Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/a2c7U5RqEuvoRR43jWzCy7CopsM.roa
File: a2c7U5RqEuvoRR43jWzCy7CopsM.roa (raw, json)
Hash identifier: 3nWXCwf43YLWRV04mKr1sMjB7lKWY2rRGgaUKYp4+Xs=
Subject key identifier: 6B:67:3B:53:94:6A:12:EB:E8:45:1E:37:8D:6C:C2:CB:B0:A8:A6:C3
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0198370892C9FAED85A69B919D9B7DC8A195
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/a2c7U5RqEuvoRR43jWzCy7CopsM.roa
Signing time: Wed 23 Jul 2025 11:26:05 +0000
ROA not before: Wed 23 Jul 2025 11:26:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206378
IP address blocks: 83.137.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft
rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:37:08:92:c9:fa:ed:85:a6:9b:91:9d:9b:7d:c8:a1:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 23 11:26:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6b673b53946a12ebe8451e378d6cc2cbb0a8a6c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3b:49:d3:8e:d8:a1:42:c5:d3:ca:40:3d:b9:
60:0d:7d:77:a7:cb:76:fe:4b:f6:fb:4b:6b:32:aa:
90:72:fb:3d:ca:01:4e:d3:24:bc:0c:fe:df:b1:4a:
62:bf:91:07:f3:16:b9:f7:4c:3c:e0:ac:b3:cc:8b:
63:6a:56:cb:7d:f7:14:83:f2:fa:33:80:2b:30:09:
1b:fa:4c:09:c2:e2:ed:54:e3:23:7e:61:8a:7f:14:
58:15:22:0e:13:2c:48:c2:dc:a1:fe:05:fd:81:71:
b8:c3:11:ec:7a:46:7b:69:4d:2c:2f:30:f1:3d:13:
7b:fd:b2:45:f7:59:4c:71:f5:21:47:ff:f2:14:5c:
65:1e:98:0c:09:31:80:fb:d1:ec:62:a6:e7:4d:df:
2f:3d:ac:f6:77:d7:b4:81:89:6b:af:21:91:d0:52:
c4:ea:34:8f:17:a6:d8:cf:e3:4d:de:7d:e2:59:ad:
58:07:57:2e:b2:42:85:cd:19:4d:29:9e:92:72:17:
17:75:0a:2d:b1:b5:4f:78:42:e5:2f:4d:7f:38:ec:
e0:82:09:e4:6a:d2:20:6a:79:5d:63:13:76:40:07:
9d:ea:75:7a:a0:4d:bb:b6:f0:2f:23:b6:2b:91:40:
cd:ec:19:6c:fc:07:23:2a:23:c1:d6:eb:d2:30:3e:
38:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:67:3B:53:94:6A:12:EB:E8:45:1E:37:8D:6C:C2:CB:B0:A8:A6:C3
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/a2c7U5RqEuvoRR43jWzCy7CopsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.153.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:e8:3f:88:0c:d1:62:7c:36:b8:81:86:14:de:68:a6:e3:07:
60:56:1e:6e:ea:76:72:82:6b:57:b6:49:e4:da:ec:03:e3:77:
5d:1c:44:7e:d7:ae:af:ea:29:b7:58:88:1b:a6:f4:92:64:ae:
e1:64:24:10:d3:ca:dc:2f:6a:f1:b4:94:3b:12:d4:6c:f2:9c:
be:08:37:4f:02:b3:aa:29:53:8d:b6:1d:da:a5:0c:de:22:88:
f9:31:c8:9d:38:2c:e5:71:6e:7b:56:0a:e6:f5:37:ac:cc:ef:
d0:2f:f1:e5:76:83:a8:14:1f:31:6a:0c:46:49:57:4c:53:de:
eb:03:df:ea:9a:60:c2:a0:50:e9:0c:7e:49:f4:33:ab:9e:db:
0c:54:2c:1c:68:88:53:03:0d:d2:03:78:77:3b:2b:c4:d4:12:
1c:97:b1:b6:1a:25:7c:97:c9:2e:d1:77:8d:83:a1:77:0a:94:
16:d5:a3:60:03:3b:b0:54:24:71:35:d7:6b:35:9b:b4:b0:bb:
2d:d8:f3:a6:01:b1:19:a1:e1:fa:eb:4c:f0:9b:3d:cd:d6:58:
dd:48:7b:35:66:b5:48:b5:b8:e9:3a:5a:a6:ff:f3:a5:f9:3c:
b4:87:f1:9c:a0:ed:88:a4:85:58:c0:57:b8:12:cf:cb:f4:f2:
8b:00:e3:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 14:40:27 2025 by rpki-client