Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/59quuxibs_IgomEIrrRnRNiH758.roa
File: 59quuxibs_IgomEIrrRnRNiH758.roa (raw, json)
Hash identifier: n/JGCQmbSDldZ31vWiGsp15GJaOlNH22xcUbH6DIayw=
Subject key identifier: E7:DA:AE:BB:18:9B:B3:F2:20:A2:61:08:AE:B4:67:44:D8:87:EF:9F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 019932A1B1207DBEC7B39E6AEEED81A4CDCD
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/59quuxibs_IgomEIrrRnRNiH758.roa
Signing time: Wed 10 Sep 2025 07:58:01 +0000
ROA not before: Wed 10 Sep 2025 07:58:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 62.76.236.0/24 maxlen: 24
62.76.237.0/24 maxlen: 24
193.124.17.0/24 maxlen: 24
193.124.206.0/24 maxlen: 24
194.58.56.0/24 maxlen: 24
194.58.154.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.51.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Sep 2025 21:38:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a1:b1:20:7d:be:c7:b3:9e:6a:ee:ed:81:a4:cd:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 10 07:58:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7daaebb189bb3f220a26108aeb46744d887ef9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e8:c0:73:68:7e:8b:f8:43:98:38:4f:5f:73:
f8:a2:ed:6c:ef:28:ef:00:e0:2e:90:a5:da:9c:9f:
c9:0c:79:4e:6c:26:3a:8e:7b:35:d2:c8:ea:9b:b5:
dd:a2:69:11:e1:1e:be:a3:80:8e:1a:03:dd:19:8b:
7a:83:4c:cb:8b:f9:b9:d4:85:8b:bd:24:9a:c5:6c:
b4:3d:27:ec:d7:4d:5e:2d:01:32:40:6f:7d:6c:f1:
55:7a:7e:dd:7c:43:d8:f6:17:5c:0f:46:29:d5:cd:
b8:18:51:9a:51:03:53:ca:71:38:67:12:1d:d5:16:
74:76:c1:15:db:19:a6:ad:77:34:ef:1a:0c:74:e0:
c1:10:d0:0b:ed:22:49:d7:20:75:0d:7f:40:bc:ba:
8d:f7:8b:64:50:46:35:b3:f1:8f:06:82:0e:65:6e:
c0:7a:b9:24:a0:32:b5:01:ee:41:ec:ab:1f:9f:08:
1a:3b:23:1e:f2:1a:81:43:51:76:c2:9b:db:6c:e5:
dd:14:62:fd:e5:04:13:9b:24:a0:89:62:cd:ce:73:
93:74:c6:71:83:8f:39:c8:4f:50:6d:64:ba:80:c9:
c5:39:dc:2e:db:f1:75:4d:f0:fe:9c:d5:68:48:d1:
b6:d8:db:d6:8f:cf:87:b5:97:3f:9d:8d:35:ca:db:
a2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DA:AE:BB:18:9B:B3:F2:20:A2:61:08:AE:B4:67:44:D8:87:EF:9F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/59quuxibs_IgomEIrrRnRNiH758.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.236.0/23
193.124.17.0/24
193.124.206.0/24
194.58.56.0/24
194.58.154.0/23
194.87.51.0/24
194.87.233.0/24
194.87.255.0/24
Signature Algorithm: sha256WithRSAEncryption
11:d7:21:3b:b4:1e:aa:ba:d8:ad:e3:aa:19:68:fa:c3:4d:51:
bb:6c:d8:ef:8a:ec:37:f5:47:26:04:dd:de:3f:d5:6d:2e:5d:
ca:10:31:13:c6:b0:d6:03:d4:6e:d9:77:aa:1e:e1:d8:5a:86:
60:d2:ac:82:3b:02:ab:c0:85:62:e1:a9:ed:55:79:7d:88:1d:
30:86:7b:75:76:84:30:3e:5d:4f:62:67:6e:24:a3:4a:a8:14:
e2:25:46:7e:e6:4d:9f:6e:e1:df:29:5d:cf:7e:e1:d5:3a:69:
63:f3:66:7b:79:08:83:28:26:24:47:b1:2b:ff:8c:e1:72:5c:
9b:bf:7d:bc:2b:7f:e2:27:c6:bd:6a:11:79:bf:a8:d1:1f:61:
f0:45:23:7a:24:fe:d8:ee:55:2f:9a:59:53:d3:d7:c8:7a:01:
8a:eb:bd:e8:2b:a3:f5:20:cb:af:18:a1:76:ed:f9:79:00:d5:
ec:83:57:95:71:22:bc:d5:7d:51:53:5b:2e:ae:76:bd:6e:51:
94:21:8f:89:13:0e:5f:31:db:97:03:c9:c1:42:db:d4:39:1f:
a5:e7:56:db:11:ee:b1:11:a9:13:c4:23:aa:04:13:f9:9e:51:
da:20:82:aa:7d:93:ab:e9:91:f7:eb:47:4c:cc:9f:f3:7e:41:
6d:66:3e:15
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAZkyobEgfb7Hs55q7u2BpM3NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjUwOTEwMDc1ODAxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2RhYWViYjE4OWJiM2YyMjBhMjYxMDhhZWI0Njc0NGQ4ODdlZjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1OjAc2h+i/hDmDhPX3P4ou1s7yjv
AOAukKXanJ/JDHlObCY6jns10sjqm7XdomkR4R6+o4COGgPdGYt6g0zLi/m51IWL
vSSaxWy0PSfs101eLQEyQG99bPFVen7dfEPY9hdcD0Yp1c24GFGaUQNTynE4ZxId
1RZ0dsEV2xmmrXc07xoMdODBENAL7SJJ1yB1DX9AvLqN94tkUEY1s/GPBoIOZW7A
erkkoDK1Ae5B7KsfnwgaOyMe8hqBQ1F2wpvbbOXdFGL95QQTmySgiWLNznOTdMZx
g485yE9QbWS6gMnFOdwu2/F1TfD+nNVoSNG22NvWj8+HtZc/nY01ytuiBwIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFOfarrsYm7PyIKJhCK60Z0TYh++fMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvNTlxdXV4aWJzX0lnb21FSXJyUm5STmlINzU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQBPkzsAwQA
wXwRAwQAwXzOAwQAwjo4AwQBwjqaAwQAwlczAwQAwlfpAwQAwlf/MA0GCSqGSIb3
DQEBCwUAA4IBAQAR1yE7tB6qutit46oZaPrDTVG7bNjviuw39UcmBN3eP9VtLl3K
EDETxrDWA9Ru2XeqHuHYWoZg0qyCOwKrwIVi4antVXl9iB0whnt1doQwPl1PYmdu
JKNKqBTiJUZ+5k2fbuHfKV3PfuHVOmlj82Z7eQiDKCYkR7Er/4zhclybv328K3/i
J8a9ahF5v6jRH2HwRSN6JP7Y7lUvmllT09fIegGK673oK6P1IMuvGKF27fl5ANXs
g1eVcSK81X1RU1surna9blGUIY+JEw5fMduXA8nBQtvUOR+l51bbEe6xEakTxCOq
BBP5nlHaIIKqfZOr6ZH360dMzJ/zfkFtZj4V
-----END CERTIFICATE-----
Generated at Thu Sep 18 04:29:28 2025 by rpki-client