Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/VWbllO1tu_WdjhfJBwifyw6fA_o.roa
File: VWbllO1tu_WdjhfJBwifyw6fA_o.roa (raw, json)
Hash identifier: ln4qDqSWf45nWkXtwjH7daapvOUODZcVQPC6D6fvpUQ=
Subject key identifier: 55:66:E5:94:ED:6D:BB:F5:9D:8E:17:C9:07:08:9F:CB:0E:9F:03:FA
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 0197356C94A5E4E809D139E7DD1F8EDF6359
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/VWbllO1tu_WdjhfJBwifyw6fA_o.roa
Signing time: Tue 03 Jun 2025 10:53:17 +0000
ROA not before: Tue 03 Jun 2025 10:53:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 79.172.192.0/24 maxlen: 24
87.229.8.0/24 maxlen: 24
87.229.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:35:6c:94:a5:e4:e8:09:d1:39:e7:dd:1f:8e:df:63:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jun 3 10:53:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5566e594ed6dbbf59d8e17c907089fcb0e9f03fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:11:16:59:1c:b1:28:85:39:c9:d3:7e:f7:30:
9b:c3:c0:3e:5c:67:11:24:33:a8:58:8f:d8:ed:52:
b3:35:f0:0b:95:c3:54:c7:25:3a:78:0a:33:cf:03:
0d:38:01:2c:d9:e0:c1:79:b7:f1:8a:9d:86:d8:6a:
55:e7:17:df:cc:c6:a8:6b:82:dd:a9:c8:1a:c1:be:
4b:47:4d:cb:57:fa:8c:40:78:35:03:26:c0:d9:e9:
fe:44:8d:3f:c8:60:6a:ee:a5:e0:60:0f:3e:25:69:
27:4a:6f:13:ab:a0:3a:3e:ca:5b:0c:d7:71:fd:ea:
4e:e6:b5:75:15:a0:6d:7d:f7:bd:75:00:3f:3e:61:
73:d4:33:c2:0c:32:2d:cf:b1:1b:95:b8:73:52:05:
2f:22:14:9b:4e:ca:ee:83:c5:63:de:5c:4e:68:d7:
b1:4f:18:79:eb:f0:4e:b7:9a:bf:5e:20:03:0a:ed:
7c:a1:b3:5a:a5:c7:5e:12:04:e5:58:95:d4:f9:bb:
3d:53:0b:d9:06:dd:5a:25:ed:74:7e:74:22:cb:29:
d1:eb:15:8f:94:a5:5c:06:02:3e:7a:c6:b6:03:b9:
9c:7b:6b:aa:e9:3b:c1:47:4d:b4:5c:47:db:28:ca:
35:f6:de:de:ad:11:cb:05:4d:5f:6a:81:13:cb:47:
9e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:66:E5:94:ED:6D:BB:F5:9D:8E:17:C9:07:08:9F:CB:0E:9F:03:FA
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/VWbllO1tu_WdjhfJBwifyw6fA_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.192.0/24
87.229.8.0/24
87.229.64.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:bf:e8:b9:22:43:8b:cf:0f:b2:bf:64:15:ab:af:92:cd:9b:
e6:7f:11:60:05:0c:92:66:20:c6:75:b6:b6:0e:30:76:97:3f:
82:f4:ee:9c:29:7d:a0:46:fa:55:76:2e:be:79:cc:62:f1:11:
ff:d0:ec:6f:0a:df:73:fa:dc:01:41:98:c6:83:f5:61:a0:c5:
6f:56:9d:4e:d4:ca:e3:aa:61:10:97:e7:0b:0b:bf:73:1e:2a:
4c:36:6e:45:c3:46:2a:33:58:c9:8f:e0:5a:57:d1:8b:ed:8e:
74:ef:8c:6a:5b:b8:d1:b7:bc:68:4c:72:75:11:c9:a7:4c:0c:
6c:7f:ed:bc:1f:4d:83:d7:49:89:d7:63:0d:be:26:6f:9c:64:
47:35:73:83:77:21:6f:68:f8:29:19:cd:c3:57:30:22:86:d5:
28:35:f7:82:3d:4a:44:eb:21:04:0e:12:6b:58:8e:39:73:7a:
da:89:aa:8a:3c:d7:b5:35:42:14:c4:ce:1f:ff:49:87:19:bb:
95:82:ea:6e:09:86:89:e7:e3:5f:c5:36:7f:88:1b:85:50:8d:
fb:e8:97:d0:76:91:c3:71:20:37:bc:dc:9b:cc:9b:b4:21:c0:
ea:6a:a9:55:0c:ba:5f:49:56:00:b0:50:41:5e:af:08:d4:14:
d6:94:87:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:05:40 2025 by rpki-client