Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/g1EKkeORDxQo9Cif76DEx1ayRZo.roa
File: g1EKkeORDxQo9Cif76DEx1ayRZo.roa (raw, json)
Hash identifier: vbPzjHWrPv/5Wuh7IZWDGYTkmh23maqwjvKxVVDLrlI=
Subject key identifier: 83:51:0A:91:E3:91:0F:14:28:F4:28:9F:EF:A0:C4:C7:56:B2:45:9A
Certificate issuer: /CN=819b97b20ccb4f696518e47c437259a8913e72ae
Certificate serial: 0196CA465AFFE73C4E2136C39837852B776F
Authority key identifier: 81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/g1EKkeORDxQo9Cif76DEx1ayRZo.roa
Signing time: Tue 13 May 2025 15:32:10 +0000
ROA not before: Tue 13 May 2025 15:32:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208235
IP address blocks: 185.88.144.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:46:5a:ff:e7:3c:4e:21:36:c3:98:37:85:2b:77:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=819b97b20ccb4f696518e47c437259a8913e72ae
Validity
Not Before: May 13 15:32:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=83510a91e3910f1428f4289fefa0c4c756b2459a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9a:3b:42:e0:22:be:ec:ca:b8:a9:7d:08:92:
68:f5:02:94:56:3c:97:61:6f:12:1e:f2:af:6d:39:
c5:2d:72:d6:af:8e:15:a2:c1:4c:ec:64:c9:89:0b:
ce:c1:b2:22:da:37:59:5a:09:9a:25:a6:95:7d:c1:
ce:ca:af:89:ea:f6:01:d2:fa:16:8d:dc:ed:b4:85:
c7:d7:0a:78:31:d1:68:0a:0d:47:67:1f:1e:40:30:
62:08:48:f3:42:b9:7d:12:5d:9a:75:85:a6:bf:33:
16:e9:99:d7:8e:17:b3:da:c8:1e:56:30:78:06:7a:
8a:d4:b5:0f:8b:6e:ee:96:3c:c1:e9:f7:e7:68:16:
0f:f4:72:53:c1:7a:0e:fb:a4:02:e6:30:a7:bf:26:
00:f4:aa:8c:9b:3f:67:dd:c4:a3:0a:d9:df:ca:e4:
a0:ad:32:b7:ef:d1:d1:2f:65:c2:17:ec:0a:65:ac:
45:30:79:00:33:db:15:0f:bf:2c:be:2e:bd:a8:75:
5b:c1:4a:16:d5:2a:96:1d:bc:64:82:00:74:8b:de:
35:75:dd:75:53:eb:07:26:03:ed:40:96:0b:18:e2:
98:e8:13:60:99:26:97:0a:bb:17:11:34:60:26:dd:
35:6c:c2:38:e2:59:75:1b:c1:5c:3f:e2:22:83:20:
43:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:51:0A:91:E3:91:0F:14:28:F4:28:9F:EF:A0:C4:C7:56:B2:45:9A
X509v3 Authority Key Identifier:
keyid:81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/g1EKkeORDxQo9Cif76DEx1ayRZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.144.0/22
Signature Algorithm: sha256WithRSAEncryption
20:1e:6d:e5:ff:a2:22:91:f4:6e:23:bf:58:dc:38:62:94:ec:
62:50:f2:4e:e0:ac:83:f2:ad:6d:b5:fa:48:29:93:cb:e2:b0:
15:92:04:6a:88:22:70:96:75:97:9d:2d:8e:33:df:1a:af:c4:
18:fa:cf:4d:73:5b:c5:ed:4d:39:6a:83:6d:df:31:a4:83:41:
43:d8:27:71:ae:14:18:68:d0:c4:52:56:85:ed:09:8b:40:7c:
77:33:c3:11:e8:75:20:52:d8:8b:3c:1a:ec:d5:36:c4:c7:b9:
91:9a:86:11:dc:fb:9b:30:1b:89:a2:07:26:8c:cf:b4:6f:29:
ea:93:bf:48:23:6f:52:18:d1:a7:da:1f:e3:10:2a:22:c1:b6:
69:0d:2f:73:ef:6e:23:2d:dc:2d:db:70:f8:bc:08:22:63:54:
40:72:36:95:aa:2c:4c:8a:9c:81:1c:24:a1:27:7c:c8:53:8a:
5c:a0:31:82:7a:3a:a0:1c:ee:72:3b:88:ba:91:3c:60:6c:fd:
19:e6:bd:22:c5:25:d3:46:a2:41:ff:94:76:8b:29:f9:36:21:
bb:2d:78:35:2e:c4:df:10:1a:26:88:c1:56:ab:8e:bc:6f:f2:
d3:d9:31:02:27:ab:4c:27:5e:87:6a:bf:f5:15:da:76:7c:9c:
83:d9:10:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:00:22 2025 by rpki-client