Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/vjKyioN5ZLUQGqbv0hjh-k7ZHnI.roa
File: vjKyioN5ZLUQGqbv0hjh-k7ZHnI.roa (raw, json)
Hash identifier: rxK/AqCNmTQ7FTdlF/qR+joUKZx1vJKUfba0dd+y2Mw=
Subject key identifier: BE:32:B2:8A:83:79:64:B5:10:1A:A6:EF:D2:18:E1:FA:4E:D9:1E:72
Certificate issuer: /CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Certificate serial: 0197BFA52C9753E30ADE3679FE98433013E7
Authority key identifier: E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/vjKyioN5ZLUQGqbv0hjh-k7ZHnI.roa
Signing time: Mon 30 Jun 2025 07:02:42 +0000
ROA not before: Mon 30 Jun 2025 07:02:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 152672
IP address blocks: 185.39.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.mft
rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bf:a5:2c:97:53:e3:0a:de:36:79:fe:98:43:30:13:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Validity
Not Before: Jun 30 07:02:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be32b28a837964b5101aa6efd218e1fa4ed91e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:16:96:70:86:bd:d2:e4:88:33:0e:7f:b2:c7:
28:b1:75:14:de:08:59:18:34:07:af:3c:58:c8:da:
fe:f8:a4:70:c6:44:1b:0e:db:5b:fe:99:0d:d7:fc:
a7:da:97:fb:da:54:c9:e2:b0:91:f1:68:f1:ce:15:
06:d4:56:de:bf:1a:d3:d2:96:03:38:8d:52:65:f6:
ab:bf:16:20:b5:ba:3c:74:47:0b:d1:be:ff:9d:22:
a9:e0:59:42:bd:7a:57:0c:8c:2c:e9:3e:1c:24:84:
48:99:6c:e2:1f:4a:41:cb:d3:73:d0:be:b2:10:7a:
51:d1:24:96:24:83:ae:a0:03:12:28:9a:9d:2c:89:
bc:6b:c5:ad:bc:6d:40:41:d2:99:37:28:de:c5:65:
88:9d:71:52:f8:b3:81:7a:14:00:51:e8:9f:3b:b9:
2f:36:43:91:51:87:db:ae:d2:c5:c0:8d:41:f6:52:
b0:36:c2:fe:ca:1f:3c:4a:35:bf:16:eb:8a:53:ed:
9c:f3:ea:8c:26:e9:3d:f6:a2:37:8b:ae:5a:01:b9:
3a:fb:80:d4:0b:89:3e:54:81:29:48:02:6b:d2:aa:
ba:4f:ad:fa:8b:19:6b:90:17:51:51:73:13:3a:22:
a2:8f:d9:b0:8b:38:ed:e5:c8:47:72:85:2f:99:e4:
22:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:32:B2:8A:83:79:64:B5:10:1A:A6:EF:D2:18:E1:FA:4E:D9:1E:72
X509v3 Authority Key Identifier:
keyid:E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/vjKyioN5ZLUQGqbv0hjh-k7ZHnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.51.0/24
Signature Algorithm: sha256WithRSAEncryption
22:d2:ef:da:82:79:b0:59:cd:70:f9:89:84:28:f8:f3:71:93:
c3:02:a2:82:e6:ee:6b:c2:fe:e1:28:37:43:da:24:37:ed:a2:
de:74:28:94:5a:41:99:9e:2c:ff:e8:ba:9b:f7:59:82:30:74:
8a:34:72:b1:38:96:a3:24:76:a6:ae:7c:c9:87:98:98:a1:7d:
82:76:ab:78:ce:f9:5c:61:03:cd:fd:99:e8:0d:a1:8c:e8:81:
2d:8b:b6:17:81:9a:54:a4:d1:03:93:95:58:19:ee:96:fb:ca:
1d:ea:6c:c0:d9:3e:f5:6f:e6:41:7c:11:bf:59:c8:95:99:6b:
8c:96:89:58:bd:37:a0:72:e9:a5:22:7c:35:1d:dc:f9:c7:9f:
ec:8f:c5:5e:9d:bc:ef:8b:5e:90:24:44:4d:bd:8a:f6:fa:55:
44:9c:7f:43:82:43:a8:f0:8c:cb:0e:74:f8:33:40:38:c9:a7:
d9:81:a3:8f:23:c1:38:d0:94:eb:79:88:cb:f7:06:be:d1:54:
a5:dc:1b:87:5b:4d:1a:db:55:67:9c:e2:27:24:83:a9:31:f9:
e3:6d:eb:4f:7a:27:ef:ee:99:ff:cf:4a:d1:d9:44:fc:b2:b8:
65:e1:ad:22:5e:2b:ba:b1:8c:54:58:49:6a:23:53:49:93:f3:
53:83:a9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:05:04 2025 by rpki-client