Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YE98ZDTiq4aZvy4Z_sAYH1bfboQ.roa
File: YE98ZDTiq4aZvy4Z_sAYH1bfboQ.roa (raw, json)
Hash identifier: DDhD3Fwlu1ORtn+lN7JVmHu3PhtAu5XbEEmiRGrU8IU=
Subject key identifier: 60:4F:7C:64:34:E2:AB:86:99:BF:2E:19:FE:C0:18:1F:56:DF:6E:84
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0196CACB1A970877A9E87CF8691F006A56B0
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YE98ZDTiq4aZvy4Z_sAYH1bfboQ.roa
Signing time: Tue 13 May 2025 17:57:10 +0000
ROA not before: Tue 13 May 2025 17:57:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59642
IP address blocks: 81.29.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 21:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:cb:1a:97:08:77:a9:e8:7c:f8:69:1f:00:6a:56:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: May 13 17:57:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=604f7c6434e2ab8699bf2e19fec0181f56df6e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:68:6c:f1:1d:27:58:0e:85:db:c4:69:97:a6:
c0:39:97:aa:da:bb:3d:2a:b6:6c:6a:09:a3:7c:bb:
7e:dd:0b:30:33:37:3c:33:98:19:e6:63:4c:c6:4c:
c4:f4:9d:d2:50:06:02:f0:31:3d:75:fa:0f:72:ba:
54:dc:54:47:80:18:92:a1:b8:6f:f9:ba:12:13:94:
b0:03:fd:77:e5:d2:b3:f7:50:fd:3e:c1:04:6a:e6:
d6:79:39:40:8f:25:e7:d3:6e:89:e8:58:c9:89:47:
69:82:b0:34:aa:43:37:f8:0e:35:88:8a:7e:ad:1c:
6f:29:03:8f:25:45:3a:c6:69:8a:57:c9:59:c1:d1:
ae:76:3f:8d:fa:87:d4:a9:85:46:75:86:2f:2b:5f:
30:5e:94:b8:cf:67:c2:38:1d:aa:30:2a:c9:cc:55:
ce:2c:02:53:80:04:e8:d0:88:8c:32:e7:bc:b4:87:
fb:e8:f9:6a:7e:26:3f:aa:4f:b8:51:4e:f2:49:93:
a0:df:9d:9e:27:5f:7a:02:4f:69:59:50:0b:da:d6:
03:60:44:e6:ab:b1:a8:a7:93:ed:7f:27:a1:97:b0:
7c:cb:eb:f6:0b:b7:57:d0:0d:1a:fa:60:7c:99:95:
4c:ca:25:b3:6a:f2:f3:26:d0:f9:1c:a2:b9:1d:93:
87:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:4F:7C:64:34:E2:AB:86:99:BF:2E:19:FE:C0:18:1F:56:DF:6E:84
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/YE98ZDTiq4aZvy4Z_sAYH1bfboQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.157.0/24
Signature Algorithm: sha256WithRSAEncryption
41:39:ec:4f:93:88:4f:fb:30:35:4e:5a:ad:ce:0c:a9:e8:78:
d8:bc:fe:42:bb:2b:e1:1f:af:85:21:50:19:97:9c:c3:a4:14:
49:de:5e:bc:94:f2:ff:26:9b:c2:76:be:8f:37:96:76:3d:38:
b6:56:c2:be:75:00:54:09:b2:a2:0e:a8:f6:55:f7:fa:16:8b:
dc:f9:39:db:00:8c:f8:34:dd:96:fb:c4:aa:0b:29:43:6e:1d:
98:88:19:59:aa:9e:8e:fd:86:cb:ef:d8:ef:0e:88:0b:01:46:
dc:b0:28:e2:50:89:c7:3e:c2:68:de:19:e6:6d:2e:82:55:e8:
9b:52:19:90:ce:d2:cd:fe:ca:af:b4:d6:80:f6:20:5f:5a:94:
9b:0a:f6:eb:2c:e8:c3:a9:3d:ab:c5:d4:5a:78:47:94:b5:0f:
15:98:0f:28:ac:a7:68:cb:49:a4:ae:1e:b1:43:df:0b:d5:fc:
1e:53:fa:55:41:5a:3c:44:2f:51:15:54:39:e3:e4:45:d7:92:
33:93:b6:77:6d:b5:57:9d:1b:31:26:54:a5:03:0b:1c:3c:f9:
0f:b3:81:b7:ad:d4:22:09:3e:4b:c7:eb:92:16:35:81:6e:c5:
aa:63:52:87:89:27:a9:71:82:07:86:bd:5f:e1:ca:7c:75:23:
c4:36:09:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 06:04:22 2025 by rpki-client