Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/beUJo85NyI4i5iLqNSbZ_I1QprU.roa
File: beUJo85NyI4i5iLqNSbZ_I1QprU.roa (raw, json)
Hash identifier: qpGnjQmDb+ETX0Rd6WdzMk/MeAmKsDcTEEChjQcFeT0=
Subject key identifier: 6D:E5:09:A3:CE:4D:C8:8E:22:E6:22:EA:35:26:D9:FC:8D:50:A6:B5
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01964E263B01D0FE0C7EFA830830CA7D7268
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/beUJo85NyI4i5iLqNSbZ_I1QprU.roa
Signing time: Sat 19 Apr 2025 13:04:10 +0000
ROA not before: Sat 19 Apr 2025 13:04:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 273274
IP address blocks: 45.67.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 19:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:26:3b:01:d0:fe:0c:7e:fa:83:08:30:ca:7d:72:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Apr 19 13:04:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6de509a3ce4dc88e22e622ea3526d9fc8d50a6b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9f:68:f1:fe:60:1c:b4:9d:5f:54:fd:5b:b7:
68:8a:19:1f:8a:73:47:08:13:23:e7:07:a8:f1:91:
16:52:97:6b:98:39:aa:1d:a1:f9:e0:c0:57:70:3b:
ee:38:06:5b:18:d5:84:d8:82:9c:10:2f:7b:8c:b4:
a7:34:90:e1:c1:8e:15:74:a1:86:8f:83:e9:7f:55:
85:a5:16:24:80:81:be:1e:86:60:b6:5e:0b:4a:f7:
f2:56:2b:a9:31:75:9b:fd:73:26:5e:a5:11:73:e3:
ca:b5:86:0c:94:8b:2e:97:87:be:0f:9e:3f:b8:4f:
8d:13:c3:c7:4b:97:54:46:38:76:da:cf:5a:cd:93:
27:14:3d:fa:3b:b8:fd:aa:55:05:52:1c:31:33:6e:
65:9c:27:c2:c5:fb:d9:86:df:b9:75:58:4f:b9:39:
ab:aa:72:9e:07:aa:47:24:ea:b4:fd:6e:4c:96:cc:
16:54:bb:bd:b3:e9:92:82:9b:4f:06:61:59:58:32:
64:40:9f:04:f7:23:dd:1b:02:4c:5c:77:26:9e:ee:
86:c7:e2:ea:3f:35:34:81:f8:cb:c3:08:bd:eb:c2:
42:c4:3a:e3:57:60:11:42:20:e2:08:4c:4e:9a:03:
ca:19:d1:47:76:eb:54:4e:a5:a3:6c:7d:18:c0:81:
c5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E5:09:A3:CE:4D:C8:8E:22:E6:22:EA:35:26:D9:FC:8D:50:A6:B5
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/beUJo85NyI4i5iLqNSbZ_I1QprU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.244.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:2a:c1:1b:40:14:45:c5:3e:2d:66:8f:36:f1:c5:30:95:05:
dd:57:21:e4:42:d8:b9:45:02:63:13:e7:cb:3c:7f:82:5c:34:
cb:c3:f9:23:f6:45:74:2f:e9:f9:71:5b:ee:9e:9d:de:1e:6e:
20:4d:a2:2e:cc:5e:fe:82:e8:0d:23:17:f3:fe:c6:18:5d:28:
00:2a:ff:d6:37:a7:89:b9:b8:af:88:db:66:e7:0f:63:7d:e3:
83:25:2f:89:a0:1c:23:c6:64:b2:b2:31:af:78:19:08:06:0c:
9b:40:55:3e:58:68:38:74:fc:c5:ee:10:09:c5:da:9d:1d:1f:
ac:8e:1b:db:4c:7b:54:e9:5b:5c:54:ed:0f:1c:db:90:aa:37:
68:e1:42:ca:5e:00:c5:41:25:da:77:22:cc:51:f5:8e:3c:6f:
49:3a:7f:5f:88:00:91:62:be:d3:e9:34:80:f4:ac:94:17:a8:
a3:a2:9b:3c:1e:94:bf:72:53:40:4a:91:6a:26:71:40:48:89:
f8:20:c2:b9:21:d6:93:b1:a4:71:91:26:10:2a:3b:dd:1f:e7:
3d:2a:30:2d:02:ab:83:27:e4:75:df:d9:9b:dc:99:f2:cd:2b:
0b:5e:ec:7f:dd:86:d9:cf:10:e0:66:9a:b3:da:88:b7:e1:60:
14:d0:5d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 04:08:55 2025 by rpki-client