Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/5UkoSBgwT2Qf3aFassiPq3Vf9Jg.roa
File: 5UkoSBgwT2Qf3aFassiPq3Vf9Jg.roa (raw, json)
Hash identifier: t3qUJPhi+Poc2aWmH2JZX3lQ8LuDxwy2KrfiHtXlPiA=
Subject key identifier: E5:49:28:48:18:30:4F:64:1F:DD:A1:5A:B2:C8:8F:AB:75:5F:F4:98
Certificate issuer: /CN=e93f3a41e6be524115c6c2b558bc280043a0224e
Certificate serial: 019420682355E7219FE9363C2E897BC86718
Authority key identifier: E9:3F:3A:41:E6:BE:52:41:15:C6:C2:B5:58:BC:28:00:43:A0:22:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6T86Qea-UkEVxsK1WLwoAEOgIk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/5UkoSBgwT2Qf3aFassiPq3Vf9Jg.roa
Signing time: Wed 01 Jan 2025 05:48:03 +0000
ROA not before: Wed 01 Jan 2025 05:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51859
IP address blocks: 87.237.200.0/21 maxlen: 24
87.237.201.0/24 maxlen: 24
87.237.202.0/23 maxlen: 24
87.237.203.0/24 maxlen: 24
87.237.204.0/22 maxlen: 24
87.237.204.0/24 maxlen: 24
91.214.200.0/22 maxlen: 24
91.222.4.0/22 maxlen: 24
92.249.52.0/22 maxlen: 24
92.249.52.0/24 maxlen: 24
185.29.100.0/22 maxlen: 24
188.93.120.0/22 maxlen: 24
2a04:2e40::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/6T86Qea-UkEVxsK1WLwoAEOgIk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/6T86Qea-UkEVxsK1WLwoAEOgIk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/6T86Qea-UkEVxsK1WLwoAEOgIk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:23:55:e7:21:9f:e9:36:3c:2e:89:7b:c8:67:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e93f3a41e6be524115c6c2b558bc280043a0224e
Validity
Not Before: Jan 1 05:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e549284818304f641fdda15ab2c88fab755ff498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bb:1f:67:83:ac:cb:6a:07:2b:bb:b9:ac:c4:
af:f0:26:46:01:36:d5:9c:be:04:1a:45:fa:f5:fd:
07:25:b3:8d:73:cf:53:77:bf:b2:4f:b6:88:4a:27:
ea:5e:e5:3e:6d:e2:2b:5a:27:39:36:dc:9d:fd:e9:
f7:f3:6f:8a:fd:2c:4f:3c:7b:b7:91:e7:d7:d8:93:
16:4f:6c:35:d6:87:35:24:b3:c3:61:59:25:f7:c9:
dc:f5:19:55:4d:2d:d0:84:e2:a1:d5:d3:77:9b:0a:
70:6e:b0:f8:60:b6:1c:e8:71:60:e2:73:4a:f7:cb:
09:2e:76:e5:ab:4b:b2:3c:72:c6:ed:65:ff:c5:37:
ca:13:26:f7:d9:44:db:e0:e1:16:ec:e4:25:76:06:
cb:e5:74:80:be:c7:31:a1:eb:3b:df:1f:eb:bb:4e:
d4:7e:99:81:c3:73:eb:84:06:5c:54:ed:18:e4:87:
d0:4b:f8:49:46:e8:12:2f:b1:81:24:c7:26:63:73:
6a:4a:71:a3:06:87:d2:2e:8a:5d:ec:50:8f:12:32:
68:87:02:ed:db:45:47:0a:51:e5:9f:43:e4:24:9b:
0a:96:fd:e4:be:17:36:0b:11:96:f3:a0:99:47:44:
5e:18:69:0a:e1:d4:65:49:bb:8c:a6:58:a4:31:dc:
7f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:49:28:48:18:30:4F:64:1F:DD:A1:5A:B2:C8:8F:AB:75:5F:F4:98
X509v3 Authority Key Identifier:
keyid:E9:3F:3A:41:E6:BE:52:41:15:C6:C2:B5:58:BC:28:00:43:A0:22:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6T86Qea-UkEVxsK1WLwoAEOgIk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/5UkoSBgwT2Qf3aFassiPq3Vf9Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a1740e-8404-42d2-af5c-10e24625a4d4/1/6T86Qea-UkEVxsK1WLwoAEOgIk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.200.0/21
91.214.200.0/22
91.222.4.0/22
92.249.52.0/22
185.29.100.0/22
188.93.120.0/22
IPv6:
2a04:2e40::/29
Signature Algorithm: sha256WithRSAEncryption
79:bd:25:28:f1:95:46:35:f7:f7:86:3d:bf:6b:e3:8b:df:05:
85:75:2f:cc:1d:92:bb:4e:50:f3:06:c1:94:1c:a4:3a:61:15:
1d:2d:55:52:c5:d3:69:60:e3:81:27:be:f0:ac:51:5a:f9:13:
d9:64:4b:22:40:f6:f1:d8:63:8d:66:91:32:18:4a:f4:88:80:
fc:fd:ef:44:8e:b8:8f:f8:3b:6a:9e:31:11:3c:ba:4a:f0:42:
e0:ec:f3:a8:0d:06:57:6c:54:17:45:eb:77:39:ed:4b:ff:e2:
43:1a:c2:98:68:a3:1f:5a:69:74:ca:94:64:13:fe:e6:29:0b:
55:9a:9e:c7:d0:68:52:24:4f:d7:ce:41:d3:d7:1a:61:86:9a:
d0:a7:97:22:ca:96:0d:9a:ec:ff:68:90:6e:cd:bf:6e:6b:17:
28:c2:1c:9a:ad:9d:b0:98:98:68:63:1e:ed:39:9a:cb:40:ff:
b8:78:40:9d:af:28:33:21:c3:8e:c1:2e:95:d1:8d:c8:a0:07:
32:42:b5:3d:30:d7:42:9e:24:33:a6:24:9b:d7:ff:b0:b1:55:
25:30:b4:4c:c3:5e:13:f8:31:e4:25:39:c5:07:a8:2b:d6:a2:
6b:a7:af:02:82:23:ea:86:07:cc:2f:13:ec:ef:6b:28:3f:3f:
e4:58:fa:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 12:25:02 2025 by rpki-client