Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/LHp-Ta0kps7ZGlhRPmsNyhh2hwA.roa
File: LHp-Ta0kps7ZGlhRPmsNyhh2hwA.roa (raw, json)
Hash identifier: bBoLumt4C2qITlPGkAX4DT2//QAjdutXa5WDertG6UU=
Subject key identifier: 2C:7A:7E:4D:AD:24:A6:CE:D9:1A:58:51:3E:6B:0D:CA:18:76:87:00
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01982E1293065C0096131CE66CBD4B92391D
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/LHp-Ta0kps7ZGlhRPmsNyhh2hwA.roa
Signing time: Mon 21 Jul 2025 17:40:25 +0000
ROA not before: Mon 21 Jul 2025 17:40:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44559
IP address blocks: 45.91.52.0/24 maxlen: 24
45.91.53.0/24 maxlen: 24
45.91.54.0/24 maxlen: 24
45.91.55.0/24 maxlen: 24
45.140.166.0/24 maxlen: 24
45.155.52.0/24 maxlen: 24
45.155.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 20:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:2e:12:93:06:5c:00:96:13:1c:e6:6c:bd:4b:92:39:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jul 21 17:40:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c7a7e4dad24a6ced91a58513e6b0dca18768700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3c:6b:f5:f1:a6:0f:d8:f7:72:77:a7:d6:ab:
a0:c9:c2:38:b8:98:22:66:67:91:b2:82:1c:86:75:
78:1c:5b:7b:5b:dc:09:13:4d:af:db:47:01:92:e8:
48:f4:d3:25:b4:59:ad:b4:a0:be:04:09:91:78:62:
89:9e:ca:79:35:59:46:dd:65:6a:85:d3:be:4e:60:
8e:bf:d8:db:fc:34:47:97:05:57:cf:6c:db:b6:1d:
be:2e:3c:e0:c4:48:73:b8:59:ee:20:97:c8:f8:a7:
2f:4e:13:8b:53:88:68:c3:83:62:a5:5c:8b:1e:64:
36:3f:5b:24:93:8d:bd:47:6b:c4:2c:cb:55:17:ee:
41:f4:7f:fa:c4:68:7c:f5:b9:14:7e:29:e0:18:ef:
33:96:bd:5a:d8:8f:e3:dd:e4:95:36:8f:c6:d2:44:
9b:85:fb:02:b2:d6:aa:82:b2:8e:a6:bb:04:84:3a:
06:f5:a3:86:c1:fd:db:bd:d5:3b:87:c5:7b:34:2d:
7b:fd:98:63:b4:88:36:87:ed:f3:b3:46:5d:d4:13:
0b:db:37:7a:7a:42:d9:1c:49:a2:0e:ab:34:82:ab:
b8:04:aa:31:6a:56:81:74:82:76:7f:19:67:ac:f8:
76:da:fa:78:16:76:dc:63:88:ec:62:fa:b5:61:01:
76:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7A:7E:4D:AD:24:A6:CE:D9:1A:58:51:3E:6B:0D:CA:18:76:87:00
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/LHp-Ta0kps7ZGlhRPmsNyhh2hwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.52.0/22
45.140.166.0/24
45.155.52.0/24
45.155.55.0/24
Signature Algorithm: sha256WithRSAEncryption
19:f6:34:f3:8d:58:70:48:2f:ed:6c:b2:a2:43:84:9f:b4:79:
d7:ce:43:50:c4:56:90:4b:51:0f:fa:86:f6:a1:de:91:29:b0:
be:94:ef:94:58:e6:d5:e0:53:36:ab:55:a8:92:3e:7f:b5:f8:
a7:0b:ed:db:75:9d:fe:7e:8e:c0:31:68:35:3c:bd:53:69:cc:
5c:d2:48:80:cd:ec:d6:37:a9:29:6d:01:73:a5:40:fc:44:3f:
e0:3a:ab:76:82:6b:5b:c2:11:e3:dd:6a:11:24:c3:fb:18:25:
1f:03:25:84:fb:0e:ca:3f:5b:59:3f:66:c1:c8:c4:6a:59:70:
4e:c6:a1:05:b9:34:55:6e:1b:0e:b7:e4:9b:04:a6:e8:34:b4:
6b:9f:07:d9:45:3e:86:ad:a5:08:f6:1a:84:3c:91:ea:bd:10:
26:97:09:1a:8b:9d:53:7e:e4:0e:ff:96:9f:73:f4:45:01:25:
88:68:ac:b9:4f:f1:33:63:1a:5a:d8:f0:69:54:28:b7:a0:d0:
9e:58:6e:21:0d:b2:2f:fb:3b:19:9f:ba:25:b9:56:8b:7a:28:
22:91:d8:4e:67:67:7e:33:71:de:94:a3:85:ac:4c:ea:a5:d8:
03:c5:1a:4e:bd:f3:1c:87:0d:7c:9e:95:93:ae:c5:c1:ff:2f:
b6:9d:b3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:11:51 2025 by rpki-client