Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/_egDn_R13ji7b3u1Tjj3Y_QbDBM.roa
File: _egDn_R13ji7b3u1Tjj3Y_QbDBM.roa (raw, json)
Hash identifier: dp88l3sawyUHTsaJ7Quhexs5jwjBdF9xF19jC3lXCMY=
Subject key identifier: FD:E8:03:9F:F4:75:DE:38:BB:6F:7B:B5:4E:38:F7:63:F4:1B:0C:13
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194266C739F27BB80173E21947D53FA73F2
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/_egDn_R13ji7b3u1Tjj3Y_QbDBM.roa
Signing time: Thu 02 Jan 2025 09:50:29 +0000
ROA not before: Thu 02 Jan 2025 09:50:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39374
IP address blocks: 46.237.44.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:73:9f:27:bb:80:17:3e:21:94:7d:53:fa:73:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 09:50:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fde8039ff475de38bb6f7bb54e38f763f41b0c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6d:0b:d9:7e:6a:94:0e:ec:96:90:ec:d5:44:
da:57:4c:3c:d7:66:96:d7:ce:6d:46:b2:1e:de:ef:
ed:82:01:df:ca:23:56:7f:5f:4a:73:60:08:4e:e2:
5a:34:cd:12:26:a3:57:ad:10:1a:d7:15:e3:6f:6b:
bb:a4:8a:04:08:a0:9f:d3:2f:63:f9:7e:12:ec:22:
74:2f:5d:f3:40:53:45:50:bf:60:d6:55:ad:8f:10:
ae:3b:a3:e9:92:e2:b0:d7:02:c5:0f:a0:55:71:14:
5f:28:00:27:e5:10:bb:a1:20:b6:3c:2c:62:66:80:
16:8b:e3:bb:11:6d:c5:e8:c1:19:39:b5:78:eb:e7:
66:e8:27:c9:3f:c8:83:fd:27:fd:c7:33:08:91:fb:
ba:87:ef:5a:e9:0b:36:16:bc:d8:55:1f:df:fc:c9:
b1:d5:9e:1c:f9:27:24:f5:a8:dd:1e:91:c2:c2:65:
c8:32:e7:f0:bc:ea:61:50:d3:bb:c6:37:5d:41:00:
d3:1a:74:6b:b9:09:29:1b:2d:f9:b3:8c:8f:a7:bc:
71:12:7a:da:fc:7c:5a:56:aa:58:96:3f:7d:3c:71:
6a:48:27:9f:ff:0c:81:be:1e:75:1b:cf:3c:ab:1b:
07:2e:4b:3c:65:b7:dc:64:3a:6e:41:0d:e5:a7:87:
db:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:E8:03:9F:F4:75:DE:38:BB:6F:7B:B5:4E:38:F7:63:F4:1B:0C:13
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/_egDn_R13ji7b3u1Tjj3Y_QbDBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.237.44.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:13:90:dd:e5:63:4e:d5:d2:8c:c8:37:b9:0c:d0:54:0d:ac:
e6:71:bc:b5:8d:db:05:a8:f7:1c:dd:2a:40:51:55:63:34:5f:
00:b1:c2:c8:e5:b8:e7:64:84:23:99:ef:72:e0:b8:36:55:5c:
3c:76:47:5e:52:6a:43:47:a9:4b:4f:ea:f1:ac:d1:71:9f:2e:
cb:98:af:1d:d1:d1:21:2d:14:29:e6:bc:4f:8d:5c:24:42:80:
02:bf:0e:fa:b1:b0:11:ad:67:67:91:e2:18:d8:d0:cf:16:3c:
03:02:7f:3b:ee:9a:b3:fd:11:b4:6d:90:d4:4f:3d:7a:2a:fe:
f4:1f:a6:5e:18:de:62:80:82:db:cf:68:e7:a5:6b:0a:c8:2b:
ab:e5:c2:f4:f3:bd:4c:2a:6b:d9:a1:e6:f4:5f:9b:13:f7:7e:
80:f5:b3:1a:e8:06:0c:48:04:d5:07:0b:55:fc:ec:b1:24:67:
58:ee:83:1f:71:84:14:a8:4e:55:75:8f:80:b0:a7:5e:81:59:
a9:09:23:c0:14:37:0a:e2:12:5d:34:a6:8a:7b:6d:39:cc:46:
6a:ab:4f:36:a8:16:a1:43:f6:ac:5b:69:d2:97:77:cc:96:28:
e2:91:4c:bb:b1:3b:60:29:ef:bd:e3:cf:bc:d9:10:a4:46:db:
3c:2f:f8:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:41:41 2025 by rpki-client