Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6muW252G-H7hx7obde7KTUhiYfg.roa
File: 6muW252G-H7hx7obde7KTUhiYfg.roa (raw, json)
Hash identifier: wS3QW3pqoMvwTvqw/s8z1EnWNa7RahjeuuMSZSpYxAk=
Subject key identifier: EA:6B:96:DB:9D:86:F8:7E:E1:C7:BA:1B:75:EE:CA:4D:48:62:61:F8
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0197AFBDD4D3C4F65B9CD935361637D20A99
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6muW252G-H7hx7obde7KTUhiYfg.roa
Signing time: Fri 27 Jun 2025 04:55:42 +0000
ROA not before: Fri 27 Jun 2025 04:55:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214417
IP address blocks: 83.219.97.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
141.98.6.0/24 maxlen: 24
176.125.254.0/24 maxlen: 24
185.252.177.0/24 maxlen: 24
194.48.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 16:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:af:bd:d4:d3:c4:f6:5b:9c:d9:35:36:16:37:d2:0a:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 27 04:55:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ea6b96db9d86f87ee1c7ba1b75eeca4d486261f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b4:dd:6e:4c:c2:cc:8a:23:8b:29:01:b4:3f:
da:5e:95:f3:18:87:f3:68:51:e0:a4:d5:bf:cc:6e:
bc:30:54:8a:15:8c:28:4f:32:42:cb:ea:13:f5:03:
3c:15:5e:c9:25:b1:25:2f:0e:e5:b9:6b:1c:47:d5:
1e:e2:b4:dd:9d:39:d3:cd:5e:e3:b9:4b:f9:1f:7c:
12:0c:22:1e:8f:35:f7:6a:91:fe:54:7d:ef:5c:2f:
fe:0e:1f:28:50:4a:67:50:f9:b1:fd:b6:15:95:40:
33:1a:f1:7d:f3:e6:1e:52:bd:35:95:61:c4:16:91:
91:50:1b:61:7d:25:f3:bc:e1:3b:1b:c8:d2:b1:9b:
34:35:08:83:40:0e:f0:a6:3a:9f:1a:b6:22:cb:4a:
e6:9e:14:fd:a3:95:68:b4:3c:cd:60:f4:88:be:4f:
dd:a3:d4:de:5b:6c:5d:cd:92:47:1c:33:9b:6d:63:
2a:bc:41:0c:a6:3f:fe:af:d6:e1:e1:24:9e:de:de:
b9:33:e2:76:85:2c:3f:0f:fd:32:9b:51:37:f8:7a:
be:f0:ad:b9:cf:9e:00:a5:d4:e1:e6:11:fa:eb:11:
c6:ef:18:6e:80:3d:8e:52:b2:66:1e:18:82:c3:8f:
17:8f:49:80:ca:40:ff:25:4a:6c:46:6f:c5:f6:60:
57:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6B:96:DB:9D:86:F8:7E:E1:C7:BA:1B:75:EE:CA:4D:48:62:61:F8
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6muW252G-H7hx7obde7KTUhiYfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.97.0/24
87.121.221.0/24
141.98.6.0/24
176.125.254.0/24
185.252.177.0/24
194.48.250.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ad:06:fd:23:9b:c2:6b:53:df:8c:1d:6d:c0:75:93:d5:fc:
40:fc:ab:b0:74:be:38:0d:43:96:07:d9:cb:c2:8e:9e:5b:af:
94:0e:02:21:ee:58:93:46:79:25:97:e8:af:1e:29:a3:00:32:
dc:d7:f9:d9:4d:c5:ff:c5:55:95:f4:f5:98:32:b7:aa:86:0e:
3e:5f:e1:bd:0a:3f:be:cb:3b:c2:b3:7b:d0:eb:d2:4d:fd:f6:
23:f9:78:84:a7:6c:cf:8e:fb:0b:21:82:21:ab:13:34:e9:2e:
70:c2:45:e9:6c:11:3e:9a:1b:e2:73:40:59:90:80:85:09:0a:
50:a1:8f:76:f3:4b:b7:15:70:fa:df:c0:5e:48:ec:f6:d7:c2:
1a:a1:0d:ab:f1:47:5a:e2:de:32:1a:51:a9:5a:a5:a9:41:ee:
a8:ab:4f:49:c1:00:40:04:d8:41:14:49:29:a9:6f:39:10:a6:
d7:73:99:93:47:54:d1:b6:97:11:98:b2:37:92:b3:b3:12:2a:
cc:f0:df:bd:5c:a3:1b:1d:3a:07:69:50:81:6e:57:94:1f:3f:
b5:a5:3f:f3:c5:c5:eb:f8:e0:1b:df:7a:07:c6:0c:84:89:e1:
64:3f:a8:e8:10:54:82:59:5c:9c:10:b1:b9:17:ae:d3:2f:30:
76:f1:a8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 6 00:37:44 2025 by rpki-client