Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/7hFBo6OZGKScPZMqLTGWgmRdFCc.roa
File: 7hFBo6OZGKScPZMqLTGWgmRdFCc.roa (raw, json)
Hash identifier: VTkOxsJCww1NYfRQBuV6oDU/BdTEwffIja1kiwlgZZ4=
Subject key identifier: EE:11:41:A3:A3:99:18:A4:9C:3D:93:2A:2D:31:96:82:64:5D:14:27
Certificate issuer: /CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Certificate serial: 0197D44D42D0C77BB8D99C18558EC98B443D
Authority key identifier: 5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/7hFBo6OZGKScPZMqLTGWgmRdFCc.roa
Signing time: Fri 04 Jul 2025 07:18:42 +0000
ROA not before: Fri 04 Jul 2025 07:18:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207110
IP address blocks: 185.39.110.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d4:4d:42:d0:c7:7b:b8:d9:9c:18:55:8e:c9:8b:44:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a756994bb292e49ecc6337b7f95d69ee2af61e1
Validity
Not Before: Jul 4 07:18:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee1141a3a39918a49c3d932a2d319682645d1427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:01:93:29:a2:1e:ba:f7:07:a6:51:f3:84:7e:
e1:33:99:92:c6:81:d9:4f:ba:0a:c6:b1:94:6d:ab:
56:28:55:70:e3:97:96:b9:aa:26:67:a3:3b:95:1c:
6d:9e:6e:c1:db:a4:44:86:9f:4d:0a:39:06:83:c7:
3a:7b:d0:52:10:28:54:50:fd:01:52:05:43:9d:76:
8e:23:3e:90:ae:1b:be:7a:53:3e:7e:ed:87:02:fc:
72:7d:ff:14:df:02:48:b3:55:e6:a7:87:56:88:e7:
5a:43:02:f2:ed:a8:02:69:5c:ee:db:5f:73:96:d6:
d4:0e:41:ad:0f:03:bc:64:0e:eb:a6:48:f9:b2:8f:
11:64:72:d2:0b:35:87:d9:4e:1c:7a:e2:18:40:d6:
5b:5c:72:70:9e:ef:97:f8:d4:36:ff:ad:a6:a2:f5:
22:d3:4f:7c:77:dc:4b:f1:16:59:6d:c3:f5:b4:3f:
25:06:de:0f:2d:3c:c6:fd:ba:d9:23:bd:8d:41:18:
87:50:9f:bc:07:87:16:63:fe:3f:fb:bd:3d:99:1c:
dc:d1:ca:aa:b3:2d:4c:ee:80:f5:1e:73:a9:89:dc:
c9:1c:14:e2:01:ef:c5:b6:99:6f:dd:0c:64:f2:4f:
ce:10:e1:d4:08:83:b2:e2:33:e7:da:23:4b:71:bd:
93:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:11:41:A3:A3:99:18:A4:9C:3D:93:2A:2D:31:96:82:64:5D:14:27
X509v3 Authority Key Identifier:
keyid:5A:75:69:94:BB:29:2E:49:EC:C6:33:7B:7F:95:D6:9E:E2:AF:61:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WnVplLspLknsxjN7f5XWnuKvYeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/7hFBo6OZGKScPZMqLTGWgmRdFCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/83b07f-1d22-4ae0-a2de-4e0aa42a15a8/1/WnVplLspLknsxjN7f5XWnuKvYeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.110.0/23
Signature Algorithm: sha256WithRSAEncryption
57:f7:57:a1:d3:af:4a:ed:1e:38:e9:e7:95:37:a0:9e:58:89:
b5:da:75:e2:60:4d:44:58:18:93:ed:24:60:60:60:1c:32:9f:
2f:1b:5e:c3:9d:08:f2:21:e9:4f:d6:b2:b8:af:5e:e5:a9:d5:
4d:0c:40:a6:f4:e6:2f:4f:aa:7f:f0:23:f2:b3:33:83:e1:7a:
be:f9:09:d3:db:d8:8e:e8:ee:35:ba:06:5e:2b:72:32:73:c5:
16:03:27:38:a8:f0:5d:54:e5:e3:f1:0e:42:57:b9:9f:f1:ff:
0e:53:10:94:cb:46:5c:e2:24:35:3f:f2:26:0f:09:8b:d0:05:
d1:75:62:d9:62:38:be:50:57:ce:eb:cc:76:4a:3e:d6:f1:5a:
99:12:4b:f1:a6:2e:c4:6c:1e:ac:69:83:98:e7:8b:39:b8:55:
73:44:5b:7c:93:b9:5c:5f:f0:40:cd:0a:8e:29:48:73:13:cd:
8b:1b:67:4e:c0:94:ac:a9:f8:af:68:d0:f5:86:d1:10:eb:59:
f8:31:e9:60:2f:05:d5:82:ba:e3:0d:10:78:03:b9:60:a1:1d:
fd:f3:09:2c:ca:09:0a:60:37:77:44:e7:e4:54:be:31:ef:ff:
61:96:d6:7e:03:e7:22:68:6d:35:6f:2f:8a:12:c3:2c:35:8b:
b4:f1:05:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 04:47:25 2025 by rpki-client