Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/f60798-3202-484b-8640-1b749e9810b4/1/Jaj49FDIg9x74-Mgv5pjh9hL3VA.roa
File: Jaj49FDIg9x74-Mgv5pjh9hL3VA.roa (raw, json)
Hash identifier: RiqG1dHCuH2e+rEOq+su9EZpKh6AH03adatnHOfLKXM=
Subject key identifier: 25:A8:F8:F4:50:C8:83:DC:7B:E3:E3:20:BF:9A:63:87:D8:4B:DD:50
Certificate issuer: /CN=6d65fe055fb7ed043d109307045c0abdf404d05d
Certificate serial: 019743FC9BA57600C5BAAF9371CA8DA4F2BD
Authority key identifier: 6D:65:FE:05:5F:B7:ED:04:3D:10:93:07:04:5C:0A:BD:F4:04:D0:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWX-BV-37QQ9EJMHBFwKvfQE0F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/f60798-3202-484b-8640-1b749e9810b4/1/Jaj49FDIg9x74-Mgv5pjh9hL3VA.roa
Signing time: Fri 06 Jun 2025 06:45:17 +0000
ROA not before: Fri 06 Jun 2025 06:45:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60633
IP address blocks: 193.200.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/f60798-3202-484b-8640-1b749e9810b4/1/bWX-BV-37QQ9EJMHBFwKvfQE0F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/f60798-3202-484b-8640-1b749e9810b4/1/bWX-BV-37QQ9EJMHBFwKvfQE0F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bWX-BV-37QQ9EJMHBFwKvfQE0F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:43:fc:9b:a5:76:00:c5:ba:af:93:71:ca:8d:a4:f2:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d65fe055fb7ed043d109307045c0abdf404d05d
Validity
Not Before: Jun 6 06:45:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25a8f8f450c883dc7be3e320bf9a6387d84bdd50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f9:e8:ff:46:89:a7:a3:fa:9f:47:b5:d6:40:
ca:11:3d:f8:62:87:2b:ae:e0:88:80:30:bf:8a:67:
9c:a5:85:44:bd:f9:b2:b5:bd:20:b6:41:31:75:9b:
fd:15:bb:72:d5:10:86:b4:3c:de:4a:1e:1d:ee:da:
fc:96:da:c7:7b:df:0f:e5:52:65:6b:b4:6b:7e:a2:
2c:e7:d8:65:81:ef:b9:45:45:4a:c3:94:c2:70:b9:
2e:46:56:e4:3b:14:3e:e4:e8:c1:bf:02:11:70:a4:
2d:9e:5e:58:1d:70:3c:fd:05:40:fa:10:73:1f:10:
16:b1:20:23:ab:ce:1f:94:76:af:1b:73:f3:b6:ce:
a4:4c:80:83:27:60:e0:6a:c8:be:0d:91:a6:8c:aa:
57:98:46:98:3d:d1:0d:ab:ac:a6:d7:4b:c5:85:34:
cd:93:12:9e:15:73:7d:07:ab:91:5c:2a:07:7f:79:
4d:57:ec:68:9e:58:86:59:cf:ff:c3:7c:f2:93:ed:
74:c3:0b:3c:00:6a:2d:14:52:f0:51:da:c9:69:37:
7d:4f:63:48:d7:b9:85:b0:45:d3:77:88:e4:c0:f2:
89:ec:df:5b:ba:43:e7:35:ec:d1:04:5f:f8:97:23:
de:9c:3e:89:28:c0:5c:de:8b:ca:a9:38:a4:04:9d:
c8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A8:F8:F4:50:C8:83:DC:7B:E3:E3:20:BF:9A:63:87:D8:4B:DD:50
X509v3 Authority Key Identifier:
keyid:6D:65:FE:05:5F:B7:ED:04:3D:10:93:07:04:5C:0A:BD:F4:04:D0:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWX-BV-37QQ9EJMHBFwKvfQE0F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/f60798-3202-484b-8640-1b749e9810b4/1/Jaj49FDIg9x74-Mgv5pjh9hL3VA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/f60798-3202-484b-8640-1b749e9810b4/1/bWX-BV-37QQ9EJMHBFwKvfQE0F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.5.0/24
Signature Algorithm: sha256WithRSAEncryption
81:d3:9d:65:45:58:e9:9f:63:a0:35:d6:29:f4:9a:d9:94:64:
f4:4b:56:4b:4f:7b:a5:2d:de:e9:5e:8b:b0:2d:41:10:e2:85:
8e:5d:ba:52:8a:83:5a:58:c6:81:63:32:56:32:c6:8e:a6:32:
fa:35:5a:7b:32:b2:16:f7:92:d2:74:e5:bb:a7:19:58:6e:46:
b2:05:6c:12:bd:ac:78:53:39:ed:89:f9:84:fb:23:d9:63:43:
93:78:f0:2a:3c:f8:86:00:21:ca:0a:93:eb:63:b9:87:4d:ad:
2e:40:f7:54:44:d5:c2:01:32:f8:94:24:e1:44:95:3e:21:ed:
1c:e0:bc:e3:1b:73:78:4c:bc:6a:3d:14:0c:e3:7f:34:cc:85:
02:67:83:3d:5d:dc:af:78:a2:87:4e:3c:26:4b:1d:81:36:a6:
34:64:03:b6:fb:13:11:15:95:9e:b6:e1:93:b1:7a:96:a9:77:
2b:2c:13:78:ac:a3:be:c6:9c:31:bf:8f:94:bb:12:dc:a4:92:
91:b3:06:88:b1:df:11:33:ff:3a:84:bd:89:60:7d:14:3b:df:
09:9e:f6:be:64:75:0b:20:72:30:f5:10:55:f9:43:2c:47:a4:
d5:b5:41:cf:51:37:77:8e:da:af:36:f6:a9:b7:84:bd:16:0f:
55:df:ab:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 10:07:00 2025 by rpki-client