Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/5Wr3s3710WFh-gqqnOC5HRfGhqo.roa
File: 5Wr3s3710WFh-gqqnOC5HRfGhqo.roa (raw, json)
Hash identifier: mRv9qva0cARo5/cUdT7w241MszdGWtnBv2czFRm61Yk=
Subject key identifier: E5:6A:F7:B3:7E:F5:D1:61:61:FA:0A:AA:9C:E0:B9:1D:17:C6:86:AA
Certificate issuer: /CN=0241154462e5adcca9d2bcbd1443fcc637879537
Certificate serial: 019845FF22FA1CD07913F9FD624102598908
Authority key identifier: 02:41:15:44:62:E5:AD:CC:A9:D2:BC:BD:14:43:FC:C6:37:87:95:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkEVRGLlrcyp0ry9FEP8xjeHlTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/5Wr3s3710WFh-gqqnOC5HRfGhqo.roa
Signing time: Sat 26 Jul 2025 09:10:05 +0000
ROA not before: Sat 26 Jul 2025 09:10:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202391
IP address blocks: 94.199.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/AkEVRGLlrcyp0ry9FEP8xjeHlTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/AkEVRGLlrcyp0ry9FEP8xjeHlTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/AkEVRGLlrcyp0ry9FEP8xjeHlTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:ff:22:fa:1c:d0:79:13:f9:fd:62:41:02:59:89:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241154462e5adcca9d2bcbd1443fcc637879537
Validity
Not Before: Jul 26 09:10:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e56af7b37ef5d16161fa0aaa9ce0b91d17c686aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8c:dd:c5:fa:be:e7:b1:3e:ff:3c:b7:49:79:
d2:70:90:c4:db:39:22:aa:2f:4d:f7:f0:80:c2:8c:
94:d6:4b:cc:79:16:a7:37:6f:7e:7e:e4:3d:89:be:
a6:79:0b:19:aa:cd:5a:fa:15:81:22:66:19:1c:e2:
10:c7:76:0c:56:32:86:cb:dd:9c:5a:dc:52:3f:a5:
07:60:7f:50:41:83:c6:de:bc:00:c8:9c:24:9c:97:
6d:a2:56:db:ef:00:57:8b:17:f4:49:ac:52:0e:e1:
03:12:e2:55:ae:22:77:7b:9d:21:49:fa:ee:be:5d:
47:8c:e3:6a:f5:b1:c4:74:43:24:25:19:73:e4:c3:
e1:88:da:0a:b6:d9:8b:d0:15:a5:a8:12:63:30:c5:
87:de:fb:42:f9:4e:4a:dc:7e:c9:32:64:6b:cd:a2:
db:35:22:24:63:57:42:2e:9b:09:be:6f:4b:e8:f3:
b9:70:56:c1:1e:f2:fa:46:93:d9:2a:a7:e8:21:fa:
9c:e8:67:65:6f:97:e6:af:d9:c2:87:02:32:6e:d0:
2d:b1:e9:3e:31:75:3f:1a:16:ee:db:d4:40:de:c0:
18:ec:6d:7d:06:f6:7e:43:87:d4:7e:5c:77:b8:9f:
9e:82:de:8d:ee:7a:ba:55:aa:d3:92:16:37:ef:57:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6A:F7:B3:7E:F5:D1:61:61:FA:0A:AA:9C:E0:B9:1D:17:C6:86:AA
X509v3 Authority Key Identifier:
keyid:02:41:15:44:62:E5:AD:CC:A9:D2:BC:BD:14:43:FC:C6:37:87:95:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkEVRGLlrcyp0ry9FEP8xjeHlTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/5Wr3s3710WFh-gqqnOC5HRfGhqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09761d-6e5c-451b-8e8a-e92ee5eed226/1/AkEVRGLlrcyp0ry9FEP8xjeHlTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.0.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:25:0a:89:20:d3:09:ee:62:da:5e:21:56:a9:9f:f6:cd:de:
fc:44:de:c1:db:31:d4:11:ee:7a:fc:c4:65:1a:08:86:56:7e:
b1:8a:1e:e1:30:84:d5:f3:76:c9:79:20:0d:86:64:e9:b5:c6:
23:5d:fe:32:20:2e:df:16:5c:c4:8e:ad:5e:77:d9:e1:fe:8b:
0f:59:53:5b:55:34:c6:a3:71:4f:25:01:be:36:37:34:f0:7e:
ee:45:63:8b:cf:74:31:5e:87:9a:d4:a6:25:04:ea:77:3a:72:
81:d3:e2:0a:82:36:db:18:79:60:3a:f2:dd:a1:14:5f:be:b3:
42:d0:1e:a8:19:df:46:dd:2e:3b:16:23:80:c0:01:c3:36:39:
cd:ed:4e:62:e8:df:02:bb:b2:63:37:3b:0f:86:02:8f:ee:ae:
65:69:20:65:e2:a3:79:c1:8c:8b:58:a3:6d:cc:54:84:8e:60:
43:d4:e2:e2:a9:3f:6a:55:01:5e:da:62:d2:f0:1b:6d:85:81:
29:17:65:5a:30:d4:2b:47:ff:7f:ef:01:21:02:f8:ce:17:39:
14:fb:f4:87:dd:73:77:34:30:93:ac:a6:54:81:d1:69:7a:d1:
5b:56:f4:3b:fe:ac:9d:aa:6a:64:06:9c:5a:51:b0:ed:b7:57:
65:43:97:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:19:24 2025 by rpki-client