Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/DsVzRWrdz7vC9OYierYXebpJHaw.roa
File: DsVzRWrdz7vC9OYierYXebpJHaw.roa (raw, json)
Hash identifier: SJCiwM2NUrH38rp5W2879IHF1qFUPbmJolmn2nUMdeY=
Subject key identifier: 0E:C5:73:45:6A:DD:CF:BB:C2:F4:E6:22:7A:B6:17:79:BA:49:1D:AC
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019645498DC14D7A7CBE52E574288D79FE3E
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/DsVzRWrdz7vC9OYierYXebpJHaw.roa
Signing time: Thu 17 Apr 2025 19:46:10 +0000
ROA not before: Thu 17 Apr 2025 19:46:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 45014
IP address blocks: 103.84.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:49:8d:c1:4d:7a:7c:be:52:e5:74:28:8d:79:fe:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Apr 17 19:46:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0ec573456addcfbbc2f4e6227ab61779ba491dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:69:70:57:b1:99:2d:98:88:98:4e:52:9a:86:
5a:cd:d6:5f:ed:4a:23:e9:40:6b:44:41:46:a4:1e:
3c:2f:38:d7:7b:b7:7b:92:0f:69:1b:cb:63:fe:71:
de:58:62:d4:f3:6c:91:ad:fc:ff:7b:24:59:7c:a2:
0f:01:44:62:32:b3:a0:2b:1c:20:e4:d0:4a:f6:f3:
81:ea:76:84:78:a7:95:26:13:5c:55:66:49:31:c7:
cd:be:6e:34:0f:b8:97:61:01:f1:1e:3c:f7:da:3c:
19:25:d3:5d:7f:31:57:1a:d4:eb:f2:ee:06:d8:a7:
4f:1e:c6:42:59:3a:4d:1e:f9:eb:f3:50:26:be:3c:
6b:b6:19:c9:f5:f9:eb:12:b9:b9:04:f9:70:1a:69:
a2:c2:22:f7:88:09:67:37:68:af:98:99:d7:ee:96:
24:7f:85:5f:99:5f:fa:13:b0:61:29:4c:6a:40:3e:
bb:75:c8:96:9d:a4:b3:89:45:d5:74:8e:87:34:da:
45:a8:48:7d:01:98:cd:92:ba:5f:64:f0:e9:34:dd:
d9:e3:70:ff:84:41:4e:0f:18:ae:c7:1f:27:fc:ab:
d9:89:36:cd:93:7a:40:96:dc:9b:69:87:f9:1f:7c:
24:fd:c6:05:00:c9:71:3e:4f:64:54:ba:ce:2a:9a:
5a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C5:73:45:6A:DD:CF:BB:C2:F4:E6:22:7A:B6:17:79:BA:49:1D:AC
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/DsVzRWrdz7vC9OYierYXebpJHaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.84.214.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:e5:a1:3a:4b:d9:1c:53:25:ef:4a:e5:29:a5:9e:ab:6f:8e:
f9:c1:c0:c8:ad:75:62:ff:d9:05:45:98:3d:b3:ad:63:c7:55:
32:4f:58:4c:6b:ac:10:b2:a8:17:53:d6:f4:92:43:63:c5:e1:
72:6f:0a:c2:e3:db:42:4f:11:77:df:28:83:fb:99:c4:a7:80:
39:fb:a7:73:51:61:c5:7c:f8:4a:25:5f:db:6b:fb:ad:3c:e1:
1a:eb:2c:ad:1e:37:2f:25:c2:10:df:f2:44:c2:54:a9:48:8d:
86:b3:4b:b9:a4:f9:e0:95:fd:d2:72:ab:6e:94:2b:95:9a:59:
cd:86:a6:7f:bf:de:8d:1f:d8:d8:8e:4a:5f:a9:a2:3a:ae:93:
9f:f2:ec:11:9b:f6:19:ee:c5:94:9b:fe:a2:14:60:69:13:1f:
86:2b:06:a9:95:48:8d:57:70:f7:71:65:27:41:6d:9b:76:a0:
e9:88:39:75:89:f0:43:05:58:b0:93:22:11:fe:8e:bf:e3:81:
5e:00:24:47:5a:78:91:54:39:ab:16:b9:69:ba:3a:85:9d:36:
a7:1a:95:1d:6d:68:94:5f:71:21:77:8a:52:37:83:c5:0a:47:
70:fd:ca:33:86:7c:ed:4a:e9:f5:32:bb:c2:32:ee:47:51:f4:
44:07:54:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZZFSY3BTXp8vlLldCiNef4+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjUwNDE3MTk0NjEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWM1NzM0NTZhZGRjZmJiYzJmNGU2MjI3YWI2MTc3OWJhNDkxZGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWlwV7GZLZiImE5SmoZazdZf7Uoj
6UBrREFGpB48LzjXe7d7kg9pG8tj/nHeWGLU82yRrfz/eyRZfKIPAURiMrOgKxwg
5NBK9vOB6naEeKeVJhNcVWZJMcfNvm40D7iXYQHxHjz32jwZJdNdfzFXGtTr8u4G
2KdPHsZCWTpNHvnr81AmvjxrthnJ9fnrErm5BPlwGmmiwiL3iAlnN2ivmJnX7pYk
f4VfmV/6E7BhKUxqQD67dciWnaSziUXVdI6HNNpFqEh9AZjNkrpfZPDpNN3Z43D/
hEFODxiuxx8n/KvZiTbNk3pAltybaYf5H3wk/cYFAMlxPk9kVLrOKppa8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA7Fc0Vq3c+7wvTmInq2F3m6SR2sMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvRHNWelJXcmR6N3ZDOU9ZaWVyWVhlYnBKSGF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1TWMA0G
CSqGSIb3DQEBCwUAA4IBAQCs5aE6S9kcUyXvSuUppZ6rb475wcDIrXVi/9kFRZg9
s61jx1UyT1hMa6wQsqgXU9b0kkNjxeFybwrC49tCTxF33yiD+5nEp4A5+6dzUWHF
fPhKJV/ba/utPOEa6yytHjcvJcIQ3/JEwlSpSI2Gs0u5pPnglf3ScqtulCuVmlnN
hqZ/v96NH9jYjkpfqaI6rpOf8uwRm/YZ7sWUm/6iFGBpEx+GKwaplUiNV3D3cWUn
QW2bdqDpiDl1ifBDBViwkyIR/o6/44FeACRHWniRVDmrFrlpujqFnTanGpUdbWiU
X3Ehd4pSN4PFCkdw/cozhnztSun1MrvCMu5HUfREB1TY
-----END CERTIFICATE-----
Generated at Sun Apr 27 16:01:20 2025 by rpki-client