Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/FtcuzKMMTKsG4IefMTUbvthdvHQ.roa
File: FtcuzKMMTKsG4IefMTUbvthdvHQ.roa (raw, json)
Hash identifier: fh/bmOX6Q7urxhPxPp4WqcpQdlVctOh99ozTUlRP7Pc=
Subject key identifier: 16:D7:2E:CC:A3:0C:4C:AB:06:E0:87:9F:31:35:1B:BE:D8:5D:BC:74
Certificate issuer: /CN=eb554c44046c36439a919738942f31fa756b6911
Certificate serial: 0196F6EB8F676788CDE59FD5A0950A88FD37
Authority key identifier: EB:55:4C:44:04:6C:36:43:9A:91:97:38:94:2F:31:FA:75:6B:69:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/FtcuzKMMTKsG4IefMTUbvthdvHQ.roa
Signing time: Thu 22 May 2025 07:35:54 +0000
ROA not before: Thu 22 May 2025 07:35:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15682
IP address blocks: 212.74.233.0/24 maxlen: 24
212.74.237.0/24 maxlen: 24
212.74.240.0/21 maxlen: 21
2a01:5f40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/61VMRARsNkOakZc4lC8x-nVraRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/61VMRARsNkOakZc4lC8x-nVraRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 10:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f6:eb:8f:67:67:88:cd:e5:9f:d5:a0:95:0a:88:fd:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb554c44046c36439a919738942f31fa756b6911
Validity
Not Before: May 22 07:35:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16d72ecca30c4cab06e0879f31351bbed85dbc74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f7:ea:7d:a7:3c:5f:9e:7f:83:9c:ca:95:60:
74:56:19:c8:db:9a:48:25:5d:df:81:3f:cd:85:62:
25:ee:eb:db:f8:57:d4:02:70:50:c0:ec:72:14:5b:
c6:2c:d0:7a:9d:13:87:26:10:94:17:49:a9:b2:44:
8a:f7:79:45:ae:99:af:c0:76:7a:73:16:57:62:5f:
d2:c3:68:a5:ca:61:94:5e:b4:df:b4:83:48:42:7b:
1b:63:bc:b8:f2:da:54:5a:f9:79:c4:98:db:f2:c7:
43:e0:e5:97:68:23:59:db:10:d2:31:46:40:7e:f3:
29:79:51:bb:e9:7c:aa:5a:84:c1:7d:5e:5a:f0:be:
23:b5:ea:92:ee:93:9f:6a:f1:b7:c6:ca:f6:31:18:
e7:30:e1:31:09:fe:7c:a4:bc:45:55:86:77:fb:fc:
2b:33:bc:90:73:42:06:f9:f0:13:8e:db:6d:85:af:
69:23:88:c0:d3:5a:5e:67:23:24:72:b0:bc:fe:c6:
07:fe:b3:3b:17:e6:8a:e7:e4:c9:e0:bc:e4:32:14:
2b:5e:fb:d8:63:9c:58:d1:d5:fe:cc:65:bd:57:37:
b4:05:f0:e5:10:53:aa:44:10:28:32:fb:88:b3:61:
67:97:c3:4b:06:2e:ce:23:6a:01:fd:58:ca:2c:ef:
9c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D7:2E:CC:A3:0C:4C:AB:06:E0:87:9F:31:35:1B:BE:D8:5D:BC:74
X509v3 Authority Key Identifier:
keyid:EB:55:4C:44:04:6C:36:43:9A:91:97:38:94:2F:31:FA:75:6B:69:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61VMRARsNkOakZc4lC8x-nVraRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/FtcuzKMMTKsG4IefMTUbvthdvHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c547b8-99ab-42f1-a6cc-bc665bb21686/1/61VMRARsNkOakZc4lC8x-nVraRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.74.233.0/24
212.74.237.0/24
212.74.240.0/21
IPv6:
2a01:5f40::/32
Signature Algorithm: sha256WithRSAEncryption
55:77:ec:7f:3e:a3:64:a8:7f:b6:d7:fc:14:82:e8:66:e9:81:
7a:3b:9e:a1:1c:31:b8:bb:b7:47:3b:1b:b8:6c:84:c7:84:c8:
f6:74:7f:5c:22:9c:30:1c:d7:09:01:45:38:4d:1b:ec:5d:6d:
a3:76:90:2d:78:fe:a1:e7:8c:9a:3b:85:a3:70:ea:13:2c:97:
7f:6a:85:57:66:1a:e6:f3:9d:76:59:83:4d:17:ab:e1:2e:32:
9a:90:97:03:c5:c4:7e:b4:a5:b0:2b:16:55:2d:22:c6:e2:dd:
3a:4c:0f:3a:ed:a4:16:22:63:59:c5:7e:f4:fd:02:11:31:30:
11:60:6c:0d:f7:2f:5e:6f:0e:d9:60:69:96:bf:d1:e0:6f:be:
c6:13:95:30:d0:4e:ec:6b:e0:fe:e3:ab:dd:a8:00:7a:53:e2:
06:75:06:bd:6a:a3:a5:39:f2:c2:b6:30:45:85:c2:e6:60:66:
1e:68:2a:e6:9c:ba:a8:f6:43:86:92:bc:46:d3:35:d8:10:0e:
cb:34:61:c7:9e:75:25:3c:11:2b:5b:d0:8a:84:03:44:93:eb:
81:81:b4:60:56:d2:77:07:6f:95:4e:eb:ac:c4:92:ea:fa:6f:
e3:c5:90:e6:0f:fc:da:39:a6:1f:d1:e0:03:a7:ea:61:d8:63:
c7:e0:7a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:02:01 2025 by rpki-client