Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/fc90a0-804c-40fa-b27a-c383a9010005/1/unDO_ZlRCB_za56kzPW79sThKqQ.roa
File: unDO_ZlRCB_za56kzPW79sThKqQ.roa (raw, json)
Hash identifier: cCkUvqSj2/lPC3zyvQMaZIN3q/e+kpHhF3eeHpwudSk=
Subject key identifier: BA:70:CE:FD:99:51:08:1F:F3:6B:9E:A4:CC:F5:BB:F6:C4:E1:2A:A4
Certificate issuer: /CN=2665c17fa028b31348f630f6b56df422ce062b3b
Certificate serial: 0197C02F6C5DBCFA198ACAE5444998AAC1CF
Authority key identifier: 26:65:C1:7F:A0:28:B3:13:48:F6:30:F6:B5:6D:F4:22:CE:06:2B:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmXBf6AosxNI9jD2tW30Is4GKzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/fc90a0-804c-40fa-b27a-c383a9010005/1/unDO_ZlRCB_za56kzPW79sThKqQ.roa
Signing time: Mon 30 Jun 2025 09:33:42 +0000
ROA not before: Mon 30 Jun 2025 09:33:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8220
IP address blocks: 109.75.100.0/22 maxlen: 22
109.75.105.0/24 maxlen: 24
185.8.84.0/23 maxlen: 23
185.65.196.0/23 maxlen: 23
195.178.0.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/fc90a0-804c-40fa-b27a-c383a9010005/1/JmXBf6AosxNI9jD2tW30Is4GKzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/fc90a0-804c-40fa-b27a-c383a9010005/1/JmXBf6AosxNI9jD2tW30Is4GKzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/JmXBf6AosxNI9jD2tW30Is4GKzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:2f:6c:5d:bc:fa:19:8a:ca:e5:44:49:98:aa:c1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2665c17fa028b31348f630f6b56df422ce062b3b
Validity
Not Before: Jun 30 09:33:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba70cefd9951081ff36b9ea4ccf5bbf6c4e12aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8b:67:fb:34:ba:f4:6f:57:62:a3:8b:ac:43:
48:37:31:ec:a1:a0:40:aa:56:84:3a:a4:e5:9c:b2:
a8:9f:23:d2:9d:c1:94:cc:f0:11:29:7a:f4:80:c0:
73:ad:f4:d9:1b:7d:c2:94:ed:a2:eb:14:93:02:f4:
62:1f:7a:c7:ba:fe:ce:2b:42:63:03:78:e6:6e:27:
83:68:60:3a:06:33:a9:4e:ef:3c:43:bb:91:3f:b9:
5a:5e:4a:b2:f2:05:31:73:56:8f:32:39:15:59:eb:
97:94:45:5b:8a:98:ad:74:80:b9:c2:5b:28:0c:b4:
b0:8a:11:94:86:8d:2a:5d:a1:e4:ee:d6:2b:f9:e1:
93:d8:21:fb:34:b8:ac:e5:6b:71:15:66:35:eb:02:
20:b7:2f:73:21:1d:61:81:4b:1a:8b:73:ec:1e:a4:
bb:19:e6:1c:27:41:5c:f3:ba:12:4f:39:ee:87:a6:
24:3e:54:3e:11:81:cd:6a:6d:4c:8a:f1:75:b2:a9:
83:93:45:79:48:69:e6:80:db:de:6f:45:46:da:dd:
e8:07:61:3c:e2:c3:19:a0:b5:55:78:e4:8e:ce:85:
7f:d2:26:b0:ae:2c:32:a6:17:0d:ab:4c:b9:3f:a9:
7e:c9:f0:be:01:25:15:53:89:61:ac:4b:48:94:67:
49:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:70:CE:FD:99:51:08:1F:F3:6B:9E:A4:CC:F5:BB:F6:C4:E1:2A:A4
X509v3 Authority Key Identifier:
keyid:26:65:C1:7F:A0:28:B3:13:48:F6:30:F6:B5:6D:F4:22:CE:06:2B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmXBf6AosxNI9jD2tW30Is4GKzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fc90a0-804c-40fa-b27a-c383a9010005/1/unDO_ZlRCB_za56kzPW79sThKqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/fc90a0-804c-40fa-b27a-c383a9010005/1/JmXBf6AosxNI9jD2tW30Is4GKzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.75.100.0/22
109.75.105.0/24
185.8.84.0/23
185.65.196.0/23
195.178.0.0/23
Signature Algorithm: sha256WithRSAEncryption
22:13:3f:1b:dc:cd:c4:67:bf:55:1c:45:1e:d9:46:63:3a:0a:
ab:bb:bd:8d:8e:cc:d0:e4:2d:5e:55:a9:65:98:d2:35:f0:fe:
d3:01:71:b5:c2:d8:ed:19:59:31:95:74:6c:3d:83:5d:db:b0:
09:35:7e:61:81:f3:4a:de:00:4c:0e:70:37:e2:14:bb:f8:53:
ca:a0:59:e1:a6:5a:b4:07:cb:7f:7c:5b:2d:39:55:52:e1:9e:
2b:67:af:76:31:3a:eb:c8:24:94:5b:cd:57:88:3e:e9:09:89:
ce:cc:6a:13:e2:8f:39:e0:90:80:dd:91:20:18:ec:dc:98:f8:
cf:45:48:d7:13:4d:03:52:dd:74:e5:3a:e4:8e:db:bb:b8:03:
45:dd:c2:ca:a9:05:f7:2c:5b:2f:f5:ef:77:7d:bc:c3:a3:46:
9c:7c:cd:a7:69:34:0b:53:4f:18:e3:49:17:c1:b7:51:21:be:
b1:58:b9:21:0c:27:83:08:1c:e2:ad:6d:d5:55:dc:e8:d4:a3:
8b:9c:f5:16:e4:dc:b2:08:c0:82:79:b4:77:b5:97:65:42:c5:
8c:1d:f1:da:cf:20:b4:03:c8:5b:d5:36:1f:9a:c9:c3:43:56:
f6:0b:bc:a5:8d:ba:cd:57:35:a8:f4:fe:70:08:6c:a2:a1:8a:
ae:10:7c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:36:01 2025 by rpki-client