Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/17iv-XauolvSouOb-atMCom00NE.roa
File: 17iv-XauolvSouOb-atMCom00NE.roa (raw, json)
Hash identifier: RUbIq5otYoP81iO8JGMwip4vrliUcTTXVwJrinGKhoI=
Subject key identifier: D7:B8:AF:F9:76:AE:A2:5B:D2:A2:E3:9B:F9:AB:4C:0A:89:B4:D0:D1
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 01973A85363847D6F064DE5FBF8D151498F8
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/17iv-XauolvSouOb-atMCom00NE.roa
Signing time: Wed 04 Jun 2025 10:38:18 +0000
ROA not before: Wed 04 Jun 2025 10:38:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 195.210.98.0/24 maxlen: 24
195.210.99.0/24 maxlen: 24
195.210.104.0/24 maxlen: 24
195.210.105.0/24 maxlen: 24
195.210.106.0/24 maxlen: 24
195.210.107.0/24 maxlen: 24
195.210.112.0/24 maxlen: 24
195.210.113.0/24 maxlen: 24
195.210.114.0/24 maxlen: 24
195.210.115.0/24 maxlen: 24
195.210.120.0/24 maxlen: 24
195.210.121.0/24 maxlen: 24
195.210.124.0/24 maxlen: 24
195.210.125.0/24 maxlen: 24
195.210.126.0/24 maxlen: 24
195.210.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 10:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3a:85:36:38:47:d6:f0:64:de:5f:bf:8d:15:14:98:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Jun 4 10:38:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d7b8aff976aea25bd2a2e39bf9ab4c0a89b4d0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c0:39:12:87:da:43:f6:a5:6e:49:42:9b:0c:
74:90:d6:3d:2e:45:a1:b6:b0:2c:66:ee:1d:e1:e9:
95:df:d9:6d:50:01:65:f6:ad:da:a2:df:f7:c7:b9:
19:cc:3a:60:03:9a:16:89:3a:f1:07:1b:4c:df:a3:
45:c7:99:d0:06:e6:aa:e8:bf:29:6d:8e:c2:ba:32:
c9:a4:43:ea:f8:18:c0:4b:4f:b7:74:65:a2:06:f4:
43:13:4c:3b:48:50:7a:9e:60:33:89:8f:65:10:69:
a2:2d:ab:a2:4b:17:77:72:fb:c5:c1:53:a7:7d:40:
e6:da:0c:fa:45:d1:ff:3f:17:ad:42:53:f2:f1:36:
29:00:16:ce:2d:b1:be:4f:16:8d:1a:9a:ab:67:7c:
8e:85:55:14:97:dd:e3:90:32:1e:cd:fa:6a:1f:92:
20:68:52:d4:7a:66:01:19:18:f5:63:bb:29:07:76:
05:3e:d9:93:ab:4f:87:dd:7e:a3:50:6a:62:bc:fb:
8c:6f:4a:b9:fb:c0:63:90:39:75:78:04:1b:ad:9c:
37:a6:44:80:bc:84:99:ef:c9:4e:2b:bb:38:b5:00:
43:68:7a:4e:72:70:cd:9c:78:7b:72:14:54:b0:e8:
40:75:45:51:59:bc:b1:62:1a:eb:5f:a7:4e:0e:03:
bf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B8:AF:F9:76:AE:A2:5B:D2:A2:E3:9B:F9:AB:4C:0A:89:B4:D0:D1
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/17iv-XauolvSouOb-atMCom00NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.98.0/23
195.210.104.0/22
195.210.112.0/22
195.210.120.0/23
195.210.124.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:25:3c:31:b3:d4:c7:1a:ee:44:4b:cf:25:c9:02:ff:b5:63:
87:07:c3:1b:4b:0b:3b:21:1f:33:9a:f8:1e:39:97:7b:da:b9:
14:ce:a1:d1:bb:04:2c:2c:83:7f:31:fc:8f:54:a9:1b:bd:20:
12:56:55:f2:45:01:ac:fb:24:63:f1:76:d1:15:1a:8a:e8:58:
b6:7a:80:0a:12:2b:d2:b1:cf:12:e9:b9:b0:e8:6d:54:d6:3d:
00:da:51:8a:22:d0:b8:b0:63:5f:0c:ae:9e:5f:5c:f3:d5:39:
d4:49:e5:ba:20:c7:89:d1:b0:ec:ca:0b:7b:19:10:6c:99:c0:
62:16:2d:b0:ca:16:9f:3c:88:0b:7c:a8:38:3d:f2:3c:b8:1e:
ff:fe:19:40:74:6c:73:01:d3:83:03:9f:77:92:12:73:9b:50:
14:8f:49:ad:df:3e:c2:86:df:b6:b1:3b:b0:26:8f:fb:8c:1e:
31:32:57:a1:4a:10:47:42:24:13:2a:36:9c:d7:98:61:ca:7d:
68:59:8b:06:0c:4f:f5:97:e8:25:e6:b9:62:d9:93:37:82:61:
0e:e2:fc:df:79:da:ff:a4:b7:41:f2:75:2d:f6:82:cf:ce:11:
11:f1:0c:8d:c2:d7:6f:ce:c5:1f:c9:e0:be:f1:71:ae:b8:b5:
85:3c:98:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:01:56 2025 by rpki-client