Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/y14UR4xxeQLZwgKHj9RJAF_h1Cg.roa
File: y14UR4xxeQLZwgKHj9RJAF_h1Cg.roa (raw, json)
Hash identifier: 7J4kIKDWUXVe4cJilTgf0nam9aXielZxZVDtbzphrNo=
Subject key identifier: CB:5E:14:47:8C:71:79:02:D9:C2:02:87:8F:D4:49:00:5F:E1:D4:28
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019832FAAD6B4013A0D3EEA219F6D9F594D4
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/y14UR4xxeQLZwgKHj9RJAF_h1Cg.roa
Signing time: Tue 22 Jul 2025 16:32:25 +0000
ROA not before: Tue 22 Jul 2025 16:32:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52468
IP address blocks: 45.10.104.0/24 maxlen: 24
45.10.105.0/24 maxlen: 24
45.10.106.0/24 maxlen: 24
45.10.107.0/24 maxlen: 24
45.130.160.0/24 maxlen: 24
45.130.161.0/24 maxlen: 24
45.150.86.0/24 maxlen: 24
45.150.87.0/24 maxlen: 24
46.29.28.0/24 maxlen: 24
94.125.137.0/24 maxlen: 24
201.77.48.0/24 maxlen: 24
201.77.53.0/24 maxlen: 24
201.77.55.0/24 maxlen: 24
217.76.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:32:fa:ad:6b:40:13:a0:d3:ee:a2:19:f6:d9:f5:94:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 22 16:32:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb5e14478c717902d9c202878fd449005fe1d428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5f:ca:3e:80:42:a7:81:43:0e:b5:c5:73:e9:
b4:5e:c4:60:ba:c9:7d:77:8c:11:9f:1c:20:a8:71:
3d:0d:cb:b6:b4:24:3c:67:af:bf:5e:a7:ad:9a:82:
13:3e:9b:1a:73:54:c4:95:6f:df:c4:23:61:fe:cc:
b6:c4:db:80:f8:52:ac:b3:08:37:a3:23:47:d7:2c:
31:39:34:25:23:51:a6:c5:0b:a8:37:2d:82:19:01:
ec:3b:8c:8f:3b:0c:94:62:79:cc:c8:93:67:45:19:
e8:26:bf:e8:6b:68:ba:39:c4:98:4d:74:5c:21:20:
b7:48:8d:17:39:41:03:06:ea:65:94:ba:0b:54:de:
00:40:da:76:aa:bf:fd:ec:9b:16:5b:50:79:27:79:
a1:51:9e:29:2c:04:ac:2c:ad:5e:8a:9e:f3:de:03:
4f:1f:63:77:87:04:d5:c7:d0:7c:56:49:1f:7d:85:
f7:79:a2:79:05:f6:94:64:f5:2f:2b:64:91:95:c0:
ff:95:a3:12:ca:75:82:73:50:1f:75:bc:5f:15:74:
6b:7b:da:b4:2e:9f:38:6f:d4:ce:e7:c9:05:cb:47:
bd:93:68:41:f4:80:2d:4b:df:ad:14:12:47:03:70:
f5:ef:c3:4d:d4:d1:00:9e:f6:39:d1:b4:bd:e4:73:
8b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5E:14:47:8C:71:79:02:D9:C2:02:87:8F:D4:49:00:5F:E1:D4:28
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/y14UR4xxeQLZwgKHj9RJAF_h1Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.130.160.0/23
45.150.86.0/23
46.29.28.0/24
94.125.137.0/24
201.77.48.0/24
201.77.53.0/24
201.77.55.0/24
217.76.240.0/24
Signature Algorithm: sha256WithRSAEncryption
71:ed:37:3c:7a:a5:ec:f6:54:8f:bc:2b:1e:22:65:ee:e2:77:
c4:d9:58:57:e8:db:89:05:9a:bf:f5:88:f3:eb:80:b1:74:e4:
ec:3a:3c:d3:30:38:ff:b9:f0:fb:59:90:5c:28:55:42:04:e2:
21:f8:bc:8f:06:ac:88:36:0f:d6:bf:03:ab:21:4a:f1:15:a8:
2b:aa:84:73:00:bf:f3:44:2c:b4:37:1c:c8:f8:1e:b3:de:fd:
95:8d:7e:2f:3b:7e:c8:49:f8:25:1d:35:19:fa:f6:fc:77:1f:
c6:6f:9a:21:c7:96:b0:a8:53:50:d7:3e:04:21:f5:0a:34:17:
03:f0:cf:38:19:37:f0:c5:f7:57:f1:b3:ff:8b:b4:91:32:e4:
64:01:0f:a5:00:31:12:82:09:21:76:17:48:7c:f3:2c:7c:88:
69:e4:bc:af:15:8d:9b:69:05:40:f4:ef:8c:1e:60:b3:9a:29:
14:e5:b3:99:a0:46:33:30:cb:55:da:c0:2b:3c:e0:4e:46:55:
cc:5d:d1:eb:d8:cf:95:25:da:23:12:72:b4:d5:d9:b7:6b:c6:
c1:76:2a:fe:fb:d5:0d:97:a8:9a:ca:c3:d6:9c:c8:ec:92:4d:
96:ee:95:f8:9e:80:b8:96:73:ce:d8:2f:fe:01:81:4b:6d:bb:
a6:14:68:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 12:06:16 2025 by rpki-client