Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/WOeiegJydkxVE1vjiwGx6ATuFEY.roa
File: WOeiegJydkxVE1vjiwGx6ATuFEY.roa (raw, json)
Hash identifier: QQ0/7N7W7DkOMFKnzycHP6yPRCFiGEALp7b0CpA3RZ0=
Subject key identifier: 58:E7:A2:7A:02:72:76:4C:55:13:5B:E3:8B:01:B1:E8:04:EE:14:46
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 0197EA170E5AA18849A57A80B060D41B0531
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/WOeiegJydkxVE1vjiwGx6ATuFEY.roa
Signing time: Tue 08 Jul 2025 12:51:08 +0000
ROA not before: Tue 08 Jul 2025 12:51:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215829
IP address blocks: 178.236.240.0/24 maxlen: 24
178.236.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 25 Jul 2025 14:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ea:17:0e:5a:a1:88:49:a5:7a:80:b0:60:d4:1b:05:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Jul 8 12:51:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=58e7a27a0272764c55135be38b01b1e804ee1446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ae:4b:9f:02:2a:0c:03:6b:c3:00:d8:14:57:
73:5c:06:90:f1:c6:06:3c:e4:4f:98:f9:4a:d5:14:
aa:52:8a:ac:68:7e:9f:bb:6c:d5:11:73:fe:65:44:
d8:54:e4:e8:f5:8d:e3:00:49:21:00:58:2a:4f:51:
c0:b4:13:ed:65:97:9c:ee:43:9b:65:46:2f:9f:7d:
a4:b3:d3:dd:16:02:d3:8b:67:08:99:ca:9e:08:83:
33:86:40:e5:74:e8:34:da:78:6d:0c:bb:27:a9:34:
a1:f5:01:21:92:4b:b4:16:21:32:0a:fc:0c:da:a2:
aa:fe:9d:a6:80:c3:7c:82:07:04:5a:0c:10:cd:02:
5f:df:1b:50:99:af:71:57:bc:7d:26:2d:1a:5c:c9:
06:99:6a:50:f3:b2:d0:6d:26:c9:d6:c4:68:40:88:
b9:cd:ee:81:96:9a:8c:e8:da:00:41:3e:2d:b3:89:
d7:19:0a:ae:69:28:18:80:a0:02:8c:6d:d0:31:8b:
4a:5c:16:bc:f3:bf:95:30:31:de:7c:51:32:da:53:
6a:ad:9e:62:db:63:fd:e3:3b:08:35:a2:74:5b:94:
44:25:9c:4e:bd:5a:1a:44:8d:2b:ae:2d:dc:20:20:
31:67:da:95:68:2a:21:2b:27:02:f4:e5:1d:b4:75:
8c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E7:A2:7A:02:72:76:4C:55:13:5B:E3:8B:01:B1:E8:04:EE:14:46
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/WOeiegJydkxVE1vjiwGx6ATuFEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.240.0/24
178.236.245.0/24
Signature Algorithm: sha256WithRSAEncryption
57:8c:53:a9:f8:3d:57:b9:49:f7:e4:20:5d:79:f6:78:56:e0:
0e:73:00:7b:4d:fb:c8:eb:a6:bf:6f:da:c5:23:9a:2f:d8:9b:
08:3a:ff:01:05:50:16:47:04:f2:99:d3:64:1b:9b:65:20:71:
5d:0c:b1:ec:a3:6f:51:29:13:d8:d3:20:a6:94:a6:65:7d:a4:
32:7d:3d:76:2f:94:6e:92:5b:22:93:bc:ee:57:d1:85:96:ec:
a2:10:9e:46:3d:87:76:2f:f0:21:03:c4:80:96:a0:5c:f6:b9:
8c:5e:a5:70:3c:2c:c9:09:14:ec:2a:9b:ad:31:71:5c:60:05:
44:4d:8b:61:8f:c8:d2:00:49:fe:65:41:d9:a4:b8:09:17:b1:
d0:94:65:08:4f:12:30:dd:df:46:56:f7:a3:d1:72:95:38:c8:
0b:ae:ec:34:cb:27:3b:bd:d2:6a:ad:54:55:de:33:d4:d1:c5:
fe:2e:1d:cb:3d:9f:fd:42:69:24:25:24:ce:fe:60:32:9f:bd:
a0:63:f0:d6:16:b4:6b:06:25:3f:1a:c0:28:60:16:0c:46:3a:
69:96:65:13:90:6e:c3:23:9b:fd:4f:63:21:75:37:89:e6:6b:
29:82:62:ac:80:c7:70:fe:7a:f4:32:2e:01:18:4d:cf:54:6f:
13:12:96:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 23:11:33 2025 by rpki-client