Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/6cL0Kq2jENP4RbTfqSWNtMD0gog.roa
File: 6cL0Kq2jENP4RbTfqSWNtMD0gog.roa (raw, json)
Hash identifier: B9YDbFIbrVtsJdUb+90YG+5LOIPbPTqvU71w0BJqJSg=
Subject key identifier: E9:C2:F4:2A:AD:A3:10:D3:F8:45:B4:DF:A9:25:8D:B4:C0:F4:82:88
Certificate issuer: /CN=51ebf60f221a8e31d36b07eaa6d2e53f6d064b6d
Certificate serial: 0196C5E12BFBCCE5FF2B07EAEAF986CE6999
Authority key identifier: 51:EB:F6:0F:22:1A:8E:31:D3:6B:07:EA:A6:D2:E5:3F:6D:06:4B:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uev2DyIajjHTawfqptLlP20GS20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/6cL0Kq2jENP4RbTfqSWNtMD0gog.roa
Signing time: Mon 12 May 2025 19:03:10 +0000
ROA not before: Mon 12 May 2025 19:03:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205689
IP address blocks: 185.203.56.0/22 maxlen: 24
2a0a:e340::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/Uev2DyIajjHTawfqptLlP20GS20.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/Uev2DyIajjHTawfqptLlP20GS20.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uev2DyIajjHTawfqptLlP20GS20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:e1:2b:fb:cc:e5:ff:2b:07:ea:ea:f9:86:ce:69:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51ebf60f221a8e31d36b07eaa6d2e53f6d064b6d
Validity
Not Before: May 12 19:03:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9c2f42aada310d3f845b4dfa9258db4c0f48288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d3:e1:ae:ad:bf:04:79:63:a5:86:66:0e:db:
a6:01:08:78:df:67:7b:a6:7e:06:cf:aa:56:11:52:
61:43:34:29:2b:3a:a7:3a:28:be:46:a1:ba:c2:94:
29:5c:9f:7e:85:1c:6e:0b:c5:88:4a:75:e8:46:2e:
e3:80:a3:6a:85:d7:c1:47:eb:5e:d1:ce:87:0c:c0:
21:39:f5:92:c9:ea:02:52:1e:56:be:b0:eb:2e:d4:
3c:98:9b:fc:be:6f:d4:64:2b:d0:5d:0f:8e:50:5c:
91:c3:97:fa:af:cb:7b:74:6f:dc:e4:61:56:2b:8d:
5d:76:78:98:f0:f4:81:95:fc:24:8b:76:88:2c:ab:
74:7f:2c:ff:50:80:33:07:a9:d7:ca:7a:ee:a5:9e:
95:5c:df:54:88:21:c2:59:9d:68:c6:87:9f:d8:fa:
03:39:eb:db:e6:53:8d:04:25:0f:1f:7c:66:d0:a5:
57:a6:58:cd:38:97:38:9c:c1:59:64:b4:3e:5e:4b:
f3:e3:c7:17:50:8d:db:08:68:44:a7:f6:f4:05:0e:
a3:18:39:c7:d8:c5:e7:28:dd:ca:d1:2c:a7:65:64:
b3:6f:07:28:d7:48:39:37:73:f7:11:59:e0:a4:41:
42:81:4b:5b:33:7d:20:72:e9:68:4c:d6:19:34:67:
09:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C2:F4:2A:AD:A3:10:D3:F8:45:B4:DF:A9:25:8D:B4:C0:F4:82:88
X509v3 Authority Key Identifier:
keyid:51:EB:F6:0F:22:1A:8E:31:D3:6B:07:EA:A6:D2:E5:3F:6D:06:4B:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uev2DyIajjHTawfqptLlP20GS20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/6cL0Kq2jENP4RbTfqSWNtMD0gog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cae18-5967-4c68-b09b-77c70365741f/1/Uev2DyIajjHTawfqptLlP20GS20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.56.0/22
IPv6:
2a0a:e340::/29
Signature Algorithm: sha256WithRSAEncryption
2b:5e:fe:5c:ad:24:da:87:e3:f7:c4:c4:fe:ad:14:3b:0c:16:
f9:59:c4:66:ff:ea:f9:c4:26:08:8f:7f:b7:25:a0:0d:cc:60:
dc:1e:f4:98:a8:9f:c2:76:b1:f3:e0:af:5b:ad:ab:79:24:6b:
31:22:da:10:31:68:26:e9:3d:93:13:bd:11:77:ae:55:0b:11:
e8:60:75:ff:2d:f6:53:08:74:cd:09:85:29:ec:30:89:c6:ca:
1b:cb:75:5a:d9:3d:58:0f:60:ae:6f:c7:95:bd:9d:7f:34:3f:
35:39:ec:b9:f0:6d:87:60:2d:98:ae:cf:6f:0c:13:59:c4:8d:
ce:c2:03:c5:74:43:c8:a3:1a:af:12:40:1d:a1:dd:ea:b4:30:
fe:5b:a9:de:44:5b:0a:07:35:18:db:7e:a8:9d:d9:c6:7c:61:
cc:7e:23:86:4e:95:88:bb:8b:d5:56:da:92:da:6a:bb:bc:2b:
ac:a0:2b:80:13:2d:eb:13:d2:04:a8:a8:e0:20:40:1d:99:47:
82:72:58:8e:7e:6e:3d:2f:9a:97:68:09:e0:c2:fc:f8:4c:d1:
90:0b:dc:85:45:ee:70:e7:a0:a1:eb:68:a8:18:0a:79:fd:33:
45:6c:87:6f:93:3b:0f:c6:fa:0c:03:60:8b:01:51:37:20:1e:
83:85:bf:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:49:32 2025 by rpki-client