Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/E_Z3mIW9TNYITCFb3vt1gjzqnQw.roa
File: E_Z3mIW9TNYITCFb3vt1gjzqnQw.roa (raw, json)
Hash identifier: +3GXuJPizeRy4QpFuHrwjpn47RB2tZNJ60Sgjxt77QI=
Subject key identifier: 13:F6:77:98:85:BD:4C:D6:08:4C:21:5B:DE:FB:75:82:3C:EA:9D:0C
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 01941FFA4DD90271DC38B95E6BEA870F5379
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/E_Z3mIW9TNYITCFb3vt1gjzqnQw.roa
Signing time: Wed 01 Jan 2025 03:48:05 +0000
ROA not before: Wed 01 Jan 2025 03:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202656
IP address blocks: 93.127.144.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 00:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:4d:d9:02:71:dc:38:b9:5e:6b:ea:87:0f:53:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 1 03:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13f6779885bd4cd6084c215bdefb75823cea9d0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:28:0a:5c:12:d8:3e:76:4f:2b:1a:f0:9d:46:
16:75:9b:63:a7:65:45:a1:e1:4b:3a:44:db:68:fe:
40:27:a9:2f:4f:21:65:73:88:fe:40:69:d9:97:a2:
89:42:8f:0b:c4:7c:33:70:ab:9a:ac:dd:93:ac:d2:
48:0a:bb:0a:ff:e6:f8:97:c5:01:78:d7:a3:b1:11:
a3:91:af:8b:15:75:00:5d:88:8e:36:eb:6a:8b:57:
52:5c:d2:98:dc:28:36:06:62:b8:c4:3b:6b:c5:8d:
1b:78:bf:08:3b:ef:e2:f3:de:4b:b1:59:05:a4:b7:
d5:ee:44:c8:79:08:c9:79:2b:5a:ea:08:c5:2b:dd:
85:11:a3:29:17:49:ad:ff:6c:c6:fc:99:06:8a:97:
bf:b9:c7:1c:b1:42:d8:26:b7:a1:19:69:99:9d:30:
d2:25:b8:7a:28:a0:4a:fb:3d:ad:88:65:44:a8:1a:
9e:86:da:96:e2:bd:c6:f0:cb:30:e6:2b:87:e6:4a:
62:34:a1:bc:b4:ea:04:5b:99:c8:83:ab:6d:7d:fa:
1f:06:af:66:4a:7a:08:77:a5:23:93:c7:c2:b4:0e:
ac:92:30:6b:21:c7:49:b8:9f:9c:f7:78:75:9e:2d:
fe:e7:7e:b1:8d:d1:cf:b2:03:e3:dd:0b:29:11:dc:
1e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F6:77:98:85:BD:4C:D6:08:4C:21:5B:DE:FB:75:82:3C:EA:9D:0C
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/E_Z3mIW9TNYITCFb3vt1gjzqnQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.144.0/22
Signature Algorithm: sha256WithRSAEncryption
63:0b:43:9b:67:cd:dc:72:3c:09:3c:75:59:3b:a8:12:07:f4:
7a:b0:70:0e:d8:70:6c:52:e7:46:d3:8e:7c:89:8a:ee:d9:01:
8b:08:87:59:04:cd:e7:de:3c:ce:1a:03:d2:d0:e1:99:58:46:
0c:32:bd:ac:55:d8:49:53:b2:29:83:f1:23:15:1c:34:95:48:
85:30:73:48:01:f2:ed:ff:ed:e5:3c:e8:97:0e:1f:48:77:59:
f4:4e:6a:f7:b5:8f:cf:3c:e7:9e:76:b6:dd:8b:47:1f:26:c2:
e4:71:81:39:13:61:3e:a3:27:cc:73:d3:e4:64:0a:f0:12:d4:
0e:83:0d:f9:ac:12:d9:c7:e4:d7:78:ce:e3:3c:37:be:6c:bc:
42:53:f0:31:16:6f:68:e8:64:60:50:6d:5d:0d:e4:c5:b0:0c:
ad:8c:bd:4b:92:ce:07:38:d0:c0:8d:c7:f0:08:72:af:ac:e7:
6d:9e:03:36:d8:39:36:fa:fd:61:c2:34:8e:2c:b4:12:83:67:
45:8f:c0:91:e1:8b:92:35:4f:ab:12:4b:d1:1d:0f:c6:c2:10:
17:4a:8d:9f:d0:c5:39:31:0a:7c:3a:8e:b0:98:6d:85:cc:20:
f1:4c:3e:c2:b7:18:34:b6:97:17:d5:41:f6:84:3e:9a:d0:f1:
9d:d3:e8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:50:15 2025 by rpki-client