Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/dHqraQM0J28TwBZI9kOV-wg_Nys.roa
File: dHqraQM0J28TwBZI9kOV-wg_Nys.roa (raw, json)
Hash identifier: 9SP50kXHayfJ5rdM97ecdGjoNLOBx7zfNbIDZBfMyaE=
Subject key identifier: 74:7A:AB:69:03:34:27:6F:13:C0:16:48:F6:43:95:FB:08:3F:37:2B
Certificate issuer: /CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c
Certificate serial: 0196E2810CE6A735683604971717AB8DB0B5
Authority key identifier: BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/dHqraQM0J28TwBZI9kOV-wg_Nys.roa
Signing time: Sun 18 May 2025 08:27:10 +0000
ROA not before: Sun 18 May 2025 08:27:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57241
IP address blocks: 185.82.180.0/22 maxlen: 22
185.82.180.0/23 maxlen: 23
185.82.180.0/24 maxlen: 24
185.82.181.0/24 maxlen: 24
185.82.182.0/23 maxlen: 23
185.82.182.0/24 maxlen: 24
185.82.183.0/24 maxlen: 24
212.1.192.0/21 maxlen: 21
212.1.192.0/22 maxlen: 22
212.1.192.0/23 maxlen: 23
212.1.192.0/24 maxlen: 24
212.1.193.0/24 maxlen: 24
212.1.194.0/23 maxlen: 23
212.1.194.0/24 maxlen: 24
212.1.195.0/24 maxlen: 24
212.1.196.0/22 maxlen: 22
212.1.196.0/23 maxlen: 23
212.1.196.0/24 maxlen: 24
212.1.197.0/24 maxlen: 24
212.1.198.0/23 maxlen: 23
212.1.198.0/24 maxlen: 24
212.1.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft
rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e2:81:0c:e6:a7:35:68:36:04:97:17:17:ab:8d:b0:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c
Validity
Not Before: May 18 08:27:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=747aab690334276f13c01648f64395fb083f372b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9b:b8:a5:03:77:19:1f:46:ff:02:db:13:ca:
35:9b:c8:2a:db:95:8e:c6:a5:dc:92:13:5b:00:75:
a2:66:53:c5:9a:a0:8c:d1:0b:46:3f:b5:d2:10:c5:
29:10:17:7d:1e:0a:5d:0e:86:a2:8f:99:b8:04:19:
37:9b:98:00:93:40:df:0e:f5:d1:a9:72:18:c9:d7:
93:3b:c5:d6:d0:03:b4:8b:ed:ce:6f:40:fb:85:c7:
9f:47:f1:09:00:31:0d:12:78:e9:7e:e7:91:54:1c:
e8:f8:8d:ac:fe:3f:51:4a:d4:42:86:bf:83:ce:f0:
af:32:71:88:d6:99:4f:01:91:d2:51:41:28:b5:0b:
c4:8c:30:9b:ac:d3:db:68:dc:22:ef:a7:f8:2d:c5:
42:70:f8:f3:ab:ea:28:19:60:c8:c9:3e:87:d4:f4:
8c:ee:95:c0:cc:b3:3b:bd:99:d3:34:12:db:47:e8:
29:23:58:a1:69:d9:8a:16:32:17:68:43:95:f1:cd:
a8:91:b7:06:21:7c:da:36:42:e3:c1:20:03:29:2b:
33:b6:65:85:7e:79:29:92:8d:bc:cb:ea:43:2f:65:
8f:06:3e:74:da:77:ad:37:bb:3e:26:49:af:a5:f0:
ec:41:16:5a:d7:48:33:0f:6e:33:79:6a:ed:2a:a1:
cd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7A:AB:69:03:34:27:6F:13:C0:16:48:F6:43:95:FB:08:3F:37:2B
X509v3 Authority Key Identifier:
keyid:BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/dHqraQM0J28TwBZI9kOV-wg_Nys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.180.0/22
212.1.192.0/21
Signature Algorithm: sha256WithRSAEncryption
95:f9:0d:14:46:de:bd:4f:7e:d1:a1:4c:17:b3:21:c0:cd:a4:
71:a1:4b:2d:85:36:61:55:b1:2a:a0:63:2d:40:8c:18:57:cf:
68:52:c8:e9:4f:38:a4:4a:e7:38:71:12:38:e5:73:eb:75:62:
83:8d:10:ee:ad:1d:c3:c4:1a:eb:68:25:1d:44:4f:ac:08:ff:
ad:66:c5:90:98:3d:b1:19:20:39:79:78:fe:d4:cd:a0:39:34:
3b:6a:15:76:7e:22:10:07:86:f8:38:fe:0f:2c:24:36:0f:d0:
9b:f4:9a:be:92:b5:10:d8:c8:6e:36:ec:42:94:46:43:d5:6a:
ac:c5:04:e5:53:60:57:8a:ab:52:c0:a9:4b:a1:3b:fb:09:6f:
4c:63:4c:eb:1a:93:60:ea:fe:41:de:ab:5e:fb:0d:89:7f:6f:
15:20:b0:4a:70:6b:59:73:cf:f2:5e:95:b7:40:22:f0:7a:4e:
33:1e:47:fe:07:72:eb:be:95:e4:2e:d3:1a:ed:0f:c6:ff:aa:
f1:da:ba:66:aa:01:0c:74:d6:04:61:09:c2:f6:ce:92:31:47:
04:b8:36:bc:74:4a:ab:4f:14:5f:bd:8d:a9:b0:d5:22:f3:b4:
20:5f:96:c6:7b:b7:5e:5a:28:c2:ba:de:25:e8:56:0d:55:5f:
58:71:3a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:41:56 2025 by rpki-client