Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/B7XUhABYBPD_FBllqbOLo6zK_b8.roa
File: B7XUhABYBPD_FBllqbOLo6zK_b8.roa (raw, json)
Hash identifier: VsfxkZO+rT9cSr5TIypSeZ96yVCh5s2NOjEslLAuP20=
Subject key identifier: 07:B5:D4:84:00:58:04:F0:FF:14:19:65:A9:B3:8B:A3:AC:CA:FD:BF
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019811D0C003FA4348230F3CCB845001A3E9
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/B7XUhABYBPD_FBllqbOLo6zK_b8.roa
Signing time: Wed 16 Jul 2025 05:59:09 +0000
ROA not before: Wed 16 Jul 2025 05:59:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395374
IP address blocks: 151.242.146.0/24 maxlen: 24
151.243.5.0/24 maxlen: 24
151.243.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:11:d0:c0:03:fa:43:48:23:0f:3c:cb:84:50:01:a3:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jul 16 05:59:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07b5d484005804f0ff141965a9b38ba3accafdbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2d:e8:ec:53:fa:56:8e:44:62:a4:3b:aa:77:
58:67:c3:9a:6d:3e:dd:cb:ac:a9:69:f8:9e:b7:9a:
f4:16:c1:6b:89:87:73:96:6f:7c:60:a4:de:15:3a:
44:1c:8a:03:77:f4:70:da:49:f6:6d:7f:99:d7:65:
dc:ca:2a:36:9f:7f:91:32:3a:51:64:9c:4f:22:fa:
5d:0a:eb:ee:f9:b7:be:ed:8a:e1:34:ea:74:ed:a2:
97:9c:56:ab:bb:46:fd:92:86:22:18:b1:2f:1a:75:
a3:8c:4d:73:a0:f1:b2:3d:41:cd:8c:8c:e4:a9:af:
05:f8:78:f7:aa:8b:74:01:4b:15:d7:aa:aa:28:30:
ae:0e:71:8a:cf:19:03:30:b2:1c:cc:94:f7:e9:3c:
5f:3c:3d:5b:e8:52:86:30:cb:cd:2f:8d:73:10:2a:
02:b9:86:c6:03:9b:97:78:d9:70:13:19:34:57:5d:
91:4a:6f:3d:3c:57:a8:18:d9:f0:7f:ff:ea:bf:39:
da:77:a0:ba:5a:4a:89:53:07:b1:74:8c:fd:c7:3e:
10:0b:82:ad:19:d1:11:bb:ae:5b:eb:9b:83:a2:5b:
96:2c:39:c0:b0:89:59:37:cb:e9:5e:d5:96:eb:ff:
cb:60:7b:24:76:47:5a:11:15:ae:f4:66:d0:39:bc:
7a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B5:D4:84:00:58:04:F0:FF:14:19:65:A9:B3:8B:A3:AC:CA:FD:BF
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/B7XUhABYBPD_FBllqbOLo6zK_b8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.146.0/24
151.243.5.0/24
151.243.169.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:0b:ab:eb:05:da:87:e6:b6:0f:cc:e3:ff:84:7e:e0:2f:7a:
18:22:c4:2d:40:2d:a7:eb:9f:f6:fc:b9:fd:70:5f:65:28:59:
43:14:bc:b1:fa:a9:d6:97:54:28:36:ba:82:ad:1c:9c:ba:7f:
37:fc:80:38:26:fa:f3:03:9c:6b:6e:00:4a:4a:91:ca:0b:db:
34:2d:2b:35:3d:4b:07:ea:fe:7b:a7:ed:0a:3c:10:4a:f5:d3:
7a:cb:2e:17:72:f9:ef:f6:69:e3:40:ee:9d:92:be:ed:67:5d:
f1:43:cc:ce:63:8d:8b:b9:3b:06:f8:53:ac:66:28:f5:f3:b5:
98:a4:ff:4c:6d:58:fe:0a:44:ab:e3:8c:26:42:b1:89:01:06:
52:b9:6f:bd:1a:ad:5a:89:01:e0:b1:59:92:bc:0b:d0:5e:6e:
89:27:43:0b:96:3f:f0:ef:ba:29:bd:e6:0a:01:4c:95:f3:34:
06:e4:3a:43:8d:a8:54:9c:56:f1:21:bf:42:c9:fb:05:f8:e4:
7d:57:bb:9e:a9:c0:7b:04:2c:68:23:2d:dd:ff:08:8e:37:8f:
ea:41:31:ac:ca:24:8d:db:e7:1f:b4:b6:00:d2:07:e4:ad:f5:
90:0e:9c:76:47:78:d8:4b:48:14:91:ee:1d:a6:1f:c9:fd:a2:
3d:c6:e5:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:32:52 2025 by rpki-client