Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/DnMcAmCE-Mt22H-4wL41f_JpZs4.roa
File: DnMcAmCE-Mt22H-4wL41f_JpZs4.roa (raw, json)
Hash identifier: 6SxDCZ2uuaoM3EcPW8ufCmkTUSxW4OmvOerANSO0dnk=
Subject key identifier: 0E:73:1C:02:60:84:F8:CB:76:D8:7F:B8:C0:BE:35:7F:F2:69:66:CE
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01968788C8972E97E085282F2498039CA532
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/DnMcAmCE-Mt22H-4wL41f_JpZs4.roa
Signing time: Wed 30 Apr 2025 16:30:10 +0000
ROA not before: Wed 30 Apr 2025 16:30:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44547
IP address blocks: 31.210.42.0/24 maxlen: 24
31.210.55.0/24 maxlen: 24
78.135.67.0/24 maxlen: 24
78.135.82.0/24 maxlen: 24
78.135.83.0/24 maxlen: 24
78.135.111.0/24 maxlen: 24
188.132.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:88:c8:97:2e:97:e0:85:28:2f:24:98:03:9c:a5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 30 16:30:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e731c026084f8cb76d87fb8c0be357ff26966ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:49:3b:30:63:c0:f4:8f:d0:8e:75:89:28:a8:
dd:83:89:d0:02:11:d2:30:ef:3c:2e:bd:2d:eb:53:
75:77:dd:2a:53:6d:00:a1:d5:6c:fd:d2:76:82:ae:
88:da:58:dc:c7:8f:54:c6:76:72:48:02:8a:c2:31:
e5:85:19:46:80:31:7d:95:e4:d6:4b:f6:6b:fa:0a:
46:95:59:16:e0:e3:68:37:d7:32:d3:16:7d:7e:7d:
11:47:13:8e:9f:e0:9e:0f:8e:a9:84:c6:67:5e:7e:
d8:85:bc:3c:fb:82:2f:15:05:8b:4d:53:7a:36:7b:
89:5f:a8:ff:8b:51:32:bc:5c:37:83:29:d8:de:a4:
e2:35:60:e1:37:0e:1d:71:77:ff:19:76:46:05:3e:
73:c8:c8:c1:4e:c7:b9:21:89:b1:b9:b8:b9:82:e2:
e1:51:21:2d:b9:5e:64:a9:9e:80:a1:71:db:ab:28:
1a:cb:28:48:b2:76:79:c4:28:f5:f7:bb:35:25:41:
20:58:55:eb:a0:08:09:52:57:1a:67:d2:80:d0:ca:
f8:34:84:b6:3c:5d:0f:a0:8b:ab:04:56:14:ce:9a:
d3:74:3a:e4:56:50:89:9b:ff:22:61:de:1a:e7:3b:
66:12:a5:7a:8c:20:0e:04:91:bd:13:4d:dc:5f:53:
5c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:73:1C:02:60:84:F8:CB:76:D8:7F:B8:C0:BE:35:7F:F2:69:66:CE
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/DnMcAmCE-Mt22H-4wL41f_JpZs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.42.0/24
31.210.55.0/24
78.135.67.0/24
78.135.82.0/23
78.135.111.0/24
188.132.168.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ee:b3:62:b7:e1:85:d1:70:e8:f0:4f:e6:ff:d2:58:5f:92:
72:1c:4a:99:01:9f:de:bd:8b:4d:30:bf:a7:2c:d0:b2:4e:02:
02:df:d2:0f:d1:6b:2c:52:2f:81:15:fc:4d:7d:67:b0:22:0d:
95:96:fe:5a:f0:36:0b:ad:72:5c:88:68:44:f3:a0:a1:81:4b:
15:ae:3e:19:11:58:c2:22:16:86:a4:b5:f1:7d:e5:2b:72:3b:
eb:6e:f5:87:62:74:40:be:46:b9:de:b3:64:d2:fd:90:4a:20:
74:93:13:b9:c1:aa:8c:28:52:c5:72:db:f2:f0:3b:a2:01:34:
bd:2f:26:58:64:75:c5:51:9d:8a:16:c6:ec:48:c9:84:81:cd:
c6:50:53:d4:e6:b5:85:14:c5:f0:93:ea:33:33:86:6e:aa:70:
a8:b7:d7:3e:30:cf:42:97:52:f9:fe:a6:20:54:9a:3e:04:3c:
b1:18:8f:02:82:81:a5:0a:50:c1:9b:fd:81:af:8a:cb:97:17:
26:c9:26:38:2c:bf:ae:13:d5:77:55:ac:7e:e2:ea:c4:00:c1:
1c:34:34:e2:b1:ce:b7:40:e1:66:58:ca:a3:2f:d4:74:23:a4:
84:35:43:bb:c0:70:9f:01:59:7a:18:71:55:7c:16:b9:ee:f9:
05:59:29:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 06:25:08 2025 by rpki-client