Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/UezpV8LDbO9QY5mhXNignEZRikk.roa
File: UezpV8LDbO9QY5mhXNignEZRikk.roa (raw, json)
Hash identifier: Uo3aH5gxfO+5fk9T820dX2193FzWdNtaZVDUTDXlQxk=
Subject key identifier: 51:EC:E9:57:C2:C3:6C:EF:50:63:99:A1:5C:D8:A0:9C:46:51:8A:49
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 01941FFA4A1A684559D898E0ADB9A842FF9C
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/UezpV8LDbO9QY5mhXNignEZRikk.roa
Signing time: Wed 01 Jan 2025 03:48:04 +0000
ROA not before: Wed 01 Jan 2025 03:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56485
IP address blocks: 91.108.82.0/24 maxlen: 24
93.127.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 00:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:4a:1a:68:45:59:d8:98:e0:ad:b9:a8:42:ff:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 1 03:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51ece957c2c36cef506399a15cd8a09c46518a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:26:30:fe:c4:fb:b9:c1:28:6e:56:e4:f7:32:
a8:6d:f2:e5:bd:8e:07:9a:6a:1c:41:de:fb:df:b5:
77:b4:76:1c:64:8f:a8:8d:8c:83:ed:c5:0f:6d:46:
e8:a4:f8:7b:07:5a:61:ee:40:03:b1:e2:21:6f:3f:
d4:73:43:c7:a4:94:29:1f:7d:fb:7f:2b:06:41:c8:
14:0e:eb:bb:dc:0f:ca:cd:7f:4c:f5:28:60:1d:e3:
a6:aa:f5:e0:52:e7:fc:61:cb:d6:04:69:53:b1:85:
92:19:45:a4:28:94:09:7f:1f:1d:08:7d:1c:a1:48:
a6:8e:fa:80:49:2b:d5:0a:4c:92:8a:ee:de:23:bc:
2a:55:b2:0c:81:fd:00:ac:83:6e:b0:0f:b6:c1:d6:
09:b2:5f:43:33:5e:9b:e6:6c:db:f4:09:aa:e6:f4:
a5:93:70:95:28:a6:7c:cd:8b:5a:2c:0c:ce:28:83:
e5:db:6f:35:2f:24:7c:93:45:a4:4b:e7:2b:a0:6e:
13:96:02:bf:8a:c6:73:c5:7d:84:75:6e:e9:8c:2b:
e1:a3:ac:9c:e9:8b:75:8e:f1:52:19:57:9e:25:37:
f4:18:73:ff:c8:0e:b1:b0:a0:e3:fd:fd:b4:57:ae:
be:4a:6d:3e:03:dc:de:9f:f0:39:cd:e5:fb:88:a1:
11:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EC:E9:57:C2:C3:6C:EF:50:63:99:A1:5C:D8:A0:9C:46:51:8A:49
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/UezpV8LDbO9QY5mhXNignEZRikk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.82.0/24
93.127.175.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ef:32:8f:9e:f5:60:8b:05:e9:b6:41:ef:fe:fb:d7:6d:35:
67:c2:0f:7a:3f:ac:7c:94:2b:5b:74:a9:03:bf:d2:7c:ba:3a:
23:3f:d5:af:e6:01:57:ed:5f:fa:ca:f8:cb:6a:01:1d:15:26:
6b:78:f5:fb:a0:67:79:79:9e:3c:93:a1:5a:33:a4:73:d0:64:
55:e9:5b:31:0f:a7:5d:3c:b3:a7:68:77:60:5e:d3:04:0a:ae:
92:37:b4:a8:bf:c0:0f:9e:d1:95:6d:e6:27:dd:41:46:7a:8b:
c1:ad:b0:a2:64:81:a7:1d:1c:4b:53:3f:16:27:75:c1:e3:60:
8a:9c:6a:46:33:c1:a9:63:c3:b4:96:09:bd:46:ca:a6:60:59:
3c:56:96:50:20:c2:17:0a:bb:75:a9:16:dd:78:2f:00:b2:ee:
06:23:63:1e:ca:9e:c1:19:f9:ec:15:4d:ed:51:ea:25:b2:b9:
a9:8f:ec:a8:e9:0b:4d:b9:2a:1d:4b:7c:9c:08:df:93:97:cd:
0d:31:bb:c3:a5:d7:d3:de:4e:48:c3:03:a4:30:e7:7d:de:18:
e4:06:28:26:69:c6:5f:77:7a:c1:98:73:2d:68:35:d9:c9:fe:
2f:05:92:2d:b9:33:20:24:6b:f5:99:2a:d3:05:c4:a5:6b:00:
3b:de:cb:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:50:05 2025 by rpki-client