Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yKJZrb1orvFe-oIEtIk9RrTaDHw.roa
File: yKJZrb1orvFe-oIEtIk9RrTaDHw.roa (raw, json)
Hash identifier: opl/jmJqMtVDYIl5IFbuWobTiQNmXCkfcgzmBnz9Tg8=
Subject key identifier: C8:A2:59:AD:BD:68:AE:F1:5E:FA:82:04:B4:89:3D:46:B4:DA:0C:7C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01971281F05A77E5B4FF3E6A01E503087DF9
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yKJZrb1orvFe-oIEtIk9RrTaDHw.roa
Signing time: Tue 27 May 2025 16:09:54 +0000
ROA not before: Tue 27 May 2025 16:09:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215375
IP address blocks: 5.83.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:12:81:f0:5a:77:e5:b4:ff:3e:6a:01:e5:03:08:7d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 27 16:09:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8a259adbd68aef15efa8204b4893d46b4da0c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:af:f0:ca:2e:8e:0d:48:cc:ab:31:83:45:c5:
b7:82:3a:fe:f1:cc:1d:d5:b9:8a:45:c3:38:18:79:
d6:f3:5d:d4:b4:79:10:9d:a0:c7:01:8e:5e:b3:0a:
30:d2:ef:23:e0:07:a3:12:90:a6:78:09:e8:d5:25:
78:ab:11:18:80:9a:b6:d1:b4:f5:f5:94:c0:88:23:
81:48:cf:4d:cd:7c:ad:f0:28:88:c0:63:f9:06:6d:
37:8c:e2:98:9d:59:69:e5:02:3b:0a:52:5f:02:a8:
31:8f:d9:90:0d:13:76:08:b7:ee:bb:b7:55:31:bd:
cd:9f:6a:db:37:80:09:26:66:7b:72:d9:8a:8f:39:
1f:9d:f8:91:2a:f0:03:33:9b:2e:40:01:00:c1:b8:
c2:57:42:fc:1f:01:7d:52:9b:e2:8f:ea:e3:6f:3a:
5a:0f:f8:e4:ba:91:f5:1c:5c:6b:66:47:b7:4c:bc:
df:3a:ce:8f:1c:0b:f8:b9:c4:05:64:33:0e:a4:ae:
99:db:63:b7:4d:c0:b5:27:af:f2:1d:42:cd:51:ab:
bd:9d:a0:1e:4a:1e:33:79:eb:45:0c:73:39:cb:61:
0d:83:66:a4:d4:7e:f7:33:88:5a:80:13:f6:7e:e2:
ee:e3:02:96:6e:a7:68:7d:a6:46:11:83:ea:57:58:
86:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A2:59:AD:BD:68:AE:F1:5E:FA:82:04:B4:89:3D:46:B4:DA:0C:7C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yKJZrb1orvFe-oIEtIk9RrTaDHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.154.0/24
Signature Algorithm: sha256WithRSAEncryption
25:6b:81:3a:9a:89:0b:de:50:5b:54:be:5e:73:07:06:0a:90:
08:ff:f6:52:5c:13:82:a3:aa:78:2a:4f:70:2e:9d:c5:01:64:
ba:0f:7b:14:ec:19:af:2b:1a:63:08:a9:af:73:c9:6a:17:49:
e6:76:e4:5a:f6:c8:95:da:89:c2:e7:81:5f:d3:c4:f3:42:bd:
d0:ed:58:90:70:b4:61:7d:9c:b5:4f:f2:ca:1b:83:9b:91:c7:
ef:f5:7d:d3:fb:28:be:95:6a:c7:ff:8c:a8:1b:9e:27:4b:59:
19:f6:dc:0f:20:f0:4a:66:44:30:c5:f0:b3:89:93:73:aa:da:
12:77:de:76:b3:8d:c6:71:5f:f7:40:51:9e:ea:c3:c3:cf:3c:
37:ea:7e:d4:0d:98:da:16:c9:c0:20:61:4c:48:52:c2:8c:97:
6e:2e:40:3d:19:39:eb:76:21:ba:00:64:2a:2d:81:54:12:ca:
22:03:28:ea:7d:f7:96:59:09:fe:fb:c0:54:71:a6:6c:36:69:
62:0c:b8:ef:fd:58:84:11:9e:54:62:d9:3c:08:2d:ff:0f:18:
46:b0:f6:0d:7b:ca:3b:9a:57:d2:56:d0:20:6f:fc:18:4b:45:
42:0e:da:fa:2f:f1:c7:20:46:eb:2b:74:ce:e5:a6:8f:d9:d7:
a2:60:8f:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZcSgfBad+W0/z5qAeUDCH35MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNTI3MTYwOTU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOGEyNTlhZGJkNjhhZWYxNWVmYTgyMDRiNDg5M2Q0NmI0ZGEwYzdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6/wyi6ODUjMqzGDRcW3gjr+8cwd
1bmKRcM4GHnW813UtHkQnaDHAY5eswow0u8j4AejEpCmeAno1SV4qxEYgJq20bT1
9ZTAiCOBSM9NzXyt8CiIwGP5Bm03jOKYnVlp5QI7ClJfAqgxj9mQDRN2CLfuu7dV
Mb3Nn2rbN4AJJmZ7ctmKjzkfnfiRKvADM5suQAEAwbjCV0L8HwF9Upvij+rjbzpa
D/jkupH1HFxrZke3TLzfOs6PHAv4ucQFZDMOpK6Z22O3TcC1J6/yHULNUau9naAe
Sh4zeetFDHM5y2ENg2ak1H73M4hagBP2fuLu4wKWbqdofaZGEYPqV1iG3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMiiWa29aK7xXvqCBLSJPUa02gx8MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEveUtKWnJiMW9ydkZlLW9JRXRJazlSclRhREh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVOaMA0G
CSqGSIb3DQEBCwUAA4IBAQAla4E6mokL3lBbVL5ecwcGCpAI//ZSXBOCo6p4Kk9w
Lp3FAWS6D3sU7BmvKxpjCKmvc8lqF0nmduRa9siV2onC54Ff08TzQr3Q7ViQcLRh
fZy1T/LKG4Obkcfv9X3T+yi+lWrH/4yoG54nS1kZ9twPIPBKZkQwxfCziZNzqtoS
d952s43GcV/3QFGe6sPDzzw36n7UDZjaFsnAIGFMSFLCjJduLkA9GTnrdiG6AGQq
LYFUEsoiAyjqffeWWQn++8BUcaZsNmliDLjv/ViEEZ5UYtk8CC3/DxhGsPYNe8o7
mlfSVtAgb/wYS0VCDtr6L/HHIEbrK3TO5aaP2deiYI8r
-----END CERTIFICATE-----
Generated at Sat Jun 7 05:03:26 2025 by rpki-client