Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa
File: eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa (raw, json)
Hash identifier: uPzFHNSnB/27/j7jzNn6SSjG0qijsqzpue+Zsmabwu4=
Subject key identifier: 78:6D:92:CF:E3:41:2F:0A:40:A9:A8:A2:E0:B6:D4:67:E7:16:C9:C6
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 0196D09383D6C5BDC37EB48BB5954DEEF530
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa
Signing time: Wed 14 May 2025 20:54:10 +0000
ROA not before: Wed 14 May 2025 20:54:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201634
IP address blocks: 185.130.50.0/24 maxlen: 24
2a05:c180::/32 maxlen: 32
2a05:c181::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 18 May 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:93:83:d6:c5:bd:c3:7e:b4:8b:b5:95:4d:ee:f5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: May 14 20:54:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=786d92cfe3412f0a40a9a8a2e0b6d467e716c9c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b0:35:f1:51:af:31:bc:e1:11:9e:1f:18:b4:
6f:bd:e7:a7:8b:36:cd:b1:f9:69:b3:fd:27:67:40:
42:8e:5a:e7:7c:8d:73:2e:03:ed:d9:1d:34:e9:90:
26:fa:c1:5b:f9:67:71:e5:90:23:22:bd:8b:f8:15:
ab:1a:76:76:de:19:e3:06:d5:48:be:f0:03:84:71:
f8:fc:3c:ed:89:a5:15:37:53:04:d6:b1:59:c4:10:
7a:7d:01:f9:c5:70:0b:4c:91:60:d4:b3:a8:7b:41:
55:ab:fe:aa:37:ae:14:5c:0b:2c:77:b1:e6:7b:61:
66:e1:5c:b6:f8:ec:d3:1f:cb:52:83:e1:cd:19:77:
e2:4c:f0:88:5c:28:2c:ab:7b:15:3d:bb:36:ca:61:
2f:71:06:74:20:1d:4c:5c:33:55:ea:eb:94:92:a7:
95:1d:2f:b8:87:50:be:65:4b:e4:51:e7:8a:21:01:
7c:40:9e:da:a9:91:8b:70:80:27:85:62:61:3d:14:
7f:cc:b1:da:89:48:6f:d0:fb:5a:c7:4d:cd:74:28:
8a:87:37:79:bb:a0:07:b1:d9:87:54:b9:1a:78:68:
d0:70:f4:06:ab:74:f7:f1:5a:0c:3c:f5:51:b6:5d:
12:10:ee:fb:f8:77:d1:5b:f1:91:28:8b:f4:28:bf:
ac:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:6D:92:CF:E3:41:2F:0A:40:A9:A8:A2:E0:B6:D4:67:E7:16:C9:C6
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.50.0/24
IPv6:
2a05:c180::/31
Signature Algorithm: sha256WithRSAEncryption
ac:46:aa:be:04:10:7e:6c:85:ea:20:c4:cf:ee:ac:e2:b3:c8:
51:2d:6b:b4:a9:4a:64:6c:2f:b0:c3:9c:9b:52:98:e8:b2:67:
ab:98:99:43:4b:e5:92:41:b7:bc:9f:d4:0f:ec:3f:81:48:ba:
7b:36:81:6d:b5:ba:28:cb:f4:14:dc:95:1c:98:05:eb:3b:a8:
fc:e4:87:92:d8:de:44:7b:d5:a5:29:8c:dc:6e:79:e0:93:3b:
72:ab:82:6b:6b:de:c5:fc:06:1b:9c:5f:eb:7b:0a:08:ff:05:
00:52:25:f3:f0:3a:f7:60:d4:ba:69:f4:26:7c:7a:86:02:45:
8c:ed:4f:0f:37:17:16:aa:40:f8:3c:27:6a:8a:fb:d8:97:43:
ea:df:ae:70:ee:6c:af:ff:3b:e5:06:a4:75:8f:3b:65:3c:c3:
06:84:3c:0f:1b:16:0e:be:b7:53:39:90:25:3f:19:e2:1f:f1:
f2:3e:f1:10:c0:7e:9e:bd:7d:18:ed:1e:28:1a:31:05:45:b6:
24:1a:9b:2a:9c:84:39:a2:0d:74:5d:f1:18:cb:41:df:c8:9e:
e8:e7:7f:b3:94:ad:55:55:e7:ad:27:b0:aa:cb:47:ed:61:6b:
c4:d6:4f:4e:ee:3a:7c:d7:c7:52:16:be:38:2b:b2:e9:6c:27:
51:62:bb:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 05:15:55 2025 by rpki-client