Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/JYq9sfhRJQigy9n5CLtZ882ady4.roa
File: JYq9sfhRJQigy9n5CLtZ882ady4.roa (raw, json)
Hash identifier: 4JT2DgsQp/4ErgSvXiYhErPoBVwvsonQ+NK4lLLcDDE=
Subject key identifier: 25:8A:BD:B1:F8:51:25:08:A0:CB:D9:F9:08:BB:59:F3:CD:9A:77:2E
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0196DA3073F9418D1F9DAF1C781B15CBC1E6
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/JYq9sfhRJQigy9n5CLtZ882ady4.roa
Signing time: Fri 16 May 2025 17:42:10 +0000
ROA not before: Fri 16 May 2025 17:42:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216341
IP address blocks: 77.83.207.0/24 maxlen: 24
88.214.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:da:30:73:f9:41:8d:1f:9d:af:1c:78:1b:15:cb:c1:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 16 17:42:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=258abdb1f8512508a0cbd9f908bb59f3cd9a772e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f5:d4:c0:89:b2:b2:db:90:c3:e2:39:dc:97:
75:38:9f:f5:3c:64:a4:7e:cc:ac:df:7a:47:a1:b7:
cf:c8:e6:cc:0a:b9:49:0b:1a:c4:8d:02:76:bd:9f:
a3:19:34:c7:5e:f9:c4:ff:f9:d1:a6:2a:eb:6f:c9:
fe:28:5e:80:a8:07:df:d4:e7:88:9a:7d:8a:d7:a1:
f3:62:8e:a6:62:56:32:d0:7f:70:b3:33:ea:a6:ab:
20:bf:3b:e5:df:9c:4c:7a:2e:37:5c:83:00:7d:4b:
13:df:2b:1a:25:97:33:05:40:93:48:d9:bc:fe:de:
85:95:d2:ba:23:2a:40:a0:1b:b8:61:22:33:a8:98:
1a:3c:13:a6:52:b6:64:c9:20:f8:a9:90:0f:a4:be:
db:a3:a1:0b:6e:d7:74:7b:51:33:86:39:a7:e8:24:
c8:9a:6c:e6:40:ff:b6:aa:11:1e:e3:16:81:6c:33:
46:63:cb:24:b6:ba:48:bc:d9:7a:f5:36:80:d9:08:
b7:3f:4b:71:58:ec:a6:60:5c:38:10:88:e1:01:39:
b9:ab:47:19:01:df:96:ab:4f:b6:11:64:94:2a:2d:
6d:56:3e:a6:9d:c0:8e:4c:76:c9:d3:80:4f:7d:c6:
96:e3:0c:bb:ca:ec:be:83:2c:f0:d0:e0:7b:6f:95:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8A:BD:B1:F8:51:25:08:A0:CB:D9:F9:08:BB:59:F3:CD:9A:77:2E
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/JYq9sfhRJQigy9n5CLtZ882ady4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.207.0/24
88.214.50.0/24
Signature Algorithm: sha256WithRSAEncryption
90:3f:21:e2:3a:24:30:03:66:a2:8e:52:78:59:72:0d:06:2e:
b3:8a:21:b3:52:81:5f:51:87:ca:c2:64:12:7d:a9:db:4f:e0:
f9:93:64:ab:34:57:41:71:e9:0e:86:67:19:f1:d1:fa:24:2a:
58:ef:25:59:f2:12:d4:db:0f:3b:b7:fe:0c:69:4b:df:a4:43:
b3:4c:f4:38:ff:ba:15:8c:71:f5:cc:51:fb:9f:b8:1b:d6:71:
23:1e:39:fe:0b:9f:99:26:75:82:2a:54:75:df:01:b7:3a:81:
c4:25:53:df:6a:5c:4c:6d:3d:7f:f3:f7:ac:1c:5c:0f:22:e2:
32:cf:75:2c:1d:f1:d1:57:10:5b:b3:77:f3:33:1f:60:b9:48:
3f:8a:2a:93:28:b0:e1:72:e3:92:c8:5d:e2:33:5e:40:72:83:
e3:b2:14:a2:1d:ee:3a:e4:0c:73:20:b2:36:ba:31:d3:10:2d:
5e:01:c7:30:c7:63:38:25:87:93:e1:50:ef:15:09:52:dd:04:
11:09:72:91:9d:82:50:77:c8:24:f3:cb:b9:6e:8a:b0:b5:10:
a7:37:c0:d2:ba:2c:77:67:e5:73:a5:df:a7:06:3a:7e:14:c5:
e1:db:55:d0:b6:1e:ed:8d:e3:f5:d7:18:5c:31:07:43:f1:87:
9d:dc:95:87
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZbaMHP5QY0fna8ceBsVy8HmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjUwNTE2MTc0MjEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNThhYmRiMWY4NTEyNTA4YTBjYmQ5ZjkwOGJiNTlmM2NkOWE3NzJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/XUwImystuQw+I53Jd1OJ/1PGSk
fsys33pHobfPyObMCrlJCxrEjQJ2vZ+jGTTHXvnE//nRpirrb8n+KF6AqAff1OeI
mn2K16HzYo6mYlYy0H9wszPqpqsgvzvl35xMei43XIMAfUsT3ysaJZczBUCTSNm8
/t6FldK6IypAoBu4YSIzqJgaPBOmUrZkySD4qZAPpL7bo6ELbtd0e1Ezhjmn6CTI
mmzmQP+2qhEe4xaBbDNGY8sktrpIvNl69TaA2Qi3P0txWOymYFw4EIjhATm5q0cZ
Ad+Wq0+2EWSUKi1tVj6mncCOTHbJ04BPfcaW4wy7yuy+gyzw0OB7b5U/0wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCWKvbH4USUIoMvZ+Qi7WfPNmncuMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvSllxOXNmaFJKUWlneTluNUNMdFo4ODJhZHk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVPPAwQA
WNYyMA0GCSqGSIb3DQEBCwUAA4IBAQCQPyHiOiQwA2aijlJ4WXINBi6ziiGzUoFf
UYfKwmQSfanbT+D5k2SrNFdBcekOhmcZ8dH6JCpY7yVZ8hLU2w87t/4MaUvfpEOz
TPQ4/7oVjHH1zFH7n7gb1nEjHjn+C5+ZJnWCKlR13wG3OoHEJVPfalxMbT1/8/es
HFwPIuIyz3UsHfHRVxBbs3fzMx9guUg/iiqTKLDhcuOSyF3iM15AcoPjshSiHe46
5AxzILI2ujHTEC1eAccwx2M4JYeT4VDvFQlS3QQRCXKRnYJQd8gk88u5boqwtRCn
N8DSuix3Z+Vzpd+nBjp+FMXh21XQth7tjeP11xhcMQdD8Yed3JWH
-----END CERTIFICATE-----
Generated at Fri Jun 6 13:55:58 2025 by rpki-client