e0:0b:50:a7:f0:4e:61:3d:c6:18:9c:7d:b4:7a:3e:70:4c:
0d:bf:05:5e:9c:1d:9e:a1:a6:e7:9e:8e:93:fc:8d:9b:ae:2f:
22:76:ed:d8:5d:2e:6c:de:5b:a1:d8:55:8d:f9:7e:bb:1f:7b:
b5:b8:a7:21:66:dd:2f:d5:9c:95:3b:a4:50:53:7f:42:76:7f:
bb:7a:98:14:6f:a2:d5:4b:ae:c3:4e:0f:53:9a:f2:5e:d2:4a:
61:af:35:66:ee:ed:96:da:95:fb:62:28:d3:b8:56:a1:98:aa:
41:fb:88:ef:c6:3e:ce:76:8a:21:e9:4c:46:61:59:a4:3a:17:
d4:52:f0:88:b2:91:23:74:0a:92:22:0e:52:68:a3:58:44:8e:
cc:c1:2d:7e:12:d2:7d:4d:7a:df:f6:3c:d5:de:4f:91:33:aa:
b6:86:b0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:47:49 2025 by rpki-client