Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/E4tkY6zblFMpVqsni7B-ofMRutY.roa
File: E4tkY6zblFMpVqsni7B-ofMRutY.roa (raw, json)
Hash identifier: 74VgaEt8EssdGX5pSED+ku3PlVJoOq+D+qtbOPMDNdI=
Subject key identifier: 13:8B:64:63:AC:DB:94:53:29:56:AB:27:8B:B0:7E:A1:F3:11:BA:D6
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 019643E47F49840857DB82349A03AC4E4BB6
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/E4tkY6zblFMpVqsni7B-ofMRutY.roa
Signing time: Thu 17 Apr 2025 13:16:10 +0000
ROA not before: Thu 17 Apr 2025 13:16:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 93.127.170.0/23 maxlen: 24
93.127.176.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:e4:7f:49:84:08:57:db:82:34:9a:03:ac:4e:4b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Apr 17 13:16:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=138b6463acdb94532956ab278bb07ea1f311bad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:60:ba:e5:cf:35:a1:94:62:ac:21:bd:c8:bd:
0f:e1:6c:d8:f1:0c:d2:08:83:61:4a:af:fc:b1:77:
fb:fa:d3:2e:40:a1:25:c6:3f:38:da:0f:65:e0:8d:
a7:10:4e:9d:b5:15:33:19:b3:6a:d5:85:99:24:a3:
3b:3b:da:87:cc:7a:9c:61:69:aa:01:7c:dc:19:6b:
40:3e:cc:77:f2:6f:8f:b8:6b:f3:5d:9e:f6:94:20:
39:c5:55:6f:d6:dc:b1:51:6f:ca:97:8f:d6:8a:75:
bc:5a:ac:7a:a5:df:b9:4e:ff:ed:90:7a:30:fe:00:
f9:8e:27:b9:4c:76:41:72:c6:3c:87:79:90:97:3e:
6f:09:4d:f0:2d:17:16:3d:ee:26:34:cb:8e:04:ff:
e5:ec:17:b3:c3:69:14:32:4e:3a:a4:0f:70:1b:fa:
3a:78:0c:a1:ea:fd:e0:bf:93:c0:12:31:79:1d:c3:
9e:e2:4f:b5:50:af:00:25:57:34:d6:ab:16:3b:ea:
44:ab:e9:bb:94:05:49:66:03:bc:8c:24:05:7a:a5:
59:e9:1c:ce:b9:5c:32:ba:9e:f6:ae:6b:15:b6:89:
a6:2a:fd:1c:8d:53:59:1e:b2:1e:88:9a:cb:4d:2d:
23:95:9f:83:1b:d5:44:0a:6f:2b:9d:60:ce:77:11:
62:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8B:64:63:AC:DB:94:53:29:56:AB:27:8B:B0:7E:A1:F3:11:BA:D6
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/E4tkY6zblFMpVqsni7B-ofMRutY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.170.0/23
93.127.176.0/23
Signature Algorithm: sha256WithRSAEncryption
58:db:3b:ac:21:6d:ce:bb:d5:d7:2c:b6:2c:58:26:93:b5:d5:
40:59:10:ce:68:e5:e1:a7:6a:ee:cd:27:e1:e4:64:d4:a2:9b:
80:4e:b1:ab:5c:07:71:fb:2a:a9:28:03:f5:41:0c:e4:3c:4d:
ab:40:d0:ee:51:4e:04:50:14:44:1a:c1:2f:4a:33:45:74:d8:
1b:a2:02:96:ff:d3:fe:61:5f:ea:a6:c7:fa:cf:4c:d6:29:b3:
a2:cf:79:c7:a2:76:81:85:07:30:4f:3c:db:8f:70:42:03:b3:
43:85:23:24:c9:91:34:40:55:d4:b9:2a:5d:28:17:95:5a:67:
eb:2e:10:8f:cc:f4:6f:a5:74:4b:5c:7e:6a:6f:8f:a8:a1:32:
27:ec:c4:ad:a4:89:1a:2f:6c:b3:fc:cf:f9:10:05:97:45:7e:
59:70:dc:49:71:3e:cb:46:11:f1:6f:7b:4c:d7:bc:87:3d:65:
0b:5d:b4:bc:41:aa:97:12:af:80:be:b7:89:74:65:fb:05:5e:
b1:d4:d4:b8:71:32:2e:a7:45:cd:db:99:69:44:34:ea:bd:6c:
63:b0:dd:13:79:7f:8c:48:de:03:e2:09:fc:f9:b7:5c:bb:88:
fc:d4:a5:b6:53:a9:52:b7:d2:f1:ea:b2:40:27:51:d5:be:d0:
cc:9c:ff:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:07:33 2025 by rpki-client