Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/EVR1g7g_6ShkZ-G0slxr47V122I.roa
File: EVR1g7g_6ShkZ-G0slxr47V122I.roa (raw, json)
Hash identifier: OE8gSI9PUAIyHUczWwUS2FGixNNsUvDNFuftsFbcP6w=
Subject key identifier: 11:54:75:83:B8:3F:E9:28:64:67:E1:B4:B2:5C:6B:E3:B5:75:DB:62
Certificate issuer: /CN=d82cb43ca3c0c57816cee360478d0cf882207fd2
Certificate serial: 0195FC6C48C34B46151A1562A03F86799C8D
Authority key identifier: D8:2C:B4:3C:A3:C0:C5:78:16:CE:E3:60:47:8D:0C:F8:82:20:7F:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/EVR1g7g_6ShkZ-G0slxr47V122I.roa
Signing time: Thu 03 Apr 2025 16:11:49 +0000
ROA not before: Thu 03 Apr 2025 16:11:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60485
IP address blocks: 5.157.18.0/24 maxlen: 24
5.157.38.0/24 maxlen: 24
5.157.47.0/24 maxlen: 24
5.157.57.0/24 maxlen: 24
37.72.187.0/24 maxlen: 24
37.203.209.0/24 maxlen: 24
91.108.183.0/24 maxlen: 24
176.61.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/2Cy0PKPAxXgWzuNgR40M-IIgf9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/2Cy0PKPAxXgWzuNgR40M-IIgf9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fc:6c:48:c3:4b:46:15:1a:15:62:a0:3f:86:79:9c:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82cb43ca3c0c57816cee360478d0cf882207fd2
Validity
Not Before: Apr 3 16:11:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=11547583b83fe9286467e1b4b25c6be3b575db62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:58:ff:8f:ac:7e:7c:77:ad:da:89:c6:c5:e4:
05:7e:7a:5b:a7:cc:c8:1c:7f:fc:de:d8:af:27:fb:
74:46:07:59:5f:89:d0:df:77:4a:4a:6d:64:d3:8c:
e1:1c:89:52:6a:2f:b2:e1:70:3d:a6:2c:d6:50:b5:
e2:b1:6a:8a:10:57:bc:ea:ee:5f:41:02:10:cb:70:
d6:f5:de:a4:1b:e6:e3:fa:83:72:72:25:df:98:3c:
89:af:5c:0c:46:95:64:dd:b7:82:85:3c:9d:de:8f:
a7:8c:e0:f7:3e:74:79:a5:06:7e:e5:f0:5d:c0:a0:
f3:61:54:7e:57:29:13:77:66:24:7b:a8:18:be:01:
5f:ef:7d:3e:18:5f:7a:6e:b7:c4:ac:bb:c2:5b:19:
22:53:8f:7d:50:29:ad:72:19:c1:08:7e:9a:c9:69:
f0:00:ee:2e:65:7e:88:ab:84:59:89:8b:60:f3:ca:
61:44:8a:12:c9:b0:78:3b:14:3a:f0:21:39:7c:23:
8c:fb:31:dd:15:4b:74:d0:1d:9e:ae:6c:43:5d:28:
8b:ef:bc:a5:fd:25:f8:9f:fd:e9:d0:ab:e5:58:d8:
e6:b7:94:0d:e0:be:34:ae:52:fd:4f:14:2b:d5:41:
ec:1c:9f:38:5c:64:a7:5f:a6:a4:f5:45:6d:62:09:
13:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:54:75:83:B8:3F:E9:28:64:67:E1:B4:B2:5C:6B:E3:B5:75:DB:62
X509v3 Authority Key Identifier:
keyid:D8:2C:B4:3C:A3:C0:C5:78:16:CE:E3:60:47:8D:0C:F8:82:20:7F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/EVR1g7g_6ShkZ-G0slxr47V122I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/2Cy0PKPAxXgWzuNgR40M-IIgf9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.18.0/24
5.157.38.0/24
5.157.47.0/24
5.157.57.0/24
37.72.187.0/24
37.203.209.0/24
91.108.183.0/24
176.61.141.0/24
Signature Algorithm: sha256WithRSAEncryption
36:62:5f:b9:58:6d:3c:b1:dc:4c:61:3e:50:ad:20:80:3a:2a:
9b:f6:ed:0a:fd:e1:2c:2d:1b:3a:00:99:d6:2f:53:38:ad:ec:
b2:bf:11:07:54:f7:7c:1e:d4:ec:b4:f0:09:42:96:56:84:f0:
fc:8c:87:26:3b:5e:bb:f0:4e:7a:fb:33:2c:a9:65:12:9d:97:
6f:0e:4a:6c:7f:1d:b8:d0:f4:c7:2c:c3:92:f5:4d:66:0b:36:
4a:b2:d3:ee:52:4b:94:70:89:6c:5a:22:35:1b:74:17:42:20:
87:20:93:eb:65:5c:b7:75:dc:be:d5:82:22:47:38:a7:fb:95:
b6:d5:50:d1:b0:a7:eb:cc:8a:15:07:b8:6c:02:34:4b:8b:c2:
96:78:4c:a9:9d:4a:17:1e:8d:55:86:1d:c2:9b:05:b5:c3:98:
b5:9c:74:c4:0b:75:87:34:56:10:99:85:09:05:f4:2c:27:8d:
68:0c:47:62:99:5e:b6:ab:ce:1c:b6:19:4a:83:f4:7e:1c:ab:
4a:30:17:ab:12:8f:ad:d0:55:1c:df:d0:97:c5:47:07:fa:0a:
7a:86:8a:30:c4:41:75:8a:36:0a:b6:47:7d:09:4d:c1:1d:9c:
e1:04:11:67:14:ac:a2:dc:83:b1:87:c4:d7:fb:87:e9:e1:07:
8b:82:d1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 20:24:30 2025 by rpki-client