Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/7S8CxuCZgwEuPwPQrodHEuixK_c.roa
File: 7S8CxuCZgwEuPwPQrodHEuixK_c.roa (raw, json)
Hash identifier: Qpde78GgRiZiGUxC0MztnIMZR2EI3yqwC8R5K89O7xs=
Subject key identifier: ED:2F:02:C6:E0:99:83:01:2E:3F:03:D0:AE:87:47:12:E8:B1:2B:F7
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 0194214454E56056BD0F892B4DDAB81E5B26
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/7S8CxuCZgwEuPwPQrodHEuixK_c.roa
Signing time: Wed 01 Jan 2025 09:48:33 +0000
ROA not before: Wed 01 Jan 2025 09:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207240
IP address blocks: 171.25.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:54:e5:60:56:bd:0f:89:2b:4d:da:b8:1e:5b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jan 1 09:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed2f02c6e09983012e3f03d0ae874712e8b12bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8f:0c:be:5a:81:22:ad:ee:f9:61:f5:6d:64:
1a:3b:24:f4:e8:69:55:fc:65:9c:f1:5b:51:ae:67:
f9:65:4c:ff:06:5b:9a:11:5f:dc:be:a7:6e:12:30:
cd:f1:9a:0f:f7:70:8d:8d:e4:90:24:4b:a5:25:90:
9d:09:9f:17:b0:9c:b9:1a:db:8a:15:8a:a2:d4:64:
35:c3:9b:ca:1e:04:d5:eb:7a:db:c2:e7:15:31:ec:
95:aa:15:21:a8:d8:52:9b:af:b5:ff:d4:a7:74:3e:
77:08:39:8a:62:7b:6c:ac:f1:e2:98:32:21:99:d7:
01:7b:9d:8d:6d:51:74:65:a9:41:29:a3:15:48:6f:
42:e3:5b:52:b7:9f:40:1a:ec:3b:e2:e8:b6:84:6b:
7c:0a:75:8f:71:90:76:c7:df:69:27:9e:a2:3e:56:
e5:be:60:ed:22:7d:08:f5:9b:d6:1d:0e:d3:b9:9b:
dc:27:76:7f:d5:55:30:91:94:9e:f4:4e:58:9b:87:
e8:0b:26:33:e6:e8:51:93:62:c7:b0:73:a7:de:97:
d7:82:cc:15:30:f8:10:1d:c4:01:75:95:1d:7e:82:
d1:6b:a8:2c:2a:ae:1a:7f:13:37:5f:42:49:8b:9b:
9c:f1:b1:50:f1:9e:f7:87:31:45:4a:6a:7a:d5:32:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2F:02:C6:E0:99:83:01:2E:3F:03:D0:AE:87:47:12:E8:B1:2B:F7
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/7S8CxuCZgwEuPwPQrodHEuixK_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.25.177.0/24
Signature Algorithm: sha256WithRSAEncryption
78:09:aa:36:8c:66:dd:36:4d:0f:b8:71:97:b7:a8:89:34:ff:
bf:69:f7:13:96:ce:d0:8f:7c:81:10:fd:ae:91:9c:02:1c:13:
de:ad:10:33:4e:34:ae:76:d8:10:06:1d:f1:80:b5:a0:00:e0:
92:ea:cb:07:83:1f:25:3e:39:df:bc:71:f1:8e:77:ef:e5:6e:
7d:c6:7e:20:da:30:4d:af:1d:f4:54:64:23:af:c4:26:34:db:
bc:7e:d3:e6:da:6e:6f:20:3b:f6:35:87:ae:93:6e:84:9c:bf:
d4:ff:e4:66:5f:45:a3:e8:b3:5a:90:e0:f8:42:b9:8e:85:e0:
be:a5:bb:1d:a1:a5:1b:dc:97:0f:c2:f2:3a:d9:58:93:6b:3d:
f8:e2:76:a8:3a:08:2a:31:51:d5:57:f6:ad:5b:e2:cb:a1:36:
24:19:7e:01:db:b3:5a:02:12:c2:33:10:3c:80:2d:d3:88:8e:
d7:17:b3:00:8c:85:c6:49:96:8c:a2:25:18:47:79:40:92:9e:
87:3c:cc:3c:6e:02:40:eb:f4:12:aa:ad:10:49:03:0a:02:8e:
0c:0a:2b:f6:8b:27:b3:19:fb:9e:9e:97:eb:3d:28:aa:4a:41:
f6:c5:9b:57:f8:c4:62:ad:45:11:48:20:13:5d:40:ed:74:01:
c0:0d:3d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:27:32 2025 by rpki-client