Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/sTodJGVa8zYAQXUyHcKityrKMhw.roa
File: sTodJGVa8zYAQXUyHcKityrKMhw.roa (raw, json)
Hash identifier: OCjCckKNvmiaHxZzqtZ4rx+ccV72o773purW+SW4YeI=
Subject key identifier: B1:3A:1D:24:65:5A:F3:36:00:41:75:32:1D:C2:A2:B7:2A:CA:32:1C
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 01963CE6A4ED46E0F8470EA4702EFE5628C7
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/sTodJGVa8zYAQXUyHcKityrKMhw.roa
Signing time: Wed 16 Apr 2025 04:41:10 +0000
ROA not before: Wed 16 Apr 2025 04:41:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 212.116.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:e6:a4:ed:46:e0:f8:47:0e:a4:70:2e:fe:56:28:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Apr 16 04:41:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b13a1d24655af336004175321dc2a2b72aca321c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b6:eb:fb:62:e6:00:cf:95:10:f0:eb:22:a6:
83:2d:ae:e4:ce:94:5e:2f:71:e2:92:fb:54:ba:6a:
31:bb:d1:16:4d:28:51:60:3a:a4:e7:8b:f2:5f:2a:
bb:6e:fa:d8:4c:9a:4e:66:b4:b6:fd:c2:76:be:65:
39:e8:9e:6c:27:ff:d6:a9:80:38:ff:9d:f1:ab:64:
89:7e:3e:ab:13:78:94:93:a3:14:36:8b:a2:5b:70:
a1:d1:99:75:3d:fe:07:69:60:ee:56:dd:b9:74:69:
d7:4e:e3:bf:e2:b5:d1:ec:83:b0:af:6c:a1:41:40:
e2:ae:7c:8b:28:59:33:82:4a:13:9f:ea:54:ce:c7:
5c:d7:e2:13:53:a3:b6:41:aa:6b:c8:4f:53:ea:10:
2c:a3:e7:25:37:19:b7:83:86:eb:88:9d:2e:0f:5f:
04:9d:36:d7:93:04:47:0e:a4:55:59:90:52:3c:86:
e4:4e:7a:1d:7f:71:ed:16:c1:ed:29:b3:6d:3a:75:
c8:80:3b:06:bd:f2:2a:a3:a5:11:c9:39:bf:69:41:
e6:ec:a0:d5:5f:55:8d:42:b9:6d:df:b8:3f:00:4b:
f2:19:7b:ce:fa:ea:51:3a:a5:b7:99:cd:68:7f:ab:
76:b6:0d:e4:f9:a7:b0:51:55:a0:a0:fe:02:0b:c3:
60:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:3A:1D:24:65:5A:F3:36:00:41:75:32:1D:C2:A2:B7:2A:CA:32:1C
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/sTodJGVa8zYAQXUyHcKityrKMhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.116.226.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:b6:8f:a8:10:ab:de:d0:e9:e7:78:bd:93:f9:ad:ce:6c:bc:
32:07:ea:61:d9:e5:0f:45:aa:f2:be:d8:1b:e9:39:3e:88:68:
5b:be:19:09:71:5b:ed:85:60:7b:02:22:ad:0d:a7:dd:ab:b6:
1a:eb:e6:2d:1e:2e:78:43:a1:fa:24:ea:e3:d2:9d:fd:18:8f:
4a:eb:77:da:a3:09:7c:b9:4f:d8:7e:b2:ab:06:5f:c9:5c:7d:
41:ce:3b:69:a5:0d:48:aa:d5:58:07:84:4a:64:13:46:26:42:
b2:1b:b5:99:89:15:0f:13:50:c4:19:d1:10:5d:88:f0:7b:c4:
6a:4d:87:af:14:f8:7d:5a:99:2d:2b:d1:c1:bd:4f:9e:5d:0c:
80:70:24:7c:b3:aa:65:d4:14:81:e3:c8:2c:33:00:98:d4:ea:
df:00:5b:1d:28:ac:ba:e2:0b:b3:b6:45:02:41:2b:79:17:33:
cd:9e:c4:8c:3a:de:4b:45:a3:bd:2c:e4:82:c6:cb:b1:b6:8b:
94:9c:ab:4e:ff:5b:2a:41:4c:7f:4f:5b:6c:3d:25:55:b4:df:
16:cc:4a:4d:04:83:01:84:d9:25:bf:c3:f1:21:95:7d:a4:14:
64:2e:e1:d0:98:9a:cc:d6:4f:f6:f6:8a:3a:71:8d:7c:d3:da:
5f:ba:c0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:47:44 2025 by rpki-client