Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Tiec2dkoJFW9tjsPKXP4xMteuKg.roa
File: Tiec2dkoJFW9tjsPKXP4xMteuKg.roa (raw, json)
Hash identifier: fefO2ouIu7rj0FYPZajEAHgHJcfMDn/aLbBU78c+GGo=
Subject key identifier: 4E:27:9C:D9:D9:28:24:55:BD:B6:3B:0F:29:73:F8:C4:CB:5E:B8:A8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0196351AA305C1DEFA046B9D64DA0F9FA673
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Tiec2dkoJFW9tjsPKXP4xMteuKg.roa
Signing time: Mon 14 Apr 2025 16:21:00 +0000
ROA not before: Mon 14 Apr 2025 16:21:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 188.208.103.0/24 maxlen: 24
188.213.0.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
193.124.225.0/24 maxlen: 24
194.85.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 09:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:35:1a:a3:05:c1:de:fa:04:6b:9d:64:da:0f:9f:a6:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 14 16:21:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e279cd9d9282455bdb63b0f2973f8c4cb5eb8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:61:34:14:1d:55:22:9a:1b:50:1b:01:fa:37:
fa:34:dc:07:c0:44:a4:85:80:f8:be:2a:6a:5f:20:
21:88:6a:e2:98:a1:f9:a3:a7:9a:cf:da:01:cc:eb:
80:75:29:51:59:f9:e1:ce:64:de:b7:68:ad:c6:58:
7a:26:88:3e:ea:5f:dd:9f:fb:00:d9:3e:1e:19:28:
37:f2:ab:00:54:a5:32:07:c9:5e:d3:24:a0:c8:6e:
aa:be:7b:93:c2:fc:5c:1a:04:02:a5:81:ca:05:03:
e9:a9:04:85:2e:cb:fa:54:8b:e7:90:20:73:d0:e2:
70:1b:63:0f:44:28:54:c1:22:30:9c:8c:75:9e:66:
44:27:55:ec:28:f5:c0:e9:13:78:08:07:bb:09:f0:
d6:0e:90:fa:66:84:c3:89:18:6b:79:bd:03:fb:6d:
06:1f:30:da:5d:a6:59:80:1a:df:ab:59:3c:ad:30:
e6:0b:f8:6a:60:af:b5:c1:03:4f:ed:99:ae:cd:74:
84:75:d8:47:dc:13:f8:0f:c8:32:25:e2:b2:e5:56:
de:83:0b:c5:5e:ac:16:2f:a4:be:92:f1:f6:1b:ac:
93:8a:3f:9d:65:07:dc:5e:4d:64:28:5f:9b:e2:1e:
2b:b1:2d:af:55:e8:0f:f7:05:ab:43:d4:9b:9d:7b:
75:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:27:9C:D9:D9:28:24:55:BD:B6:3B:0F:29:73:F8:C4:CB:5E:B8:A8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Tiec2dkoJFW9tjsPKXP4xMteuKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.208.103.0/24
188.213.0.0/24
188.214.107.0/24
193.124.225.0/24
194.85.249.0/24
Signature Algorithm: sha256WithRSAEncryption
66:52:4a:70:a9:69:d0:fc:b2:12:43:2e:11:97:9b:69:f1:16:
95:5d:2b:04:1d:7b:40:37:ca:00:ac:1a:d5:18:b1:dc:8e:98:
88:d6:f5:e8:54:da:dd:9e:c2:7b:8c:56:ef:5b:6b:ad:c3:85:
75:74:2d:46:b0:e0:8d:bc:94:67:6e:d0:b7:1b:b0:1e:b4:c0:
03:71:97:c7:27:7c:1a:64:44:0e:30:f7:1f:19:3b:ee:96:cd:
5b:94:9e:11:95:ba:a2:2b:02:29:11:72:b3:a4:0e:03:93:3b:
22:05:c1:71:1f:61:6a:c7:a5:11:b3:f6:d3:34:07:1e:b8:42:
e5:9e:33:48:98:45:99:6c:e6:21:c3:5b:08:ef:98:d1:0d:61:
85:aa:e4:af:cc:dc:36:88:65:b6:27:af:a3:de:e3:c4:29:94:
92:13:4a:ce:1e:54:a4:42:52:b9:99:ed:b5:9b:bf:b9:0b:23:
5d:34:ac:4b:04:2f:60:cc:6a:87:4e:1d:f4:df:37:ee:c7:29:
5b:69:c4:b8:ab:77:8a:7f:bc:86:80:b7:ba:65:b8:f1:ee:53:
c1:16:e8:a5:1f:1b:c8:cf:cf:22:3c:97:56:c6:b1:a0:cf:d7:
37:70:d6:3e:4e:e9:82:72:ed:ae:58:e4:69:16:62:5d:9c:3e:
64:dc:05:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:22:21 2025 by rpki-client