Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/NE51BlLQcM89_1a6SnNp_dkJJHw.roa
File: NE51BlLQcM89_1a6SnNp_dkJJHw.roa (raw, json)
Hash identifier: 3M/ZxeqGygKhrcxA0Be4mcKMhPixg6Emr+ItspEv4YM=
Subject key identifier: 34:4E:75:06:52:D0:70:CF:3D:FF:56:BA:4A:73:69:FD:D9:09:24:7C
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196D57D72D731FF1036C691DB591E940E02
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/NE51BlLQcM89_1a6SnNp_dkJJHw.roa
Signing time: Thu 15 May 2025 19:48:10 +0000
ROA not before: Thu 15 May 2025 19:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43641
IP address blocks: 151.243.245.0/24 maxlen: 24
151.245.5.0/24 maxlen: 24
151.245.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 20:42:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d5:7d:72:d7:31:ff:10:36:c6:91:db:59:1e:94:0e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 15 19:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=344e750652d070cf3dff56ba4a7369fdd909247c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:4d:ab:90:57:f6:df:79:dd:36:8e:08:c5:
9d:af:22:ec:b1:78:17:28:fa:9c:8a:e9:3f:12:5f:
7c:3e:a6:8c:25:9f:53:10:8a:5e:77:a6:c3:f0:75:
88:e3:4c:1f:1f:75:44:e6:b2:2b:cd:ee:69:f3:46:
b8:b9:47:51:d0:20:4b:73:28:b9:ac:1b:85:df:c7:
fc:b1:8b:0d:1a:be:74:90:5a:51:2c:b8:5c:0a:c8:
65:0b:ca:4b:bd:51:2c:fa:02:18:2d:4a:ff:4d:55:
e6:db:86:ff:92:eb:46:e7:3a:8b:44:44:6f:d1:cd:
c9:de:ea:b4:c8:d3:96:a4:90:70:a0:4b:26:64:01:
2f:5b:f6:4a:af:9d:f4:7a:27:cc:e5:a5:7b:5f:34:
9b:8d:3d:a2:5d:2b:64:8c:25:fe:03:3e:1a:10:2a:
2d:af:ce:e5:0a:c3:42:02:07:55:38:b4:c3:f4:c0:
8e:45:b9:2c:c4:3e:01:fc:fe:fb:2d:0a:56:5d:4f:
4f:f0:07:21:59:82:98:8b:53:dd:e7:4c:97:0b:16:
03:4d:8a:78:ad:87:8b:a3:ba:86:14:cb:a6:7f:a3:
f0:3d:b4:e2:06:f0:2a:53:af:b2:75:40:18:62:9e:
f7:9a:15:97:91:3d:d5:23:05:05:d7:86:47:8d:c4:
7d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4E:75:06:52:D0:70:CF:3D:FF:56:BA:4A:73:69:FD:D9:09:24:7C
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/NE51BlLQcM89_1a6SnNp_dkJJHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.243.245.0/24
151.245.5.0-151.245.6.255
Signature Algorithm: sha256WithRSAEncryption
33:7e:38:fe:f3:b2:6c:a5:ac:be:42:2d:16:5c:3d:0e:6c:ca:
64:b8:11:a6:c5:58:fb:0b:79:9e:ac:b6:6f:0f:35:e7:b7:2e:
e9:f7:b7:36:a9:6b:e8:1f:28:77:fe:37:fd:38:ba:2b:86:eb:
a9:cc:7c:50:c7:19:59:bf:17:95:27:8f:0d:1c:fb:6e:2a:82:
fe:fd:41:33:48:56:fd:96:a7:f5:1f:75:f5:ee:05:b5:0f:f1:
2f:ea:50:57:7f:04:f9:cb:ce:fd:3f:cc:a8:55:2a:dc:73:29:
1b:5e:72:53:3a:0c:0f:41:2a:4d:72:2f:03:65:b6:f1:39:14:
fe:1c:2b:c5:13:90:66:0a:f9:75:b0:48:d6:6c:7f:84:cd:22:
0d:07:b0:05:b3:89:18:83:62:69:fd:51:e0:1c:81:69:63:b3:
2b:2d:f5:f1:1c:a7:e7:90:d4:28:36:60:4e:70:34:80:8b:da:
b2:82:96:cd:6f:04:7a:87:39:0b:02:2c:61:c3:e2:fa:6f:62:
c5:70:d2:45:72:6e:9b:39:80:4d:bc:d4:2d:13:23:8c:e6:23:
28:af:7f:59:c4:02:0e:07:26:c4:a1:f5:a5:2e:9c:66:ce:d4:
54:8e:c2:6b:ce:ff:7b:a8:bc:dd:c7:0f:92:5e:87:90:64:d6:
ea:1f:84:c6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Jun 6 06:47:20 2025 by rpki-client