Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/7HgJVexlbwBQC2V-RdYvTA-tP6s.roa
File: 7HgJVexlbwBQC2V-RdYvTA-tP6s.roa (raw, json)
Hash identifier: AOEUsmiLJHJDPiEGeoXdlAlFPZ8+uVDkIEE21C04b0o=
Subject key identifier: EC:78:09:55:EC:65:6F:00:50:0B:65:7E:45:D6:2F:4C:0F:AD:3F:AB
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01971185415191E030584CC61F92FF902FEA
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/7HgJVexlbwBQC2V-RdYvTA-tP6s.roa
Signing time: Tue 27 May 2025 11:33:55 +0000
ROA not before: Tue 27 May 2025 11:33:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213535
IP address blocks: 45.13.226.0/24 maxlen: 24
45.67.139.0/24 maxlen: 24
45.92.219.0/24 maxlen: 24
185.117.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft
rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 21:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:11:85:41:51:91:e0:30:58:4c:c6:1f:92:ff:90:2f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: May 27 11:33:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec780955ec656f00500b657e45d62f4c0fad3fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b1:3f:61:8c:88:98:4f:61:33:3b:c1:fd:97:
ac:00:1c:de:22:2c:b0:9b:77:ba:fe:f1:f3:da:51:
a4:8c:25:46:88:22:58:75:ae:69:43:9b:e5:a0:8b:
b3:05:6e:91:7b:76:91:19:59:66:98:d3:13:97:c5:
0d:90:65:1f:73:05:0c:45:7f:08:65:48:63:3c:de:
e5:da:dd:6a:ef:ec:20:0f:56:6a:4d:e5:8b:4b:28:
f0:c3:f2:fe:a2:33:17:3c:cc:ad:ce:a4:b4:6d:c5:
57:a0:c2:39:3b:42:be:56:c2:d6:17:98:06:86:45:
f4:51:93:e4:b4:2b:e0:4f:e7:eb:52:d0:8e:36:c8:
f9:51:1d:4c:c3:bd:66:ce:67:db:a9:44:ba:60:af:
59:d8:28:86:fe:f8:07:e4:d1:26:d6:b7:e9:97:25:
d6:6c:dd:e6:02:ad:e1:73:7d:ff:68:51:0c:3f:f2:
4b:61:19:be:04:8b:e4:52:da:96:5f:61:6b:4e:e4:
ad:07:d9:2d:6c:86:e5:b1:93:e8:94:b6:cf:57:b8:
13:b7:14:d7:8c:7c:72:ac:36:08:b3:32:ca:81:52:
79:05:d6:cc:97:c7:15:26:06:e2:7b:b9:96:d1:11:
d9:9c:b8:39:c6:d0:9a:8e:8d:32:9f:fb:f0:19:a0:
7d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:78:09:55:EC:65:6F:00:50:0B:65:7E:45:D6:2F:4C:0F:AD:3F:AB
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/7HgJVexlbwBQC2V-RdYvTA-tP6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.226.0/24
45.67.139.0/24
45.92.219.0/24
185.117.0.0/24
Signature Algorithm: sha256WithRSAEncryption
08:a3:1b:f8:35:7d:95:f0:09:fb:33:13:5e:29:c9:3c:26:4d:
86:12:3d:06:2b:fe:3d:6f:f9:25:e2:8a:e4:5a:a6:55:55:84:
c1:d7:a3:c8:14:18:1e:5a:2d:1e:c2:ce:42:82:ea:8d:a1:a9:
02:de:d5:b3:d3:84:d7:4e:a9:c4:ea:39:37:89:3b:66:f1:cc:
85:de:82:be:ba:40:fd:a5:79:74:77:96:c5:a1:a6:bb:2c:84:
35:b9:43:38:3d:32:65:ea:48:97:66:39:b2:67:4b:00:e3:9b:
6c:01:f7:6e:70:63:a1:5e:4e:5b:9f:bd:a4:de:70:84:ba:8c:
e6:86:d7:ca:a7:39:0b:d7:7d:c7:ff:c9:6b:77:a3:59:41:65:
37:e9:a3:cc:20:ac:4c:32:b2:dd:be:d7:92:f3:92:49:f0:cf:
b8:13:ef:94:b6:9f:93:00:0d:e0:91:67:01:a4:cc:33:82:99:
6c:69:b4:a0:a8:86:c0:28:2f:96:01:36:1b:de:de:5f:0b:a9:
c3:f0:22:8d:6c:e0:18:2f:af:56:90:ec:72:0c:ec:b3:f5:0a:
af:30:14:db:af:6c:81:b8:8f:94:fb:d7:8b:7f:cb:00:81:70:
54:44:a8:5d:b4:62:5f:c2:60:d7:3d:bd:e4:70:bc:db:bf:f1:
72:aa:fe:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 04:37:53 2025 by rpki-client