Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/54eac0-71fd-46e9-9e1b-ce1bba691b37/1/V4pBXU1PZiQxs_5q_J-RR8u4p6I.roa
File: V4pBXU1PZiQxs_5q_J-RR8u4p6I.roa (raw, json)
Hash identifier: eo5F6jAlKraDD9oeFZGJ6cw6s1Keo3V6+IqIlcUTCHA=
Subject key identifier: 57:8A:41:5D:4D:4F:66:24:31:B3:FE:6A:FC:9F:91:47:CB:B8:A7:A2
Certificate issuer: /CN=65ea93d88a202d51d34d2a903597e76b8f17f0ea
Certificate serial: 019812B2519DDDE7F3C9789D402F143298E1
Authority key identifier: 65:EA:93:D8:8A:20:2D:51:D3:4D:2A:90:35:97:E7:6B:8F:17:F0:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeqT2IogLVHTTSqQNZfna48X8Oo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/54eac0-71fd-46e9-9e1b-ce1bba691b37/1/V4pBXU1PZiQxs_5q_J-RR8u4p6I.roa
Signing time: Wed 16 Jul 2025 10:05:32 +0000
ROA not before: Wed 16 Jul 2025 10:05:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210644
IP address blocks: 213.165.32.0/24 maxlen: 24
213.165.33.0/24 maxlen: 24
213.165.34.0/24 maxlen: 24
213.165.35.0/24 maxlen: 24
213.165.36.0/24 maxlen: 24
213.165.37.0/24 maxlen: 24
213.165.38.0/24 maxlen: 24
213.165.39.0/24 maxlen: 24
213.165.40.0/24 maxlen: 24
213.165.41.0/24 maxlen: 24
213.165.42.0/24 maxlen: 24
213.165.43.0/24 maxlen: 24
213.165.44.0/24 maxlen: 24
213.165.45.0/24 maxlen: 24
213.165.46.0/24 maxlen: 24
213.165.47.0/24 maxlen: 24
213.165.48.0/24 maxlen: 24
213.165.49.0/24 maxlen: 24
213.165.50.0/24 maxlen: 24
213.165.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/54eac0-71fd-46e9-9e1b-ce1bba691b37/1/ZeqT2IogLVHTTSqQNZfna48X8Oo.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/54eac0-71fd-46e9-9e1b-ce1bba691b37/1/ZeqT2IogLVHTTSqQNZfna48X8Oo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZeqT2IogLVHTTSqQNZfna48X8Oo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:12:b2:51:9d:dd:e7:f3:c9:78:9d:40:2f:14:32:98:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ea93d88a202d51d34d2a903597e76b8f17f0ea
Validity
Not Before: Jul 16 10:05:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=578a415d4d4f662431b3fe6afc9f9147cbb8a7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:60:d9:29:09:8f:bf:e0:86:91:47:17:a0:bc:
89:9e:08:1c:dc:a9:e3:1e:09:1b:fd:a7:5b:bc:31:
39:8d:4e:3b:2a:a2:3b:26:45:ae:48:a2:7e:c1:66:
5d:1b:b2:4a:bc:cb:86:20:b5:bd:29:af:22:7e:93:
d4:85:cf:ac:06:43:7a:00:ef:46:8e:81:6b:25:83:
7d:87:db:80:b1:f6:f9:5d:cd:9d:e2:99:a1:2e:d4:
2f:99:a7:a9:6b:c1:46:43:d9:db:62:ab:70:04:b3:
05:db:ad:0c:a1:0d:c6:a2:87:3b:38:e2:1d:1d:fa:
b5:85:82:c2:38:89:1c:51:9c:17:6e:cf:1d:51:1e:
d1:98:eb:f7:cf:10:f4:12:e4:79:20:1c:87:e6:0a:
dd:a0:a0:0a:66:a7:6f:ac:4c:49:ef:d0:43:76:d4:
d5:e5:26:98:49:43:75:e3:53:49:e6:a4:4c:d3:19:
1d:13:90:05:69:28:41:32:d2:4c:7d:ad:a1:9d:c7:
5f:4d:ad:35:16:eb:94:33:cd:9d:26:62:11:87:a8:
f3:cf:65:2f:30:40:31:de:57:5c:1f:ad:90:3d:d1:
d6:48:8c:41:f7:58:2a:a6:bd:22:af:7a:29:8c:11:
cf:30:a5:35:88:70:f5:f2:83:31:e1:8a:7a:6b:bf:
3d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:41:5D:4D:4F:66:24:31:B3:FE:6A:FC:9F:91:47:CB:B8:A7:A2
X509v3 Authority Key Identifier:
keyid:65:EA:93:D8:8A:20:2D:51:D3:4D:2A:90:35:97:E7:6B:8F:17:F0:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeqT2IogLVHTTSqQNZfna48X8Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/54eac0-71fd-46e9-9e1b-ce1bba691b37/1/V4pBXU1PZiQxs_5q_J-RR8u4p6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/54eac0-71fd-46e9-9e1b-ce1bba691b37/1/ZeqT2IogLVHTTSqQNZfna48X8Oo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.165.32.0-213.165.51.255
Signature Algorithm: sha256WithRSAEncryption
85:56:5c:e7:c7:cb:5e:9e:c5:ce:9f:7a:ba:b3:de:34:1b:b7:
d0:e3:b2:4a:f9:7b:ce:6b:da:d2:4a:be:13:74:83:88:c4:6d:
d9:44:a7:6a:96:11:87:9e:a6:56:60:fa:a3:1c:b7:d4:0a:e6:
94:89:c3:bb:61:b0:cc:e4:3f:d3:cb:92:d7:c7:7f:77:ce:b3:
8d:37:57:a9:76:05:53:6c:c1:8d:aa:00:8c:63:8d:63:a3:b7:
84:69:39:6d:43:fd:f5:5a:23:61:7e:76:8e:63:a9:b3:20:43:
ef:12:74:05:dd:d8:60:74:07:f1:09:68:5d:57:08:10:46:dd:
a7:2d:a7:6b:9a:dd:3f:03:dd:fa:49:d0:f5:d8:46:ff:9a:85:
ad:e3:ff:39:d6:e1:cd:a6:bd:8e:b8:4d:ad:7d:c0:87:10:38:
f9:06:07:db:4b:98:ee:29:61:51:fa:80:77:b0:6f:88:a9:53:
de:88:83:b3:a8:51:63:57:2c:3d:06:de:30:28:72:da:89:dd:
3f:1b:87:ed:c9:19:e4:a3:bd:81:b6:f4:ff:6d:13:49:54:8a:
5f:e3:12:33:41:33:92:f9:1d:45:c6:da:2f:fb:8c:88:31:c7:
0a:8b:f8:8e:76:44:da:a6:35:60:84:a5:3d:c2:1b:20:f4:08:
03:af:cf:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:48:08 2025 by rpki-client