Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/D_OPVvimajNIkdxddRCzEZyxV38.roa
File: D_OPVvimajNIkdxddRCzEZyxV38.roa (raw, json)
Hash identifier: ppja+zul0vsh+mpmNBN6d4rLEwyi9iHDDiod9WKUfTM=
Subject key identifier: 0F:F3:8F:56:F8:A6:6A:33:48:91:DC:5D:75:10:B3:11:9C:B1:57:7F
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 019707EB0FB1579B24D677274EAF2F083E8C
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/D_OPVvimajNIkdxddRCzEZyxV38.roa
Signing time: Sun 25 May 2025 14:48:54 +0000
ROA not before: Sun 25 May 2025 14:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198154
IP address blocks: 5.57.38.0/24 maxlen: 24
37.32.47.0/24 maxlen: 24
178.239.145.0/24 maxlen: 24
185.215.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:07:eb:0f:b1:57:9b:24:d6:77:27:4e:af:2f:08:3e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: May 25 14:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0ff38f56f8a66a334891dc5d7510b3119cb1577f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:cd:f6:26:43:9a:59:26:13:40:d1:80:e4:
16:c4:54:a0:5b:6d:e5:92:18:2d:af:d2:fe:38:62:
32:86:62:42:65:98:b9:cb:b5:c8:5b:b6:7b:1b:c2:
ed:98:f2:4e:b3:d3:f5:a0:b2:bf:f0:69:de:e3:4a:
c7:95:30:fd:55:d5:ec:b2:be:a3:95:e2:45:54:98:
c5:40:de:34:e4:e8:31:da:d8:99:5c:32:46:3c:51:
ec:dc:aa:5a:14:62:a4:24:c2:5d:b4:56:51:7b:8e:
ca:09:23:94:b7:2a:10:bf:11:db:23:70:a3:97:0d:
4e:18:e1:06:84:8b:04:8e:49:c0:f8:65:a4:6e:94:
66:d8:31:10:16:14:7d:26:f0:fc:13:c9:d2:d4:27:
bf:22:1a:33:50:76:06:3a:06:87:92:23:f0:a2:f9:
ea:cf:4a:ae:12:0a:0d:0b:00:79:c2:aa:ad:5f:fb:
f7:aa:7b:f8:ff:eb:41:cb:b8:41:72:f8:48:30:2a:
e4:9d:a1:d4:ee:cc:0d:27:64:06:0b:4d:8b:ac:0d:
e0:3b:0f:7b:a3:f7:27:61:eb:ef:e1:51:63:62:4d:
fd:26:45:d6:0a:8a:0a:94:22:9f:9b:64:6c:19:23:
7b:23:53:76:38:62:d9:48:88:e0:c4:9c:7c:6d:00:
63:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F3:8F:56:F8:A6:6A:33:48:91:DC:5D:75:10:B3:11:9C:B1:57:7F
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/D_OPVvimajNIkdxddRCzEZyxV38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.38.0/24
37.32.47.0/24
178.239.145.0/24
185.215.231.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a5:9f:cd:6f:12:58:8b:3d:c1:a4:39:54:fa:82:ae:2f:e8:
70:27:00:0f:30:7a:87:cd:14:fe:b4:e7:10:d7:45:b6:17:df:
ef:70:8a:94:ab:07:7e:61:65:ae:46:82:76:35:5c:03:99:2a:
72:88:a1:19:ed:24:6f:f7:1f:d6:8d:d3:e2:28:a9:c3:f7:30:
06:ee:0b:88:25:9a:45:32:73:c5:5f:f8:b6:ca:b1:28:ad:0d:
7f:8a:2b:93:94:fb:8a:6f:30:e9:54:d6:54:57:15:5e:44:8f:
37:d2:97:ef:3b:b4:c9:4b:e3:05:bc:35:64:c8:7b:34:ba:66:
96:bb:63:8c:db:b7:47:2e:43:97:cd:a7:e0:4f:c9:8b:31:b0:
fe:78:d7:a3:65:e4:73:d7:30:6b:c2:de:5b:00:b1:99:0b:fc:
d1:71:82:e3:1d:79:1d:8b:63:fa:06:da:72:c7:83:2a:96:82:
07:ce:96:1a:1a:b5:cf:40:84:be:28:14:1d:b4:bc:e1:e3:15:
57:4f:3f:52:0b:97:1e:f3:ef:a6:c0:9d:17:47:9b:a1:89:ab:
45:e6:70:5c:b4:a8:17:22:7d:71:28:41:b3:3d:d1:ce:fe:5e:
82:8f:7b:0e:7c:98:0c:8c:35:aa:a5:87:b4:54:88:7e:7c:48:
73:23:df:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 01:26:13 2025 by rpki-client