Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/CsxLtBLWM8Pmns5SWZf40-eGOOU.roa
File: CsxLtBLWM8Pmns5SWZf40-eGOOU.roa (raw, json)
Hash identifier: rUwofVDJEMTSS274xS+jm4HkdoblsLXgH6qdPdvIYa8=
Subject key identifier: 0A:CC:4B:B4:12:D6:33:C3:E6:9E:CE:52:59:97:F8:D3:E7:86:38:E5
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 0196B47B21F11E1641C4BA8EB6BBCE7A4C31
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/CsxLtBLWM8Pmns5SWZf40-eGOOU.roa
Signing time: Fri 09 May 2025 09:58:10 +0000
ROA not before: Fri 09 May 2025 09:58:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 193.178.31.0/24 maxlen: 24
193.178.52.0/24 maxlen: 24
193.178.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:7b:21:f1:1e:16:41:c4:ba:8e:b6:bb:ce:7a:4c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: May 9 09:58:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0acc4bb412d633c3e69ece525997f8d3e78638e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:15:2e:7b:09:67:b7:30:32:d9:17:ef:04:2b:
c0:b5:25:52:f9:9c:db:9b:94:34:31:d7:d0:6a:93:
21:e5:93:97:83:12:b0:1c:ff:6a:a6:82:02:14:69:
82:10:ec:1b:39:06:be:b3:74:2b:5c:c0:9c:e5:e7:
c0:55:1a:54:a3:76:ee:c5:83:78:7b:df:97:1b:62:
50:6d:d9:fb:83:8a:11:e2:46:de:70:0f:d1:3b:b6:
ea:0e:d1:2a:14:ee:0c:ac:23:d0:19:05:e7:fa:5b:
f0:b0:ea:11:45:34:38:17:e7:1d:59:43:d5:c2:33:
2e:bd:d1:71:a9:ff:6c:82:f4:5a:d9:9c:28:7a:11:
d1:80:29:87:d1:47:d0:1c:39:11:55:ef:fc:58:e7:
c6:0c:c3:44:ed:57:36:02:d6:84:4a:35:ce:57:ed:
73:cf:18:e7:0d:7a:6b:de:3c:1d:e0:64:26:77:42:
20:35:39:ec:56:78:ca:9f:b5:cc:88:24:7e:9d:33:
ec:32:9b:4f:9b:b5:32:6f:1a:bb:00:2e:46:82:5b:
59:3b:0c:04:84:cd:62:da:b3:35:88:6d:dc:2d:f1:
8e:0b:57:4b:ba:bc:4e:8f:66:e7:d5:95:6c:fe:91:
cc:86:b9:ac:f2:8f:44:58:d4:2d:12:37:03:44:78:
90:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:CC:4B:B4:12:D6:33:C3:E6:9E:CE:52:59:97:F8:D3:E7:86:38:E5
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/CsxLtBLWM8Pmns5SWZf40-eGOOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.31.0/24
193.178.52.0/24
193.178.115.0/24
Signature Algorithm: sha256WithRSAEncryption
28:61:0a:ac:f8:7c:e1:9a:69:53:cd:62:03:d2:3d:1f:82:f4:
48:fa:5c:e6:f1:20:94:4f:a5:ad:b2:48:33:2b:67:9c:ec:70:
55:9f:8d:e6:9b:2a:a7:df:73:26:3a:99:61:e4:12:07:ac:52:
d4:d3:7f:30:33:56:e9:78:14:b8:25:39:19:0b:36:b0:35:ab:
5f:da:40:33:6b:f8:d7:10:ad:cf:be:2e:e9:17:d6:a8:d5:43:
5d:94:85:b4:4b:86:77:9f:69:5e:fb:ac:02:0b:11:9a:6f:30:
56:76:f3:28:1e:e9:33:91:38:6d:a1:49:70:6f:e1:0d:05:4e:
26:44:ae:c5:96:4f:34:72:db:22:82:c7:14:d6:88:84:87:cc:
11:20:bf:8d:54:c6:41:ad:f4:cd:98:88:39:0a:62:e0:b4:52:
a7:36:7d:26:8c:58:f9:78:de:90:47:b1:9d:e6:73:ec:a8:c8:
4c:e9:59:03:76:58:cb:6e:7f:44:b9:7f:63:cc:db:4d:f7:4d:
04:76:d2:b5:66:6b:19:9e:6c:14:9c:43:84:40:a2:16:ce:b4:
4c:4f:37:99:8a:be:7b:90:67:20:41:26:12:7b:98:30:81:3f:
d8:9d:de:61:5e:ee:fa:17:f5:f8:49:e5:57:ab:6a:0a:cb:c0:
f6:32:c1:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:54:02 2025 by rpki-client