Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/x17WA3sSg4P38AbB39frPJDqAYE.roa
File: x17WA3sSg4P38AbB39frPJDqAYE.roa (raw, json)
Hash identifier: 1O3Iaf1UeQKRgcFwqZv/5ixCUOlb4OICtJVg3TkBghY=
Subject key identifier: C7:5E:D6:03:7B:12:83:83:F7:F0:06:C1:DF:D7:EB:3C:90:EA:01:81
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019662AE4658311BBF5253D4061017FE0999
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/x17WA3sSg4P38AbB39frPJDqAYE.roa
Signing time: Wed 23 Apr 2025 12:45:10 +0000
ROA not before: Wed 23 Apr 2025 12:45:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 142299
IP address blocks: 170.62.194.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:62:ae:46:58:31:1b:bf:52:53:d4:06:10:17:fe:09:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Apr 23 12:45:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c75ed6037b128383f7f006c1dfd7eb3c90ea0181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f5:a8:ef:be:cc:52:4c:b7:ec:93:8a:90:1e:
2c:8f:f5:89:39:a7:9b:3d:3e:ec:7e:8a:2a:98:d6:
f3:53:b5:b9:5f:16:4a:04:e0:ed:c7:94:eb:d1:05:
42:39:01:0f:00:ad:78:95:06:86:05:e2:3f:57:46:
b9:a1:75:14:30:ea:04:b8:d8:f6:29:bb:c7:25:ed:
90:09:59:e1:5f:4b:f4:73:0e:47:93:00:d5:75:37:
66:2d:1a:5b:cf:c8:9f:05:ad:20:88:f5:77:ed:b8:
1b:e0:5e:0f:4e:b9:78:c4:70:dd:67:97:6f:fa:ad:
2f:9e:2e:4c:28:99:ff:cd:54:1e:5f:68:58:1b:49:
6b:92:3d:da:c0:6b:57:a7:18:96:e0:c9:36:a1:63:
48:67:99:3d:b6:ad:f7:5a:7f:26:e8:2c:a0:bc:ec:
d5:5d:58:84:6f:12:b1:3a:ee:49:bd:75:d8:d7:5a:
c7:8d:2b:ea:ac:d5:2c:0d:96:ca:59:a8:a4:0d:47:
9f:d0:b6:a0:f8:74:5b:f5:8c:ab:16:1b:2c:cb:e6:
8e:f0:c2:58:0f:4f:ad:88:0e:97:ae:b5:93:48:e0:
2c:97:1a:e5:2d:aa:9c:73:c7:0b:04:d2:f3:41:2a:
81:1f:a1:64:c1:90:b1:92:76:26:f6:f0:79:5c:9e:
03:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5E:D6:03:7B:12:83:83:F7:F0:06:C1:DF:D7:EB:3C:90:EA:01:81
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/x17WA3sSg4P38AbB39frPJDqAYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.194.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:ac:51:98:1d:22:28:61:2f:b7:b5:6c:b2:29:95:27:97:ab:
8b:7a:fe:c7:0f:e1:9d:1c:53:c8:3d:ca:c4:6f:fe:93:31:f7:
35:40:55:4a:b5:0d:cf:09:e5:55:26:54:79:4c:5e:3b:95:a0:
a3:62:20:01:ef:bc:3e:23:3d:00:a5:11:e5:71:e2:fc:2b:79:
f7:a1:f2:b4:d4:94:9b:76:ec:e2:b9:6e:2a:92:83:dc:0b:60:
f7:d1:92:c1:94:7b:c2:ac:1e:0d:f5:95:64:fa:39:3c:06:74:
93:a4:ef:bb:b2:59:76:ec:80:5a:ce:be:58:06:64:d4:88:10:
49:95:ff:41:bf:40:bf:e8:5c:97:ba:a4:5d:fe:13:53:9e:69:
29:bb:2b:b0:25:3b:06:4b:98:db:2e:78:e9:f1:58:76:3b:8b:
38:45:9e:2e:41:04:a2:ee:d4:25:40:93:5a:1f:9f:26:ab:80:
91:55:ba:a8:ea:94:74:9e:45:bc:d1:4a:fe:e3:11:b6:71:44:
92:0a:13:8c:16:62:ed:36:0f:28:53:ce:7e:4a:01:31:11:a2:
5f:15:c9:c3:61:75:e6:56:74:d8:fa:58:aa:2b:9c:cf:8d:1d:
d1:25:be:7d:96:87:62:c1:e4:19:ef:4f:da:61:d8:94:20:5d:
39:cb:0a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:50:53 2025 by rpki-client