Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/jFllJ9DlT8zlPwjwSzTHQpBbSfM.roa
File: jFllJ9DlT8zlPwjwSzTHQpBbSfM.roa (raw, json)
Hash identifier: hgQAyOEkm5BzVkdnifPAOielVqVnEt/GkV9jwpojHxQ=
Subject key identifier: 8C:59:65:27:D0:E5:4F:CC:E5:3F:08:F0:4B:34:C7:42:90:5B:49:F3
Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a
Certificate serial: 019809B27F90336DAE63C78E8C0BCFA24858
Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/jFllJ9DlT8zlPwjwSzTHQpBbSfM.roa
Signing time: Mon 14 Jul 2025 16:09:09 +0000
ROA not before: Mon 14 Jul 2025 16:09:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35196
IP address blocks: 185.105.117.240/32 maxlen: 32
193.109.85.20/32 maxlen: 32
193.124.176.10/32 maxlen: 32
193.124.176.104/32 maxlen: 32
193.124.176.142/32 maxlen: 32
195.47.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Jul 2025 14:17:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:09:b2:7f:90:33:6d:ae:63:c7:8e:8c:0b:cf:a2:48:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a
Validity
Not Before: Jul 14 16:09:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8c596527d0e54fcce53f08f04b34c742905b49f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b5:b9:50:b6:29:50:d7:21:ad:ee:32:92:f0:
91:5b:8d:ea:a7:d6:60:cd:8e:c0:09:74:26:ab:81:
8c:63:be:34:9b:2a:96:54:85:55:ef:1f:e5:4a:0f:
6f:20:38:3d:36:8f:02:c3:f5:b2:3a:04:9f:b3:4d:
6a:b0:9f:93:18:31:6b:1c:b7:ea:6f:d7:f4:dd:11:
06:6d:74:44:56:94:54:a0:0d:31:73:55:56:dd:2a:
07:4f:30:4f:b4:af:bc:6f:66:13:b0:2c:c7:88:c4:
0c:82:81:12:18:3b:a5:53:57:d0:a6:50:8f:a2:c8:
78:27:d6:a7:45:52:77:01:3c:3e:39:1a:39:2e:25:
31:14:db:52:b5:ef:50:43:ca:c2:53:bb:e0:18:d0:
f0:f3:5b:9b:35:ed:05:2b:55:34:af:b4:2b:8e:53:
8b:a1:6a:9c:c4:ca:2c:34:99:b4:c4:3b:d5:9f:df:
63:86:19:7b:7c:3a:f7:52:f9:0c:36:9a:df:18:66:
48:77:21:cd:f5:a4:8b:ee:80:5a:de:29:e5:c9:49:
33:3e:0c:a2:5a:ea:67:36:d3:5a:d7:2f:ba:b7:62:
fc:0d:10:3c:4b:59:f8:92:06:b4:c0:9d:b4:d8:da:
14:c3:ef:26:54:eb:c3:60:ff:38:e8:b1:54:15:93:
ee:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:59:65:27:D0:E5:4F:CC:E5:3F:08:F0:4B:34:C7:42:90:5B:49:F3
X509v3 Authority Key Identifier:
keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/jFllJ9DlT8zlPwjwSzTHQpBbSfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.117.240/32
193.109.85.20/32
193.124.176.10/32
193.124.176.104/32
193.124.176.142/32
195.47.250.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:8f:b1:9b:a6:01:32:13:0f:14:fa:16:bb:fd:c6:d5:0f:e3:
65:a9:ff:a7:cf:99:a4:af:f0:d6:91:54:9d:be:55:ea:c4:20:
a9:84:45:b3:c7:9c:d3:81:62:64:ad:d5:bf:0d:11:95:01:1d:
e5:c2:22:b3:b1:80:35:90:7a:93:90:6f:05:a1:0b:43:45:29:
9a:a5:b4:46:92:e7:14:ae:26:f3:d1:e8:63:e8:73:5e:e2:8f:
87:64:a1:e4:df:1a:4f:39:74:0e:2d:2d:c4:d9:88:fd:05:5a:
c8:35:15:5d:1e:38:fc:eb:49:1c:1c:29:1d:65:83:a4:dc:5d:
91:9f:21:ce:71:50:86:89:02:7a:2c:5f:48:fd:81:98:eb:ad:
66:2f:cd:ca:12:15:73:6d:53:92:03:bf:05:91:de:4c:a6:e7:
89:8f:76:25:53:fe:c2:cf:37:32:12:e7:e4:37:31:93:b3:35:
f4:ba:c3:5a:0d:44:f0:2b:40:e5:22:b0:a4:1a:3b:87:f5:fd:
5c:52:25:6b:c1:bb:1a:c4:a0:bf:ea:cd:08:48:bd:10:eb:c5:
eb:c5:10:35:72:b8:54:a1:ab:b7:7f:e2:7b:ff:30:32:6e:d7:
c3:d4:b7:03:d9:68:dd:59:54:4d:e5:30:95:68:6b:38:0f:6e:
43:92:a9:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 23:39:57 2025 by rpki-client