Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/ceoybuXlQ3WBZEFv3SPqIdLZ-oY.roa
File: ceoybuXlQ3WBZEFv3SPqIdLZ-oY.roa (raw, json)
Hash identifier: vo1hQ6j3PLPi60vs7fMThg1KentqZj8Uvxrpo64hJVA=
Subject key identifier: 71:EA:32:6E:E5:E5:43:75:81:64:41:6F:DD:23:EA:21:D2:D9:FA:86
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 01991A38A568678EC42453EFE5F30F1FF983
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/ceoybuXlQ3WBZEFv3SPqIdLZ-oY.roa
Signing time: Fri 05 Sep 2025 14:12:23 +0000
ROA not before: Fri 05 Sep 2025 14:12:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206300
IP address blocks: 212.100.170.0/24 maxlen: 24
212.100.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 11:14:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1a:38:a5:68:67:8e:c4:24:53:ef:e5:f3:0f:1f:f9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Sep 5 14:12:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=71ea326ee5e543758164416fdd23ea21d2d9fa86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3d:98:e6:55:53:97:e6:4a:ba:c6:de:05:8e:
aa:9e:fb:12:87:3f:48:23:1c:fe:c9:e2:d8:63:d6:
05:73:66:58:88:ee:1d:c2:e4:62:09:59:66:ef:a4:
a1:90:a9:94:68:38:b1:7b:10:74:de:95:12:80:97:
99:f5:b4:d4:96:da:6b:5c:f1:81:83:aa:ac:f4:a5:
c3:18:b0:88:ae:dd:57:0e:62:6c:8c:43:3b:3c:97:
3b:1a:5e:25:e6:6b:1c:e4:f2:23:b9:ce:1c:e9:71:
dc:48:53:aa:c4:82:3c:f4:8a:e9:85:03:71:cb:83:
4a:98:06:6d:ac:21:dc:40:b6:ee:74:af:7b:d5:b5:
c4:ed:e8:ee:7a:62:82:71:b7:07:c0:13:9b:a3:ec:
09:94:75:28:aa:e6:d1:16:c6:a7:f9:c1:5c:c4:be:
6f:2e:e5:ec:47:fd:16:58:db:be:80:ae:f8:39:5d:
ca:76:ce:e9:4d:0c:a9:4f:fd:d4:47:02:10:72:34:
52:27:f8:44:52:cf:e5:2a:bf:3c:b0:31:7e:75:fb:
06:58:6d:1f:ae:c6:1f:1e:10:a8:e7:3c:28:b6:a6:
03:74:8e:4a:3d:2e:cf:12:d0:78:ec:ab:df:2f:61:
d9:62:b9:99:00:d4:71:15:54:18:31:c1:ef:79:ba:
9f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EA:32:6E:E5:E5:43:75:81:64:41:6F:DD:23:EA:21:D2:D9:FA:86
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/ceoybuXlQ3WBZEFv3SPqIdLZ-oY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.100.170.0/24
212.100.174.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d6:58:ba:61:f1:6c:e3:40:7e:3b:74:6c:83:a1:23:85:da:
1f:b1:e5:dc:bb:57:f1:c4:57:30:42:43:32:74:0c:f3:e9:18:
b0:2c:3a:d2:a7:6b:25:02:0d:7f:43:1d:e2:06:6f:71:dc:d1:
e8:57:20:56:84:4c:56:d7:79:1b:da:02:4c:3f:a7:fc:6e:e7:
03:90:56:46:8b:03:62:b8:b9:89:86:29:34:d5:27:a4:46:2d:
c1:a5:76:db:6a:d0:6b:f3:7c:ed:ca:b7:df:de:6e:92:a5:19:
76:08:95:3e:6e:ad:90:94:12:65:22:41:16:4a:71:b7:c6:ae:
53:f5:da:0b:13:29:11:1d:3d:a5:02:d8:1a:03:4b:c4:f9:f4:
6c:22:43:0f:99:25:1b:7d:cf:5c:be:af:97:7e:8e:51:ff:90:
cd:ad:f7:45:58:0a:b2:0f:83:39:fc:93:53:a0:05:66:3e:c1:
f5:4a:cf:9e:cf:8a:7a:80:4a:43:0c:6c:7a:d9:dc:99:a7:4a:
cc:44:ab:47:a9:79:7d:b0:39:d7:cf:d6:72:d6:49:76:ca:42:
c6:94:33:c6:87:62:5e:81:6f:93:0f:1c:c9:88:33:ca:1f:45:
62:84:3d:a9:9c:29:43:00:fa:85:8e:91:64:05:d8:ed:0e:c8:
a6:f4:16:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 20:13:01 2025 by rpki-client