Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/63299a-86b2-49ff-b6e2-241eab61483f/1/b_wZ8vjY3m-nqcgia8Q1-09feRc.roa
File: b_wZ8vjY3m-nqcgia8Q1-09feRc.roa (raw, json)
Hash identifier: tIRWyoM1DUPvrXEJ2hmu6whNi1gGh3fnMsdJLxUNaQ4=
Subject key identifier: 6F:FC:19:F2:F8:D8:DE:6F:A7:A9:C8:22:6B:C4:35:FB:4F:5F:79:17
Certificate issuer: /CN=e479af1716dc461e5bb3f876215bcb94e8808ba0
Certificate serial: 01941F8C3A4FD51288240583001AC2E89F1F
Authority key identifier: E4:79:AF:17:16:DC:46:1E:5B:B3:F8:76:21:5B:CB:94:E8:80:8B:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HmvFxbcRh5bs_h2IVvLlOiAi6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/63299a-86b2-49ff-b6e2-241eab61483f/1/b_wZ8vjY3m-nqcgia8Q1-09feRc.roa
Signing time: Wed 01 Jan 2025 01:47:51 +0000
ROA not before: Wed 01 Jan 2025 01:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31367
IP address blocks: 212.69.185.0/24 maxlen: 24
212.69.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/63299a-86b2-49ff-b6e2-241eab61483f/1/5HmvFxbcRh5bs_h2IVvLlOiAi6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/63299a-86b2-49ff-b6e2-241eab61483f/1/5HmvFxbcRh5bs_h2IVvLlOiAi6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HmvFxbcRh5bs_h2IVvLlOiAi6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 10:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:3a:4f:d5:12:88:24:05:83:00:1a:c2:e8:9f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e479af1716dc461e5bb3f876215bcb94e8808ba0
Validity
Not Before: Jan 1 01:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ffc19f2f8d8de6fa7a9c8226bc435fb4f5f7917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:20:d1:76:56:9a:b4:13:24:cc:0f:d4:12:5b:
ab:92:f3:b8:80:bf:3e:c7:80:f7:46:da:8b:54:3a:
ed:41:2f:ad:1e:42:20:53:4e:ec:d4:c0:ce:5b:59:
33:21:4d:4d:d5:09:24:eb:6c:8c:91:16:23:82:2c:
0c:e0:26:fd:19:55:11:d3:54:8d:d6:a3:32:91:b6:
2e:c5:d7:df:ff:6b:eb:29:7e:8f:88:e0:6f:b0:6e:
92:ae:6f:05:17:5a:a3:25:17:97:9f:2f:ea:70:da:
ca:57:a1:b3:39:96:60:0f:af:05:97:bb:07:d7:90:
28:64:e3:bd:c3:34:bb:a5:37:a5:a3:4a:95:06:12:
60:75:b1:bf:a4:b9:1c:47:33:54:a7:9c:fb:72:b5:
4d:c5:0b:bd:85:bf:e7:f5:4b:05:40:ae:9d:67:ca:
e1:75:e2:1b:dd:90:d9:e8:44:2b:3f:b0:2f:55:3b:
ba:7e:76:2e:47:e5:fa:33:c1:16:c6:cd:dd:4d:10:
bd:0b:06:b1:4c:2d:1f:8c:b3:a3:e3:19:7d:24:8d:
c3:86:7b:28:a0:3b:2c:b1:6d:c8:6f:c8:88:d0:27:
ea:81:55:88:cf:46:03:55:26:e3:36:81:f3:7e:d5:
d4:6f:5b:c0:60:04:6d:05:ba:91:77:e9:59:ba:b7:
d6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FC:19:F2:F8:D8:DE:6F:A7:A9:C8:22:6B:C4:35:FB:4F:5F:79:17
X509v3 Authority Key Identifier:
keyid:E4:79:AF:17:16:DC:46:1E:5B:B3:F8:76:21:5B:CB:94:E8:80:8B:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HmvFxbcRh5bs_h2IVvLlOiAi6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/63299a-86b2-49ff-b6e2-241eab61483f/1/b_wZ8vjY3m-nqcgia8Q1-09feRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/63299a-86b2-49ff-b6e2-241eab61483f/1/5HmvFxbcRh5bs_h2IVvLlOiAi6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.185.0-212.69.186.255
Signature Algorithm: sha256WithRSAEncryption
21:51:7f:e1:95:bb:30:86:3d:1e:72:ae:4a:42:08:36:dd:4c:
ec:7a:01:1c:e1:52:9a:62:8c:11:a4:0a:b7:84:d9:27:9e:d6:
dc:ca:e3:35:2a:f4:06:82:61:5d:9b:5a:89:4f:a8:32:dc:07:
ad:ee:b9:4f:3e:98:f4:91:ff:e0:b8:3a:03:93:8c:b4:86:a2:
e9:36:09:d4:e5:4e:29:ed:4c:99:05:91:74:b6:99:1a:88:a0:
27:c4:03:db:c6:65:29:59:07:42:bb:1f:dd:1b:86:8b:b2:a6:
70:1c:15:b1:75:ae:c7:df:f6:1c:20:49:3e:29:72:1e:71:40:
09:59:c2:f0:02:d8:96:4c:f1:97:9a:4f:55:72:7b:ab:e2:51:
b6:e2:07:01:14:12:c0:74:2f:72:07:86:5c:82:a6:ea:f8:04:
c9:e5:b7:47:27:89:e0:dd:c4:dc:1e:8b:7f:16:02:c4:d9:17:
37:1e:af:ae:2f:6d:a2:b4:7f:77:cd:80:18:50:6c:77:b2:ca:
7e:61:b6:5a:9c:a6:fc:5d:b2:27:69:e1:44:f9:f6:b3:75:c4:
ef:a2:ab:8c:ee:2c:c6:a6:d6:04:98:f9:d3:2a:bf:5f:fc:89:
01:15:65:ff:d0:22:9b:a0:32:82:27:12:68:34:a6:1f:2c:25:
27:74:05:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:56:27 2025 by rpki-client