Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/HkS7Bac_zcquqwSybCqXQXvJOIM.roa
File: HkS7Bac_zcquqwSybCqXQXvJOIM.roa (raw, json)
Hash identifier: EqtRFndz4VpKLUGXJoOkuKh0qLK1JuNwkeTtOUz1uOM=
Subject key identifier: 1E:44:BB:05:A7:3F:CD:CA:AE:AB:04:B2:6C:2A:97:41:7B:C9:38:83
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 01941FFA4F700258B23D1A7DAB4A574F0935
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/HkS7Bac_zcquqwSybCqXQXvJOIM.roa
Signing time: Wed 01 Jan 2025 03:48:05 +0000
ROA not before: Wed 01 Jan 2025 03:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216383
IP address blocks: 93.127.180.0/24 maxlen: 24
93.127.181.0/24 maxlen: 24
93.127.182.0/24 maxlen: 24
93.127.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 00:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:4f:70:02:58:b2:3d:1a:7d:ab:4a:57:4f:09:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 1 03:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e44bb05a73fcdcaaeab04b26c2a97417bc93883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:bb:1d:63:56:2e:12:60:0c:21:37:03:5f:
ca:6f:e1:4f:48:3b:08:14:c4:a3:55:3a:ac:f5:90:
ce:18:8e:2d:be:99:b6:06:f5:37:1c:e3:0c:75:4b:
f9:f4:9c:78:64:57:ac:6c:e0:ae:a1:da:6b:c8:12:
db:66:22:d2:f9:35:5e:01:50:46:5d:e9:3a:53:cb:
03:c7:3c:55:fe:47:e3:8f:53:5c:a7:01:af:a6:bd:
62:01:4c:84:48:79:06:64:78:04:98:0b:27:3e:76:
5d:ed:4d:f6:63:e0:a1:87:33:cf:70:e1:b6:cc:5e:
de:2e:44:8c:32:59:44:5d:da:1f:47:f1:ef:96:72:
d7:f2:e9:27:3c:d4:eb:f3:04:3c:5a:09:70:23:47:
ff:d6:9f:64:73:e0:d9:5a:17:05:7c:23:57:49:f0:
fa:46:e9:ea:9e:71:b4:64:a1:6b:d9:f5:9a:b8:23:
ae:87:57:43:4b:ce:a3:59:72:2a:e0:39:7c:61:18:
20:83:81:4c:8e:47:35:9c:de:f2:5b:fe:39:5f:fd:
4e:69:83:2a:26:a7:fc:0f:9d:17:47:37:5f:dd:6a:
06:48:29:6c:e4:f2:4f:c4:53:9a:c2:3b:68:1e:9d:
26:fa:11:19:9a:dc:c8:54:58:17:b2:6d:93:66:8a:
06:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:44:BB:05:A7:3F:CD:CA:AE:AB:04:B2:6C:2A:97:41:7B:C9:38:83
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/HkS7Bac_zcquqwSybCqXQXvJOIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.180.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:de:ad:aa:92:cc:16:fa:e2:c8:3d:84:41:22:0f:a7:33:fc:
e2:60:0a:16:4e:de:cf:ad:ea:e7:6c:ec:b5:f0:ba:59:22:38:
1e:ae:a8:23:e2:b4:5e:bb:45:42:c9:ba:b9:a1:e0:42:72:a0:
fe:ec:43:2b:92:3d:ea:3b:1b:d1:00:f2:9a:a2:5c:f9:cb:07:
56:c6:da:c7:21:af:81:cd:16:a6:93:74:a5:93:82:7a:94:43:
de:f9:2f:c5:73:a4:30:b8:00:81:17:d3:fd:19:46:cd:ab:6b:
06:e3:f7:ab:a3:a1:8f:91:75:0d:22:2a:8b:59:91:35:b2:8b:
0e:40:3a:d5:53:92:04:b9:f0:e2:c3:7a:df:1c:2b:5b:a5:8f:
c8:ab:63:a0:37:11:8d:7d:07:62:f5:b3:00:63:29:db:1d:80:
16:74:65:55:fb:13:b4:30:96:6d:76:d6:ce:b6:e5:64:e3:2b:
86:0a:c4:1d:96:dc:20:54:bc:43:c0:cb:d8:9e:13:8e:61:5c:
8a:a5:68:b3:e5:64:c0:79:90:dc:36:e3:82:a1:e9:9b:7b:d8:
a1:5a:27:bd:d6:27:03:71:5c:c0:b4:c1:2a:02:7b:d4:b0:d0:
73:54:c2:fc:32:29:af:44:76:cc:04:57:6d:5b:88:b5:6e:98:
88:36:b9:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:37:18 2025 by rpki-client