Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/GyrOML102J3dklHvs6i4-ryukzM.roa
File: GyrOML102J3dklHvs6i4-ryukzM.roa (raw, json)
Hash identifier: w27LbciA57M7CW5Uy7Qs9cwG7zpNpOAEhwMvYHcenEo=
Subject key identifier: 1B:2A:CE:30:BD:74:D8:9D:DD:92:51:EF:B3:A8:B8:FA:BC:AE:93:33
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 019A06F330B6090EA25C931053BDA08B61F7
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/GyrOML102J3dklHvs6i4-ryukzM.roa
Signing time: Tue 21 Oct 2025 13:26:32 +0000
ROA not before: Tue 21 Oct 2025 13:26:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 62.171.240.0/22 maxlen: 24
194.238.56.0/22 maxlen: 24
194.238.78.0/24 maxlen: 24
194.238.79.0/24 maxlen: 24
213.18.245.0/24 maxlen: 24
217.177.0.0/21 maxlen: 24
217.177.32.0/24 maxlen: 24
217.177.35.0/24 maxlen: 24
217.177.44.0/22 maxlen: 24
217.177.75.0/24 maxlen: 24
217.177.80.0/22 maxlen: 24
217.177.84.0/22 maxlen: 24
217.179.56.0/22 maxlen: 24
217.179.72.0/22 maxlen: 24
217.179.88.0/24 maxlen: 24
217.179.91.0/24 maxlen: 24
217.180.20.0/24 maxlen: 24
217.180.22.0/23 maxlen: 24
217.180.45.0/24 maxlen: 24
217.180.46.0/24 maxlen: 24
217.181.80.0/21 maxlen: 24
217.181.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.mft
rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:06:f3:30:b6:09:0e:a2:5c:93:10:53:bd:a0:8b:61:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Oct 21 13:26:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b2ace30bd74d89ddd9251efb3a8b8fabcae9333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b6:d4:a4:17:82:21:e4:57:25:00:60:3e:7e:
63:53:d7:91:27:2b:4f:bc:bd:9a:76:1a:27:1f:55:
15:56:d9:4d:b5:ed:a8:cd:a3:e9:6e:8d:07:8d:7a:
9a:f8:27:90:d8:b3:b9:f1:ee:0f:a2:a5:b1:04:d9:
f5:29:2a:3a:84:b3:04:e5:1d:2a:96:6b:15:6b:e5:
3e:72:fc:a9:6d:72:f4:b2:31:0b:8c:a1:d7:86:a0:
f5:27:9d:8a:eb:df:59:65:50:69:7c:b9:15:ef:3c:
67:0b:e0:b6:47:e6:27:85:bc:bf:ec:2a:b5:57:56:
5a:82:d4:21:aa:f1:86:6e:83:92:dc:4a:b9:99:86:
d1:a9:16:91:ab:b6:78:e9:44:f8:b2:67:62:43:99:
29:1e:ab:ef:7e:15:e9:59:6d:15:b6:d9:2a:ac:91:
a4:b0:34:81:0d:3f:6a:a8:75:9b:0e:b1:2e:2b:bb:
4a:9e:38:5c:3c:40:d3:a0:4a:53:0f:5f:aa:a1:72:
ee:dc:9e:0b:2e:49:ed:c1:79:21:0b:93:97:01:33:
6f:4b:a1:3c:dc:b5:a4:bf:86:d0:0b:7b:9f:b5:94:
34:38:23:3a:d0:a1:db:5f:b5:8e:25:ea:47:60:1b:
c0:99:fe:82:10:d6:63:7e:16:56:b7:e7:17:54:c4:
11:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2A:CE:30:BD:74:D8:9D:DD:92:51:EF:B3:A8:B8:FA:BC:AE:93:33
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/GyrOML102J3dklHvs6i4-ryukzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.240.0/22
194.238.56.0/22
194.238.78.0/23
213.18.245.0/24
217.177.0.0/21
217.177.32.0/24
217.177.35.0/24
217.177.44.0/22
217.177.75.0/24
217.177.80.0/21
217.179.56.0/22
217.179.72.0/22
217.179.88.0/24
217.179.91.0/24
217.180.20.0/24
217.180.22.0/23
217.180.45.0-217.180.46.255
217.181.80.0-217.181.91.255
Signature Algorithm: sha256WithRSAEncryption
46:19:c5:dc:a0:a2:cd:24:76:c4:cd:94:8d:e7:6f:af:48:25:
8f:6b:c3:f3:b7:95:f1:37:c8:81:9f:cb:1e:0f:93:a1:39:2b:
49:9f:fe:82:22:b3:c6:d8:66:e6:65:53:c7:8f:ce:11:39:95:
9d:34:86:f6:65:b0:e6:12:48:d9:27:bf:51:a1:91:87:8a:18:
34:4b:bf:44:2d:9d:01:00:0b:75:4a:96:ed:35:f7:d6:ea:93:
83:3a:9a:0c:15:8d:3d:a7:91:01:51:ea:73:c5:8b:aa:c0:64:
d5:dc:45:bb:1e:d7:36:0f:fe:34:bc:9b:2f:85:b1:87:8e:0d:
92:54:03:cf:6c:20:b8:48:08:cc:93:3e:ff:10:89:04:04:de:
fd:03:8d:6e:49:05:b4:be:1d:61:fd:f8:b4:01:66:5a:78:bc:
85:49:a5:3f:58:a9:d5:6b:40:fd:3f:7f:b0:fc:e0:5e:c2:2b:
a5:20:6f:ae:69:59:d9:f5:76:e2:7a:a1:bd:61:44:07:38:f4:
9b:14:e2:60:3b:eb:80:58:fe:3a:d6:73:91:97:dd:b6:68:29:
10:49:7f:b6:a8:5e:ee:f8:59:62:e4:e7:66:cb:b5:39:43:61:
3f:e9:32:72:f5:a2:86:41:ed:8b:38:b7:e9:81:39:69:09:cb:
6f:17:ca:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 16:01:58 2025 by rpki-client