Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FLcQphCG1CzxMrGkGVuuZvg4Ml8.roa
File: FLcQphCG1CzxMrGkGVuuZvg4Ml8.roa (raw, json)
Hash identifier: Jft2895ystt5N3d6M8PgAjbERZm238iqI/WLflPart8=
Subject key identifier: 14:B7:10:A6:10:86:D4:2C:F1:32:B1:A4:19:5B:AE:66:F8:38:32:5F
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01979C51004492755514E6253F730A92A658
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FLcQphCG1CzxMrGkGVuuZvg4Ml8.roa
Signing time: Mon 23 Jun 2025 10:24:03 +0000
ROA not before: Mon 23 Jun 2025 10:24:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60849
IP address blocks: 62.72.165.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 04:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:9c:51:00:44:92:75:55:14:e6:25:3f:73:0a:92:a6:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 23 10:24:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14b710a61086d42cf132b1a4195bae66f838325f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:18:73:eb:ea:06:75:a7:40:fd:19:8b:7c:23:
c7:09:ce:74:c5:48:f0:67:66:ed:30:9e:52:02:2b:
40:51:d7:f8:7d:2a:68:9e:1c:18:e3:91:21:b0:b7:
ea:3b:3a:72:12:f7:7c:77:73:7a:05:69:4d:59:23:
e0:85:49:c5:73:ac:bd:c9:3d:2d:ed:2c:58:04:32:
9f:ca:cd:5e:86:15:2e:1f:2d:2b:2d:97:2b:e6:6e:
d8:9b:83:b6:5b:f4:1a:c1:f4:ef:b4:3b:65:b5:94:
a6:2d:82:16:42:55:ce:f4:29:77:db:bc:06:67:67:
30:59:3e:b1:68:e6:ad:83:b8:7b:27:26:b0:1b:17:
a4:66:e3:1f:21:5a:b2:e9:0f:d8:cd:59:57:25:f9:
74:1c:35:5f:b3:0f:be:7f:0c:94:e5:77:c5:e5:65:
0b:9f:45:12:80:a5:b7:31:67:da:36:7f:92:db:70:
dc:85:7f:69:3f:f2:71:6c:7f:b1:92:c4:b4:7c:64:
88:5e:85:d8:ba:62:4a:7c:bb:71:b8:78:92:7b:4a:
f9:55:2e:b5:de:9e:66:e5:74:9b:bf:db:2b:97:0c:
5e:77:1c:ad:fc:f3:c9:20:36:8f:53:fc:36:f9:5c:
58:fa:37:4e:15:35:01:3c:af:59:96:c8:33:51:b0:
d4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B7:10:A6:10:86:D4:2C:F1:32:B1:A4:19:5B:AE:66:F8:38:32:5F
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FLcQphCG1CzxMrGkGVuuZvg4Ml8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.165.0/24
62.72.167.0/24
62.72.169.0/24
62.72.179.0/24
62.72.186.0/24
176.57.51.0-176.57.52.255
Signature Algorithm: sha256WithRSAEncryption
0b:94:0d:78:2b:c7:d8:3e:e3:66:81:94:c7:a9:2b:3f:28:21:
a6:0d:cb:60:99:5d:f8:43:e8:bb:ba:d6:12:42:c3:98:04:58:
53:98:5f:08:39:a5:0c:6c:56:24:39:e6:6e:a5:85:7f:6e:cd:
69:05:ee:a0:a8:15:a9:36:98:19:ad:43:4b:2c:c6:d6:ca:4d:
51:fd:8e:ff:e3:ef:ae:32:5d:48:93:b0:c7:dc:97:d1:e9:05:
93:52:d8:6d:5f:9d:86:44:ba:fc:50:66:79:12:81:60:c1:6f:
38:7b:12:06:74:5c:44:5f:ea:4d:94:c0:13:c3:3b:9e:f9:58:
d2:35:39:e2:a3:6f:1b:1b:f4:78:db:20:b2:bf:a4:65:bb:83:
7f:f2:59:93:2e:9b:10:78:42:7f:a1:d0:8b:3f:f3:3c:8f:b9:
30:8b:ac:dc:cf:b5:9c:27:ca:83:03:3b:b2:9d:08:f4:59:a4:
3e:ce:6f:e6:4f:6c:4e:3c:73:52:50:e4:55:ba:f8:c7:92:2a:
99:4a:ba:c4:2e:d5:51:8f:41:f3:2c:48:36:97:da:58:7e:ef:
ea:3d:0e:20:e5:74:24:42:df:41:a9:db:05:24:90:88:70:5e:
75:90:56:21:c2:5d:6b:ca:f6:be:b4:1a:5c:49:ab:00:31:72:
64:2e:91:79
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgISAZecUQBEknVVFOYlP3MKkqZYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjUwNjIzMTAyNDAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNGI3MTBhNjEwODZkNDJjZjEzMmIxYTQxOTViYWU2NmY4MzgzMjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRhz6+oGdadA/RmLfCPHCc50xUjw
Z2btMJ5SAitAUdf4fSponhwY45EhsLfqOzpyEvd8d3N6BWlNWSPghUnFc6y9yT0t
7SxYBDKfys1ehhUuHy0rLZcr5m7Ym4O2W/QawfTvtDtltZSmLYIWQlXO9Cl327wG
Z2cwWT6xaOatg7h7JyawGxekZuMfIVqy6Q/YzVlXJfl0HDVfsw++fwyU5XfF5WUL
n0USgKW3MWfaNn+S23DchX9pP/JxbH+xksS0fGSIXoXYumJKfLtxuHiSe0r5VS61
3p5m5XSbv9srlwxedxyt/PPJIDaPU/w2+VxY+jdOFTUBPK9ZlsgzUbDU/QIDAQAB
o4ICLzCCAiswHQYDVR0OBBYEFBS3EKYQhtQs8TKxpBlbrmb4ODJfMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvRkxjUXBoQ0cxQ3p4TXJHa0dWdXVadmc0TWw4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAPkilAwQA
PkinAwQAPkipAwQAPkizAwQAPki6MAwDBACwOTMDBACwOTQwDQYJKoZIhvcNAQEL
BQADggEBAAuUDXgrx9g+42aBlMepKz8oIaYNy2CZXfhD6Lu61hJCw5gEWFOYXwg5
pQxsViQ55m6lhX9uzWkF7qCoFak2mBmtQ0ssxtbKTVH9jv/j764yXUiTsMfcl9Hp
BZNS2G1fnYZEuvxQZnkSgWDBbzh7EgZ0XERf6k2UwBPDO575WNI1OeKjbxsb9Hjb
ILK/pGW7g3/yWZMumxB4Qn+h0Is/8zyPuTCLrNzPtZwnyoMDO7KdCPRZpD7Ob+ZP
bE48c1JQ5FW6+MeSKplKusQu1VGPQfMsSDaX2lh+7+o9DiDldCRC30Gp2wUkkIhw
XnWQViHCXWvK9r60GlxJqwAxcmQukXk=
-----END CERTIFICATE-----
Generated at Fri Jul 4 10:03:07 2025 by rpki-client