Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/kjgR6fCEfo65l1JeZJ4Li2dEsBk.roa
File: kjgR6fCEfo65l1JeZJ4Li2dEsBk.roa (raw, json)
Hash identifier: 7TNnk4RZS1xFfqUG/LsyTtoiK4QkaicTxMSXRgQotRw=
Subject key identifier: 92:38:11:E9:F0:84:7E:8E:B9:97:52:5E:64:9E:0B:8B:67:44:B0:19
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 019498967DBD2A931255CB9B92DD657CD115
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/kjgR6fCEfo65l1JeZJ4Li2dEsBk.roa
Signing time: Fri 24 Jan 2025 13:53:06 +0000
ROA not before: Fri 24 Jan 2025 13:53:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35793
IP address blocks: 93.127.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 00:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:98:96:7d:bd:2a:93:12:55:cb:9b:92:dd:65:7c:d1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Jan 24 13:53:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=923811e9f0847e8eb997525e649e0b8b6744b019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6d:74:9c:44:ed:5a:a8:00:39:91:b2:a3:b5:
28:83:b2:54:8e:a7:ac:dc:d8:6a:4b:b2:ec:16:ee:
d1:6c:f9:a8:51:a7:9c:b0:1b:8a:d7:ea:fd:7d:fc:
22:20:ae:22:45:2a:57:40:08:14:a6:bc:b8:a4:28:
e7:92:db:8e:0c:a9:39:30:ef:cd:24:a5:d8:60:36:
2b:0b:a7:ef:43:5f:b8:3a:b4:4b:49:ff:30:f6:92:
04:f3:8b:8e:5c:43:f8:e6:a6:aa:6c:f6:b5:31:05:
2d:d7:0d:7d:3a:c7:0b:49:7f:35:4c:8e:b1:36:8f:
71:8f:a9:99:64:da:88:ab:ff:e1:6a:9c:56:71:2c:
58:d3:eb:db:30:1f:55:19:ae:0d:7a:f5:d7:b1:31:
2e:c4:20:dc:41:ab:57:ec:c5:03:74:66:39:dd:27:
c1:c6:67:a8:e9:73:d8:22:95:e0:03:a1:a0:da:bc:
0f:c6:0d:4d:8b:04:73:8f:62:d6:4e:0d:53:17:17:
70:c0:49:bb:60:a0:16:d3:db:7d:f9:33:6f:5c:9b:
c8:68:4e:81:b3:b7:47:96:e5:79:51:d0:cf:4e:e3:
1c:2a:59:bb:a8:6f:c7:2b:f3:4e:b0:28:86:d0:80:
26:b9:78:64:d9:9e:1b:d0:89:51:f7:fb:e4:a9:3a:
51:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:38:11:E9:F0:84:7E:8E:B9:97:52:5E:64:9E:0B:8B:67:44:B0:19
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/kjgR6fCEfo65l1JeZJ4Li2dEsBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.161.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:1a:54:c8:44:f9:72:5b:66:9b:2a:85:cd:c3:ad:2e:16:6a:
b7:6f:f7:12:be:44:af:6f:b6:8d:8f:38:4c:81:c2:3c:4e:1e:
f2:66:58:7d:3b:c8:04:a5:d2:37:e0:05:26:b2:0c:41:61:19:
ca:64:9b:b6:fa:a3:cf:06:a2:91:31:df:1c:18:ae:e7:0c:a5:
85:c6:ab:9f:0d:64:b8:a6:d6:73:24:d9:94:af:06:73:0e:5a:
c8:ec:d5:d7:c3:ee:51:b8:32:5c:57:d6:fe:2c:d7:ff:a8:bd:
d8:70:3d:a3:7a:d3:dd:38:25:75:0c:52:a7:40:04:ec:02:fd:
c9:10:60:cb:89:7b:af:53:3d:ba:9e:52:e2:ac:05:1e:19:94:
b8:06:e8:10:64:0e:65:b5:57:49:fe:8a:6c:ae:86:ed:6b:1a:
9d:6e:fb:dd:39:97:4b:08:97:73:4b:03:63:96:15:df:d2:f6:
33:c9:2d:b1:37:94:09:87:e1:a9:39:20:5e:8d:9e:04:ca:08:
c8:ff:7c:3a:a5:7a:04:44:bb:8e:c6:10:2f:57:99:39:ea:fd:
b7:46:00:24:45:2d:70:ee:04:fe:f0:59:3d:e2:d0:01:53:ad:
59:9f:f6:5e:a0:4b:fd:35:cf:ce:93:7c:bd:0e:3d:b4:6a:7c:
ef:c3:ed:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZSYln29KpMSVcubkt1lfNEVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzhiYzNiZDM1MGVlZGM0ZjM3N2MyMjQ1NTZiMjUwZGE2
ZGRlNmYwHhcNMjUwMTI0MTM1MzA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjM4MTFlOWYwODQ3ZThlYjk5NzUyNWU2NDllMGI4YjY3NDRiMDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy210nETtWqgAOZGyo7Uog7JUjqes
3NhqS7LsFu7RbPmoUaecsBuK1+r9ffwiIK4iRSpXQAgUpry4pCjnktuODKk5MO/N
JKXYYDYrC6fvQ1+4OrRLSf8w9pIE84uOXEP45qaqbPa1MQUt1w19OscLSX81TI6x
No9xj6mZZNqIq//hapxWcSxY0+vbMB9VGa4NevXXsTEuxCDcQatX7MUDdGY53SfB
xmeo6XPYIpXgA6Gg2rwPxg1NiwRzj2LWTg1TFxdwwEm7YKAW09t9+TNvXJvIaE6B
s7dHluV5UdDPTuMcKlm7qG/HK/NOsCiG0IAmuXhk2Z4b0IlR9/vkqTpRnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJI4EenwhH6OuZdSXmSeC4tnRLAZMB8GA1UdIwQY
MBaAFMN4vDvTUO7cTzd8IkVWslDabd5vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYt
NDQxNDU1OGZkY2JiLzEva2pnUjZmQ0VmbzY1bDFKZVpKNExpMmRFc0JrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY2ZTQtZjE0Yi00YjMxLWJkYWYtNDQxNDU1OGZkY2Ji
LzEvdzNpOE85TlE3dHhQTjN3aVJWYXlVTnB0M204LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXX+hMA0G
CSqGSIb3DQEBCwUAA4IBAQCNGlTIRPlyW2abKoXNw60uFmq3b/cSvkSvb7aNjzhM
gcI8Th7yZlh9O8gEpdI34AUmsgxBYRnKZJu2+qPPBqKRMd8cGK7nDKWFxqufDWS4
ptZzJNmUrwZzDlrI7NXXw+5RuDJcV9b+LNf/qL3YcD2jetPdOCV1DFKnQATsAv3J
EGDLiXuvUz26nlLirAUeGZS4BugQZA5ltVdJ/opsrobtaxqdbvvdOZdLCJdzSwNj
lhXf0vYzyS2xN5QJh+GpOSBejZ4EygjI/3w6pXoERLuOxhAvV5k56v23RgAkRS1w
7gT+8Fk94tABU61Zn/ZeoEv9Nc/Ok3y9Dj20anzvw+12
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:44:51 2025 by rpki-client