Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b23203-7d89-4bf4-b6b5-ab43c008547f/1/uiqUmBv1k_uKYh_cj-a4QIhQlX4.roa
File: uiqUmBv1k_uKYh_cj-a4QIhQlX4.roa (raw, json)
Hash identifier: HVtBzgdEAqEsdJNBkXbZl0/YnvdMRPK6u/IdD/XaEXY=
Subject key identifier: BA:2A:94:98:1B:F5:93:FB:8A:62:1F:DC:8F:E6:B8:40:88:50:95:7E
Certificate issuer: /CN=88b154ce1798b9ac530f207f2dab06a3ad3a2966
Certificate serial: 01983C76567C0392AC7FD8C992E213406D3E
Authority key identifier: 88:B1:54:CE:17:98:B9:AC:53:0F:20:7F:2D:AB:06:A3:AD:3A:29:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLFUzheYuaxTDyB_LasGo606KWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b23203-7d89-4bf4-b6b5-ab43c008547f/1/uiqUmBv1k_uKYh_cj-a4QIhQlX4.roa
Signing time: Thu 24 Jul 2025 12:44:05 +0000
ROA not before: Thu 24 Jul 2025 12:44:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31034
IP address blocks: 74.122.239.0/24 maxlen: 24
81.27.74.0/24 maxlen: 24
195.210.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b23203-7d89-4bf4-b6b5-ab43c008547f/1/iLFUzheYuaxTDyB_LasGo606KWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b23203-7d89-4bf4-b6b5-ab43c008547f/1/iLFUzheYuaxTDyB_LasGo606KWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iLFUzheYuaxTDyB_LasGo606KWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:3c:76:56:7c:03:92:ac:7f:d8:c9:92:e2:13:40:6d:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b154ce1798b9ac530f207f2dab06a3ad3a2966
Validity
Not Before: Jul 24 12:44:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba2a94981bf593fb8a621fdc8fe6b8408850957e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:88:a9:35:ff:fe:18:68:d4:78:10:25:28:a2:
af:e1:cb:92:c7:e6:58:58:be:14:fd:60:5b:45:7a:
c3:e0:f8:a9:fd:d8:b1:20:1e:c9:4d:23:23:53:4c:
81:c3:0e:62:93:77:01:83:7a:c7:4e:7e:38:f4:06:
1b:22:80:da:96:15:10:c0:2b:e6:6c:6a:39:6b:10:
ea:4e:cb:5c:40:fb:13:ad:9e:8d:72:40:87:20:4d:
d0:b8:96:50:b5:b5:a6:d6:a0:f9:65:de:39:6c:83:
39:f6:84:ef:3b:34:2e:10:a1:05:74:46:3f:99:c1:
a9:92:dc:0c:46:f1:20:36:5a:f6:fe:3d:1e:6a:93:
a2:aa:6a:d4:c2:e8:48:64:1f:a1:0d:24:a7:8c:12:
17:c9:98:7c:1e:04:52:18:38:dd:92:ef:23:a5:f3:
b7:8d:14:5b:d8:a3:af:aa:3a:17:76:94:50:9e:c3:
ed:32:f1:69:ba:60:cb:0d:2f:d9:0d:65:5c:dd:23:
84:4a:b3:e4:41:0d:19:78:fd:c8:f0:7a:4a:ce:64:
33:7b:02:86:7c:7e:b3:7f:0f:c5:d8:c7:38:0b:22:
b4:c0:1c:8f:41:87:4f:18:4d:95:5c:d9:67:ce:8b:
70:7c:e4:e4:4d:7e:a7:1f:04:39:96:f8:31:c1:0b:
1e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2A:94:98:1B:F5:93:FB:8A:62:1F:DC:8F:E6:B8:40:88:50:95:7E
X509v3 Authority Key Identifier:
keyid:88:B1:54:CE:17:98:B9:AC:53:0F:20:7F:2D:AB:06:A3:AD:3A:29:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLFUzheYuaxTDyB_LasGo606KWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b23203-7d89-4bf4-b6b5-ab43c008547f/1/uiqUmBv1k_uKYh_cj-a4QIhQlX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b23203-7d89-4bf4-b6b5-ab43c008547f/1/iLFUzheYuaxTDyB_LasGo606KWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.122.239.0/24
81.27.74.0/24
195.210.33.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b2:da:76:f7:f9:78:32:1a:55:ea:3b:d6:bc:9a:1f:a8:8c:
58:2c:0d:eb:40:ce:89:d5:4c:97:e0:bb:22:43:f1:21:92:af:
a1:d6:02:98:f5:fc:9a:09:4d:f5:aa:48:67:e5:ef:7f:b9:5f:
17:e1:fa:d8:db:81:9a:60:e7:62:2f:ea:d2:4f:dd:8c:59:69:
e9:e5:6e:03:76:c7:7a:6a:31:9d:a4:83:be:d2:f1:59:ad:a2:
d9:37:36:6c:c7:34:cf:d8:af:73:1b:78:df:c0:e7:65:e4:cb:
56:54:c5:5a:c6:24:b9:fd:8b:4f:f9:31:b1:6c:cb:db:7f:21:
f2:9d:2b:30:f0:51:fc:1b:1b:2e:bb:66:78:d7:88:b1:d0:ad:
21:ee:94:d7:7b:8a:df:84:fe:f0:cd:bd:72:25:67:dd:06:c2:
83:ed:75:87:9f:59:90:04:b6:d8:7e:cd:8a:bc:81:17:46:29:
3d:49:52:9d:74:10:7f:a0:3a:79:8d:e6:c4:33:df:e2:81:6a:
09:dd:92:c5:b9:71:f2:d4:a2:f0:60:12:a2:99:e6:9d:72:69:
6b:ad:f1:2b:da:42:69:0b:3a:0d:5e:91:d4:c1:bf:24:a4:fe:
0a:5b:09:57:97:a5:b1:d3:6f:14:a3:a2:ea:75:0f:24:b7:0a:
48:66:66:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:22:37 2025 by rpki-client