Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Jln9vjrjLuJk4qyFqo_ioS-0x_c.roa
File: Jln9vjrjLuJk4qyFqo_ioS-0x_c.roa (raw, json)
Hash identifier: 9/pmeJZ9XA2oL72al8j8YVdvuYXApTvVhTPmDxX8Tz4=
Subject key identifier: 26:59:FD:BE:3A:E3:2E:E2:64:E2:AC:85:AA:8F:E2:A1:2F:B4:C7:F7
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0198E4E5D8DA7B82D9CEABAA300B3BF7ECFB
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Jln9vjrjLuJk4qyFqo_ioS-0x_c.roa
Signing time: Tue 26 Aug 2025 05:42:05 +0000
ROA not before: Tue 26 Aug 2025 05:42:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30058
IP address blocks: 151.244.0.0/24 maxlen: 24
151.244.186.0/24 maxlen: 24
151.247.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Sep 2025 13:03:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:e4:e5:d8:da:7b:82:d9:ce:ab:aa:30:0b:3b:f7:ec:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Aug 26 05:42:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2659fdbe3ae32ee264e2ac85aa8fe2a12fb4c7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:85:68:65:6f:04:e3:84:88:b0:40:b6:fc:3a:
de:c2:73:ce:fc:8d:e5:e7:fa:15:ba:6c:c2:83:d7:
cb:48:4c:6b:60:e7:b3:43:50:dd:74:10:db:45:19:
16:89:b9:73:fe:a4:dd:e3:a7:18:6f:a0:85:7e:51:
36:a5:cb:45:57:11:d7:11:39:25:54:20:ae:a3:2c:
f6:d7:7a:0a:85:c0:80:14:8e:25:ec:b8:f1:77:6b:
7d:05:92:0f:71:79:48:d6:6d:d0:a5:7e:73:d4:4d:
8d:97:76:94:a6:c0:2a:80:ce:f5:b8:2d:a6:de:e6:
66:10:79:4b:7d:7d:c0:e7:56:b2:1c:1d:c3:56:e8:
f2:23:97:a1:9f:8e:89:51:25:85:f7:a6:29:d5:d6:
53:8d:46:cd:8d:6e:ea:c4:f9:04:87:34:b6:7c:6b:
a1:d9:84:b1:1f:eb:3e:72:06:b6:65:64:7d:1e:6b:
39:92:82:d1:58:4f:8f:15:2d:31:2e:5c:38:16:f5:
4a:85:a6:28:3c:9d:88:48:4e:9a:42:2b:cd:96:4e:
fe:5a:f1:c6:2d:a6:98:51:74:3a:8c:d4:9f:c7:ab:
b5:f6:d9:23:99:74:64:73:6a:fd:82:99:73:36:92:
61:3a:69:b0:75:58:76:28:b9:d6:b9:e7:3d:2e:df:
f8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:59:FD:BE:3A:E3:2E:E2:64:E2:AC:85:AA:8F:E2:A1:2F:B4:C7:F7
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/Jln9vjrjLuJk4qyFqo_ioS-0x_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.244.0.0/24
151.244.186.0/24
151.247.129.0/24
Signature Algorithm: sha256WithRSAEncryption
62:a9:e1:7c:cd:df:77:15:8b:8b:bc:7e:e7:af:23:de:6a:50:
7c:e9:0a:2c:08:7f:2e:d3:36:5e:43:63:99:81:5a:01:0c:41:
bc:ee:6b:7c:06:e2:93:57:65:d8:48:7c:b8:0d:27:fa:f4:df:
6b:bc:78:5e:23:f8:3f:a5:fa:22:0b:74:a4:02:23:2a:4c:66:
15:9a:fc:8b:87:ba:1d:76:f4:16:8d:f5:05:ee:9c:16:f1:52:
68:d2:a0:d4:c9:a6:d7:38:f9:ad:8c:fb:0b:1e:3b:9d:79:ad:
2a:90:91:f1:73:55:9b:3c:f1:c6:24:9a:6e:d0:6f:f8:ae:97:
c6:ea:d9:97:8b:30:03:5c:9e:2b:80:2d:f4:a1:d8:ac:36:53:
ac:de:c5:eb:8f:81:d9:ec:ef:2b:03:a5:a3:4b:86:da:31:e3:
79:fd:19:35:68:9f:d9:ba:15:69:d3:90:79:1b:51:ed:bb:19:
e9:a2:90:1e:de:40:5f:7a:fa:6c:38:54:50:48:37:dc:5c:56:
6e:76:a9:70:30:fa:5d:68:9e:e6:1c:7a:93:53:73:b6:3b:25:
cc:fb:e9:87:50:f0:cd:d6:e7:5d:dc:dd:07:6c:e9:6d:b3:22:
75:06:ab:f3:fb:55:a1:8b:d3:cc:b3:f8:7d:4a:b9:23:08:d8:
65:21:32:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:36:55 2025 by rpki-client