Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/tEgu1CSKDxjQmmWSWD6yXlDQ2m4.roa
File: tEgu1CSKDxjQmmWSWD6yXlDQ2m4.roa (raw, json)
Hash identifier: 7vrCydh5UH6MCekOIFdu3T2/WFzZdQB8gMeby/ttuZ0=
Subject key identifier: B4:48:2E:D4:24:8A:0F:18:D0:9A:65:92:58:3E:B2:5E:50:D0:DA:6E
Certificate issuer: /CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Certificate serial: 019803CB5AC47B67F2AB595CC7BD0ED63216
Authority key identifier: 5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/tEgu1CSKDxjQmmWSWD6yXlDQ2m4.roa
Signing time: Sun 13 Jul 2025 12:38:35 +0000
ROA not before: Sun 13 Jul 2025 12:38:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34661
IP address blocks: 178.214.208.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:03:cb:5a:c4:7b:67:f2:ab:59:5c:c7:bd:0e:d6:32:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Validity
Not Before: Jul 13 12:38:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b4482ed4248a0f18d09a6592583eb25e50d0da6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9f:6c:bd:fa:c3:62:66:b5:8e:78:6c:ef:70:
cc:ae:67:9d:79:5e:cc:c9:eb:5d:63:f8:1c:66:de:
63:a4:ea:e3:d8:3c:71:21:5c:09:90:ee:ef:3e:9d:
54:1e:20:a9:7d:c2:02:da:5d:96:c5:59:2d:42:48:
56:51:bf:ab:bd:27:f3:ad:6b:3d:06:9c:11:c7:6d:
7e:4e:46:53:b1:5e:d3:da:3b:c2:7f:87:ad:7b:e8:
ee:0a:fb:2f:bc:53:58:6e:63:d2:66:95:3d:fa:fe:
a8:fa:f0:c6:d3:55:fb:b0:28:7f:cb:b9:63:1d:20:
13:73:59:c7:b7:8d:2e:87:58:1f:33:6f:80:1c:c1:
29:54:25:5e:02:7e:1b:e1:e1:55:34:8b:31:8f:99:
f9:f0:73:7f:f1:f2:7c:15:9d:7b:74:09:1f:97:8a:
f1:55:5f:ea:7b:30:2b:3d:24:8b:e6:ee:a6:47:7e:
57:cb:7c:fb:12:fb:6e:b6:dd:ba:01:ff:69:89:26:
dd:19:7c:da:aa:56:01:f9:a5:6f:d6:01:ae:30:75:
70:0c:ec:95:93:6b:e9:65:ac:66:e6:9b:ec:71:fc:
c4:b8:03:32:54:eb:b2:98:ee:6a:0d:0d:59:0a:06:
58:6f:da:11:ff:b8:f5:ab:21:5d:5b:5c:ec:1c:e5:
94:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:48:2E:D4:24:8A:0F:18:D0:9A:65:92:58:3E:B2:5E:50:D0:DA:6E
X509v3 Authority Key Identifier:
keyid:5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/tEgu1CSKDxjQmmWSWD6yXlDQ2m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.208.0/20
Signature Algorithm: sha256WithRSAEncryption
c0:7a:1c:c0:a0:65:48:a9:90:ed:05:fd:2e:59:32:58:e3:1a:
f4:99:14:51:47:7d:cf:53:eb:01:13:40:d4:c3:3a:54:9e:d1:
06:74:b8:e0:68:26:a7:bc:d7:24:7e:66:2e:17:12:da:28:5b:
4f:b2:4b:de:6d:63:aa:d3:0d:56:42:58:08:9f:1b:04:9f:51:
6b:e9:3c:6d:98:30:f3:66:5f:f0:81:0c:81:16:e8:2f:c9:81:
4f:17:47:9e:ea:76:49:fe:b0:4c:0e:62:99:cb:e8:79:59:7c:
43:e9:a4:7a:86:66:d0:6e:30:fd:83:ca:d4:ed:55:ae:33:9e:
22:3c:a1:2b:07:ab:f8:b5:4e:86:6d:40:da:c1:1e:62:36:97:
53:35:6f:aa:b5:b9:12:51:7e:bd:bd:df:a6:9a:00:39:c7:fa:
9c:53:45:49:21:5d:62:c3:06:b7:4b:69:4a:15:5b:73:e0:bb:
52:c9:98:85:48:14:9f:2a:b8:9d:5b:1c:53:2d:eb:48:6e:09:
b1:72:5a:81:0d:86:4a:5b:1f:8f:47:a4:d8:07:7a:69:eb:55:
24:be:59:dc:19:c5:b2:6d:1c:af:4e:f1:13:00:16:7e:5a:df:
97:c9:8c:57:2c:6f:21:d3:aa:8b:d6:e5:a3:f3:8a:3d:64:0a:
2a:64:62:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 19:34:42 2025 by rpki-client