Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/fs_wxLugKiT_ydUrQOwGSh335rY.roa
File: fs_wxLugKiT_ydUrQOwGSh335rY.roa (raw, json)
Hash identifier: Q5dvvgKthsbcb9JzHMCTpI33x4XiWX2kEMaFSL83EKo=
Subject key identifier: 7E:CF:F0:C4:BB:A0:2A:24:FF:C9:D5:2B:40:EC:06:4A:1D:F7:E6:B6
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 01967207B752E5B599C86E721F6E199F8B00
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/fs_wxLugKiT_ydUrQOwGSh335rY.roa
Signing time: Sat 26 Apr 2025 12:17:10 +0000
ROA not before: Sat 26 Apr 2025 12:17:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210392
IP address blocks: 95.38.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 12:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:07:b7:52:e5:b5:99:c8:6e:72:1f:6e:19:9f:8b:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Apr 26 12:17:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ecff0c4bba02a24ffc9d52b40ec064a1df7e6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4c:81:c5:b8:86:e6:fd:2b:53:10:b1:44:d2:
a8:57:34:ce:1c:47:e0:0f:e5:f0:c1:5d:5f:1c:30:
47:e6:1b:68:5a:1f:25:b0:6f:e2:48:20:4d:ec:dd:
7f:3f:1e:93:4c:89:46:b2:c0:14:aa:ad:66:e3:0a:
5e:4e:69:3b:a0:f5:d8:b2:d7:7e:23:ea:11:53:0c:
ba:d9:c0:92:61:57:1c:f2:b1:2a:fa:25:58:a5:47:
2d:3f:37:01:d7:87:88:8a:9b:4a:36:ee:fe:4d:6b:
f2:00:96:56:30:7e:8b:86:bf:db:bb:e8:4b:74:b5:
2f:6a:12:ae:85:14:21:02:97:d2:9d:be:1f:b6:0f:
02:6c:bc:4c:20:e7:99:18:98:8b:2b:7b:02:78:e4:
7b:a9:4f:16:e9:60:8a:bf:fe:da:eb:55:10:c1:ef:
ae:07:55:45:4a:9e:d7:25:2c:e5:fe:8b:4a:49:0d:
ac:51:6a:3a:00:3a:39:61:88:eb:fd:7a:df:4f:1c:
7f:06:00:ef:30:ca:8a:76:6e:d4:87:09:b6:8c:30:
a2:28:4a:bb:dc:e2:df:06:30:cf:51:46:22:21:0c:
e4:c3:6f:f0:30:aa:4f:d9:2e:ff:55:5f:c3:71:1a:
d2:55:a0:5d:72:3e:33:71:87:1c:a1:28:73:69:65:
e5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CF:F0:C4:BB:A0:2A:24:FF:C9:D5:2B:40:EC:06:4A:1D:F7:E6:B6
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/fs_wxLugKiT_ydUrQOwGSh335rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.72.0/24
Signature Algorithm: sha256WithRSAEncryption
68:45:da:5a:f7:76:1f:ef:0f:8a:50:f3:a3:61:b7:98:2c:ad:
c4:59:02:65:78:55:3d:d7:6d:3a:d4:15:62:0b:ce:93:4d:cc:
9b:90:8a:fd:e5:16:84:c6:09:19:3b:07:cd:aa:27:d9:e1:df:
dd:56:72:3f:da:c5:f9:fc:13:63:76:18:99:48:a0:6a:13:a8:
ab:9e:49:87:b3:78:c4:ba:88:7c:5e:76:e6:eb:16:e6:79:b1:
6a:9d:c9:5d:3e:2a:8a:3a:2a:5d:b7:01:e7:7f:21:65:15:74:
1c:54:a0:ef:89:ed:66:aa:58:be:72:18:46:5b:87:0c:2f:69:
b0:de:6c:ae:a1:28:e5:2c:53:5b:cd:52:d6:43:d5:06:ee:ee:
1a:e8:de:62:c1:11:47:6c:1c:76:27:ea:0c:b2:ba:c4:59:9e:
19:05:b8:dc:27:1b:2f:a9:a9:d8:71:bc:dd:0b:85:3f:64:a6:
49:45:1e:99:f1:22:b2:90:45:f9:fd:20:f0:33:68:4d:2b:8c:
a3:68:19:2e:0b:87:5d:e7:aa:49:d6:77:54:42:36:c3:f4:be:
28:47:21:54:1f:ee:02:d7:19:ff:4d:9a:05:c2:8f:88:8a:e5:
d9:c4:b2:44:e3:9d:fc:f5:f9:f4:81:1b:f7:54:d3:f8:56:80:
2d:af:ec:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 15:01:38 2025 by rpki-client