Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WS4Dx95T40VkHz-nHnKBbZh7SVw.roa
File: WS4Dx95T40VkHz-nHnKBbZh7SVw.roa (raw, json)
Hash identifier: 2pTXuYOomRCaU5FdDioKVD0J9AHk796oMwR/S8b6Q+g=
Subject key identifier: 59:2E:03:C7:DE:53:E3:45:64:1F:3F:A7:1E:72:81:6D:98:7B:49:5C
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01984082B77FC345882E9172A12BA0364F78
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WS4Dx95T40VkHz-nHnKBbZh7SVw.roa
Signing time: Fri 25 Jul 2025 07:36:05 +0000
ROA not before: Fri 25 Jul 2025 07:36:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56488
IP address blocks: 45.83.204.0/24 maxlen: 24
45.130.116.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:40:82:b7:7f:c3:45:88:2e:91:72:a1:2b:a0:36:4f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 25 07:36:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=592e03c7de53e345641f3fa71e72816d987b495c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:05:35:e8:94:10:e6:db:c2:32:5e:a0:80:b4:
cc:f0:4e:20:6f:de:cc:62:d5:01:3f:9f:86:47:cc:
43:5a:a2:42:2b:d0:82:5e:25:20:c7:3e:6c:43:fe:
b1:b5:72:2c:83:bd:14:7c:9d:0c:ad:2e:31:37:d7:
27:c7:f3:bf:e6:9c:6d:8e:98:43:f5:0e:57:09:11:
2b:dc:bb:6e:a0:65:16:9c:4f:eb:55:3a:7a:b5:f5:
2c:e1:f7:a3:df:08:4a:eb:03:eb:2e:a1:70:c6:13:
d8:b6:2a:4e:dd:2e:dc:bd:10:67:72:64:44:bc:d4:
fb:41:ca:01:0d:c8:6f:f2:56:a0:70:65:17:1e:8f:
b0:2c:53:c9:6e:de:4e:af:4c:af:e0:c4:3b:d6:69:
f4:93:90:e7:76:31:e4:d8:27:6c:82:c9:e6:0a:c3:
65:43:e2:7b:1b:78:5d:48:24:be:a3:2a:7e:b5:ea:
53:0a:06:85:88:f9:95:e1:eb:cd:f2:c2:ea:e3:ca:
31:1c:4c:a3:3b:30:da:3a:92:fd:8b:d5:94:ad:dc:
77:4c:6d:01:f1:e2:ed:57:f3:de:cc:f9:95:23:b3:
19:4f:2d:a5:23:3d:74:ea:57:74:a6:1a:82:4d:45:
a0:53:1e:e0:12:76:14:93:25:33:75:0d:42:b9:ed:
8a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2E:03:C7:DE:53:E3:45:64:1F:3F:A7:1E:72:81:6D:98:7B:49:5C
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WS4Dx95T40VkHz-nHnKBbZh7SVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.204.0/24
45.130.116.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:19:38:2e:4c:7d:cc:02:e8:f5:75:98:8f:6c:0f:a3:cd:ef:
d5:08:13:7f:f7:92:0e:ec:f8:21:8a:b4:36:2a:26:c8:48:53:
3d:e0:36:ec:df:c2:c6:b6:c0:79:0e:48:5c:4c:8e:eb:72:92:
d5:2e:83:c3:37:c3:76:23:d2:72:34:c3:a9:48:6a:13:08:47:
fd:ba:07:3c:23:de:80:45:ad:8b:fb:6d:f4:0f:46:d2:1a:88:
27:33:eb:ed:76:ab:4d:a3:a8:3d:c4:7b:91:18:6c:c1:17:3f:
cf:da:65:bb:47:dc:f2:68:00:0b:4a:66:2c:84:28:a5:d1:74:
a6:d7:7b:9b:81:03:84:2a:00:b4:73:b3:29:0c:5d:cc:f4:4c:
09:a0:41:4c:97:1c:02:9c:72:2c:a4:ab:c2:5b:b0:2f:6c:68:
8a:ae:43:61:bb:d7:86:1c:5a:e2:da:71:3b:54:7a:b7:8d:33:
a0:a6:16:24:d3:ef:34:be:29:9f:ea:92:23:fb:89:9f:e8:a1:
67:6a:4c:55:68:80:f6:6d:fd:df:4e:fc:5b:db:62:e5:e4:39:
03:6a:5f:a1:df:c1:1d:94:3a:63:2d:b9:e8:0d:10:b1:d5:d7:
11:53:83:77:1d:ad:ea:24:49:5c:8e:08:0c:90:c6:b1:7c:21:
a3:f1:38:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 00:49:24 2025 by rpki-client