Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/CyIPGIrlqcoByOmlmEv79O0R7X0.roa
File: CyIPGIrlqcoByOmlmEv79O0R7X0.roa (raw, json)
Hash identifier: VsM4lVpD4fIP5GlqXuHNJVTXy3FeCIeYwJjMGGWmXmo=
Subject key identifier: 0B:22:0F:18:8A:E5:A9:CA:01:C8:E9:A5:98:4B:FB:F4:ED:11:ED:7D
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0196FCAE7935175B5920B966C14B861D027D
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/CyIPGIrlqcoByOmlmEv79O0R7X0.roa
Signing time: Fri 23 May 2025 10:26:54 +0000
ROA not before: Fri 23 May 2025 10:26:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137517
IP address blocks: 194.247.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:fc:ae:79:35:17:5b:59:20:b9:66:c1:4b:86:1d:02:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: May 23 10:26:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0b220f188ae5a9ca01c8e9a5984bfbf4ed11ed7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:97:e7:9a:a8:50:a7:c4:1b:56:5e:4c:ba:05:
3e:38:4b:49:57:a2:6c:e7:ab:71:d6:3f:31:7b:dd:
e3:0b:3c:b4:08:f0:d6:a7:a8:23:05:09:d7:e6:28:
29:74:b5:17:72:d2:f8:d3:af:39:cd:75:43:fe:c3:
cb:fd:8f:f3:af:05:90:2e:96:03:9d:af:05:f1:f1:
4d:91:08:89:e0:7a:71:e5:9a:10:71:99:26:48:15:
9c:d9:aa:3b:a4:c8:01:cb:ab:64:6d:37:48:3a:a6:
6e:7f:09:17:53:43:02:0b:e4:ac:2f:e1:63:29:6a:
e6:2d:f2:cc:c8:85:a0:7a:50:59:0b:a7:95:15:c4:
fb:33:47:4a:5a:e4:3a:3c:be:91:25:e2:7f:86:c3:
5d:8d:8a:df:80:85:5d:d8:07:62:a3:55:f2:34:f2:
78:e9:86:e0:21:fd:b8:f2:c5:d9:74:50:32:35:02:
da:9c:76:03:aa:3e:1a:c0:c8:ce:3c:41:cb:f9:4a:
6f:70:4a:11:f8:3b:0e:53:cb:dc:bb:7d:d8:42:09:
bf:3d:25:f0:0f:b8:16:ce:be:9d:00:db:9a:e6:7f:
eb:eb:39:dc:e0:e0:6d:78:cf:9e:16:6e:1e:6d:a7:
e5:bb:2c:6e:0f:23:5e:b8:4f:ce:3f:c2:1e:b4:12:
34:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:22:0F:18:8A:E5:A9:CA:01:C8:E9:A5:98:4B:FB:F4:ED:11:ED:7D
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/CyIPGIrlqcoByOmlmEv79O0R7X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.45.0/24
Signature Algorithm: sha256WithRSAEncryption
17:d6:65:41:ea:4f:a2:0e:c6:b1:9e:93:25:c0:78:e6:fc:52:
55:ed:1f:78:21:fb:6f:f4:cb:2f:2c:98:2a:62:93:4f:98:77:
49:3c:22:ee:1e:28:98:99:98:fb:3c:55:df:e7:24:c2:58:38:
2e:5b:e4:1d:e2:6d:4b:bd:a6:cb:05:26:eb:52:68:e2:f2:89:
29:a8:96:7a:e0:8d:4b:10:51:5a:66:e6:3f:3c:5c:a9:e0:87:
95:3f:25:86:21:30:40:26:55:42:32:cc:61:c7:63:4d:3d:e7:
69:e6:1f:f8:2d:87:4d:0f:ba:e7:c3:49:10:fd:97:39:e4:8b:
59:f7:0c:35:c8:c4:e7:c1:1a:d1:fd:89:3c:c6:0d:49:68:a2:
2f:e6:aa:d4:30:79:e7:58:27:06:fc:7c:3e:95:c2:7e:8c:05:
a4:69:b9:34:e9:68:27:71:f1:90:97:c9:6e:4a:80:dc:2e:02:
f5:58:3f:17:0f:60:22:0d:c5:29:c3:8c:6d:55:5e:2e:fe:da:
9f:de:24:cc:e6:42:97:e7:f1:29:22:5c:ef:1c:c6:2a:41:84:
ab:55:eb:9f:50:a2:7a:d9:d6:75:4d:44:c2:e4:bc:3c:fc:d4:
e3:14:77:07:a7:01:c5:09:78:6f:01:ee:79:7f:05:0f:d4:f2:
51:cb:a7:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:28:42 2025 by rpki-client