Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/d33ce0-69a0-4ba3-b3c9-998278f4fbb2/1/8F0Ve4qemfIe74knbJ2BWzh49o4.roa
File: 8F0Ve4qemfIe74knbJ2BWzh49o4.roa (raw, json)
Hash identifier: Z4/lQ0XEn+vbvsuIA+z8T81D+e9ljwjUFKwHut4Xj9k=
Subject key identifier: F0:5D:15:7B:8A:9E:99:F2:1E:EF:89:27:6C:9D:81:5B:38:78:F6:8E
Certificate issuer: /CN=93b76ac9f7a84ad790ad57c880bc9f862ad4c9e7
Certificate serial: 019716B5AF7B7547BB51C9AEF7E6F46B215D
Authority key identifier: 93:B7:6A:C9:F7:A8:4A:D7:90:AD:57:C8:80:BC:9F:86:2A:D4:C9:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7dqyfeoSteQrVfIgLyfhirUyec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/d33ce0-69a0-4ba3-b3c9-998278f4fbb2/1/8F0Ve4qemfIe74knbJ2BWzh49o4.roa
Signing time: Wed 28 May 2025 11:44:54 +0000
ROA not before: Wed 28 May 2025 11:44:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 393559
IP address blocks: 94.136.240.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/d33ce0-69a0-4ba3-b3c9-998278f4fbb2/1/k7dqyfeoSteQrVfIgLyfhirUyec.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/d33ce0-69a0-4ba3-b3c9-998278f4fbb2/1/k7dqyfeoSteQrVfIgLyfhirUyec.mft
rsync://rpki.ripe.net/repository/DEFAULT/k7dqyfeoSteQrVfIgLyfhirUyec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:16:b5:af:7b:75:47:bb:51:c9:ae:f7:e6:f4:6b:21:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b76ac9f7a84ad790ad57c880bc9f862ad4c9e7
Validity
Not Before: May 28 11:44:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f05d157b8a9e99f21eef89276c9d815b3878f68e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b8:dc:47:dc:f1:df:63:fc:db:47:90:b5:9f:
0f:64:0d:ae:42:a5:a2:8f:23:ce:6b:5b:36:aa:ad:
a0:cd:ef:a4:43:a4:b7:08:40:19:77:c9:a1:b2:6c:
79:79:8a:ad:42:b7:0b:9e:2d:5f:b8:7b:13:f0:41:
e9:41:31:52:94:72:e6:c5:b9:09:f4:14:c5:7e:74:
83:70:69:c1:90:95:4c:a1:15:d0:ee:3b:07:57:aa:
3a:39:7f:31:fb:9f:b2:d6:25:d6:a5:5c:69:b9:2c:
2d:28:3e:4a:8b:85:37:dd:8a:27:7e:4c:7d:1d:b2:
b0:78:a7:23:81:42:3b:6f:79:15:f1:e4:ee:b6:19:
ec:23:63:5a:ad:62:ce:dc:5c:7b:9e:02:72:cd:09:
1c:be:8f:8f:ff:88:67:ed:ee:43:e3:af:c4:9f:e9:
de:36:e0:44:aa:17:b4:a5:b6:71:e8:49:e8:93:e5:
92:6c:3f:7a:0b:13:50:70:c7:df:ab:09:66:d5:1b:
ae:63:8e:58:f2:a3:a1:21:44:7f:a1:59:03:05:3f:
47:70:ec:6c:c1:f3:66:86:d5:1d:36:f6:7a:15:7f:
60:18:b9:35:8d:9c:5c:a2:0c:23:19:f5:f6:ec:84:
6b:6e:97:12:d3:12:17:41:e9:7d:d4:b2:06:04:02:
ec:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:5D:15:7B:8A:9E:99:F2:1E:EF:89:27:6C:9D:81:5B:38:78:F6:8E
X509v3 Authority Key Identifier:
keyid:93:B7:6A:C9:F7:A8:4A:D7:90:AD:57:C8:80:BC:9F:86:2A:D4:C9:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7dqyfeoSteQrVfIgLyfhirUyec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/d33ce0-69a0-4ba3-b3c9-998278f4fbb2/1/8F0Ve4qemfIe74knbJ2BWzh49o4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/d33ce0-69a0-4ba3-b3c9-998278f4fbb2/1/k7dqyfeoSteQrVfIgLyfhirUyec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.136.240.0/22
Signature Algorithm: sha256WithRSAEncryption
02:a4:32:78:65:13:ff:73:83:13:45:2b:d3:1d:54:3c:d2:76:
28:d1:c1:d0:a3:b0:84:98:a5:9e:5d:2a:f4:1a:49:7a:37:95:
32:98:c8:41:de:29:25:dc:f2:06:71:c0:f6:5e:ca:e7:ff:51:
51:4c:4a:8d:4b:c9:5d:65:88:51:83:d9:60:a3:44:72:b9:bd:
a7:f8:ae:38:c8:a2:87:78:76:43:40:f5:da:88:cc:d3:65:79:
eb:bd:ad:ea:59:02:02:3e:8c:43:21:9d:71:ce:a1:b7:80:6f:
e0:8a:cd:d3:29:25:25:49:ba:9d:8e:d7:ab:b6:ac:95:dd:f8:
dd:f8:a8:35:f6:bf:8d:bb:60:ef:3c:0d:5a:6d:b7:31:01:41:
e4:ed:f2:13:ed:80:1d:e4:e2:37:cc:62:d2:55:72:0d:32:79:
04:ca:d6:31:ce:f8:10:09:fa:2d:21:e8:7e:df:a9:bd:e1:02:
85:49:6c:1c:ae:15:e9:35:31:01:d2:18:b2:7e:5c:f3:40:97:
bb:3c:80:b6:0a:c2:74:88:b1:62:94:91:a2:fc:6d:81:26:f2:
e6:1c:1d:a7:01:5d:4a:51:0b:38:1e:cc:5c:02:d0:ad:75:a5:
4a:57:42:5a:9d:1e:ef:83:0a:2e:0a:7a:c5:e9:eb:1c:f2:39:
73:7f:a7:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 13:34:20 2025 by rpki-client