Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/bYe8d7mMBo6Qmmyyd80wyRqhj_M.roa
File: bYe8d7mMBo6Qmmyyd80wyRqhj_M.roa (raw, json)
Hash identifier: OUZlQ+ptsGoVmNaI8hjLp9+sDuVFVUofJPHuv7RJrWM=
Subject key identifier: 6D:87:BC:77:B9:8C:06:8E:90:9A:6C:B2:77:CD:30:C9:1A:A1:8F:F3
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0199523D6144BA8AA57CBEEAEEC981392A02
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/bYe8d7mMBo6Qmmyyd80wyRqhj_M.roa
Signing time: Tue 16 Sep 2025 11:16:18 +0000
ROA not before: Tue 16 Sep 2025 11:16:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214346
IP address blocks: 151.243.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 22:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:52:3d:61:44:ba:8a:a5:7c:be:ea:ee:c9:81:39:2a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Sep 16 11:16:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6d87bc77b98c068e909a6cb277cd30c91aa18ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ea:e0:61:7f:38:bb:2b:7b:b1:9a:0e:92:f9:
d4:f9:a0:84:ea:f6:ea:f1:9e:ea:20:0b:e1:26:fc:
c4:07:ce:72:81:86:9f:83:3a:71:52:b6:42:ca:df:
ce:c6:38:e4:48:e4:08:0c:94:ac:a3:cb:dc:ed:70:
bd:26:42:88:24:7a:cb:13:76:34:71:8e:67:40:f5:
92:75:c3:dd:a6:a6:0d:95:fe:07:68:8e:b9:71:aa:
67:7b:d9:b9:d5:d2:a2:d0:09:f9:e8:25:25:7d:0d:
f0:7e:ca:44:d4:61:c6:69:26:9e:6c:a2:ae:99:a5:
c5:f1:0a:18:1e:27:43:3e:de:7b:40:78:33:80:77:
cd:d9:37:97:48:3e:7c:6b:f6:9a:1c:bb:0f:f8:c1:
33:87:b3:2a:cb:12:20:2b:42:7f:31:31:20:cc:c5:
84:18:1f:df:5f:01:a6:b9:34:61:1e:f2:6a:98:6f:
14:6f:d8:11:e9:47:8e:ec:d7:70:82:23:de:9a:7a:
00:6a:66:e5:94:51:30:5e:5d:12:23:be:2b:5c:93:
db:b9:ae:3d:80:94:82:3e:aa:45:02:cc:c2:c6:56:
e7:66:0e:ca:69:5f:9e:61:17:82:75:a2:b0:1f:5e:
f8:5a:5b:66:db:f8:ee:60:7a:24:d3:d8:d6:6b:88:
db:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:87:BC:77:B9:8C:06:8E:90:9A:6C:B2:77:CD:30:C9:1A:A1:8F:F3
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/bYe8d7mMBo6Qmmyyd80wyRqhj_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.245.0/24
Signature Algorithm: sha256WithRSAEncryption
04:5e:a8:14:3d:a4:db:16:0b:2f:05:21:bc:9f:9a:be:50:69:
bf:89:69:37:18:e6:aa:0e:4d:9b:af:9e:53:7c:9e:69:88:a1:
c6:4a:8e:be:34:3a:7a:02:4a:08:cb:58:96:bc:50:00:e9:fe:
62:e2:29:dc:e2:b4:9c:49:58:3b:af:99:70:f2:59:4d:e5:f4:
c6:c3:1d:1e:b8:7c:74:b0:d2:29:c5:a4:86:91:bb:ee:c6:ea:
a2:a2:23:23:0d:11:42:84:14:9f:0f:97:78:ff:68:1e:7e:1c:
03:60:64:b9:3b:35:b0:a5:5a:58:4c:fd:87:48:24:ce:a2:8b:
3e:65:c3:19:52:e1:7d:76:1e:6f:cb:54:b1:35:f1:8b:35:49:
62:2e:c7:22:60:4b:82:34:ab:4a:f2:04:c0:8b:43:db:e5:65:
08:a6:99:42:06:a5:58:85:8b:94:13:1a:be:59:4f:25:16:b3:
45:39:99:4b:d0:2e:69:49:61:79:e8:fe:93:c1:b1:4e:e0:87:
f1:95:7c:4a:87:56:be:94:49:00:6c:97:c3:c6:05:82:9f:cb:
2b:ea:b0:4d:0a:3d:97:df:5b:85:71:44:e7:1a:6c:42:b8:67:
4c:18:c4:02:a5:97:d8:82:6c:f8:5c:10:69:58:fd:2c:fd:5e:
d9:91:95:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 9 06:22:34 2025 by rpki-client