Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/ImgvJz4_mDjqxdrfNbxhGYCKGu0.roa
File: ImgvJz4_mDjqxdrfNbxhGYCKGu0.roa (raw, json)
Hash identifier: /y4sZGaV5lW/RKRkRNk7SmLLY+Y8ezjiodQM42Rpemo=
Subject key identifier: 22:68:2F:27:3E:3F:98:38:EA:C5:DA:DF:35:BC:61:19:80:8A:1A:ED
Certificate issuer: /CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Certificate serial: 019716B3DA4F934694F297FD82ACB76CEED2
Authority key identifier: E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/ImgvJz4_mDjqxdrfNbxhGYCKGu0.roa
Signing time: Wed 28 May 2025 11:42:54 +0000
ROA not before: Wed 28 May 2025 11:42:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8374
IP address blocks: 5.172.224.0/19 maxlen: 19
31.0.0.0/16 maxlen: 16
37.98.208.0/20 maxlen: 20
37.109.0.0/16 maxlen: 16
37.152.16.0/20 maxlen: 20
37.247.128.0/17 maxlen: 17
37.247.241.0/28 maxlen: 28
37.248.0.0/16 maxlen: 16
46.76.0.0/15 maxlen: 15
78.30.64.0/18 maxlen: 18
87.251.224.0/19 maxlen: 19
92.60.128.0/20 maxlen: 20
185.4.212.0/22 maxlen: 22
188.125.32.0/19 maxlen: 19
193.41.112.0/23 maxlen: 23
212.2.96.0/19 maxlen: 19
2a01:2e0::/28 maxlen: 28
2a01:bb80::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:16:b3:da:4f:93:46:94:f2:97:fd:82:ac:b7:6c:ee:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Validity
Not Before: May 28 11:42:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=22682f273e3f9838eac5dadf35bc6119808a1aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c0:13:84:7e:d0:99:77:44:89:48:c5:28:76:
e2:f3:1e:42:44:c5:3e:bb:2f:c8:57:17:03:27:95:
a1:e5:af:b1:37:e0:23:49:2b:5c:9e:86:6e:d2:d7:
c6:6d:0a:4b:a8:1c:ee:3d:be:e8:45:02:b3:0f:03:
9b:c2:68:69:bb:cf:32:5a:30:6c:3f:ad:c8:9a:27:
7f:b7:97:62:f3:02:fa:0d:10:b5:9c:94:b6:21:cd:
92:79:9c:66:f3:a9:64:38:bc:bd:6c:6a:56:31:46:
51:dd:79:43:19:c2:a6:23:09:0a:44:d5:6a:80:50:
2b:51:7c:53:23:5a:bb:ce:f6:67:ab:a7:4a:ac:7b:
89:c0:5c:a0:12:77:a6:41:82:f3:fd:e1:d7:85:77:
ed:9a:e4:0e:2c:b7:e2:64:5b:f2:54:ed:3a:38:39:
43:96:9c:a5:d2:51:68:3f:15:fd:49:22:ad:78:7f:
0b:01:c8:17:5d:ef:9d:00:89:63:4e:3a:aa:1f:97:
db:30:a0:b4:f7:2a:7a:31:21:44:e3:9e:7c:5e:ca:
b3:1c:a6:58:82:af:65:00:99:0c:5f:17:2d:62:36:
1e:3d:88:62:9b:33:ed:5c:71:fb:5f:1b:2f:df:58:
f0:b5:f8:a5:3a:69:16:23:f8:42:5f:d5:38:e0:c1:
5f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:68:2F:27:3E:3F:98:38:EA:C5:DA:DF:35:BC:61:19:80:8A:1A:ED
X509v3 Authority Key Identifier:
keyid:E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/ImgvJz4_mDjqxdrfNbxhGYCKGu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.224.0/19
31.0.0.0/16
37.98.208.0/20
37.109.0.0/16
37.152.16.0/20
37.247.128.0-37.248.255.255
46.76.0.0/15
78.30.64.0/18
87.251.224.0/19
92.60.128.0/20
185.4.212.0/22
188.125.32.0/19
193.41.112.0/23
212.2.96.0/19
IPv6:
2a01:2e0::/28
2a01:bb80::/32
Signature Algorithm: sha256WithRSAEncryption
24:4b:e7:90:71:2b:e8:31:e9:b9:1d:43:be:66:07:fc:7e:0a:
d1:09:06:49:1c:f8:f8:1a:18:dc:a0:9a:38:6a:03:a1:66:dc:
e4:c6:ba:b6:f9:74:fa:47:e2:14:2b:3f:9a:fa:ac:b6:77:8e:
dc:05:26:a1:32:93:51:09:06:f0:a1:5b:d3:c6:04:7a:b0:58:
6d:04:8f:ac:b6:a9:a7:9c:56:2c:6e:84:48:d2:9a:ba:8c:de:
bd:80:a4:f0:69:b2:2e:21:c5:e4:9a:67:38:a8:de:32:98:19:
63:4e:18:e2:b6:95:ad:b2:29:aa:19:88:8d:c0:13:b1:82:0a:
40:f8:2e:41:d0:1c:43:5d:7d:5c:53:28:e3:bc:ba:b7:60:46:
f6:e0:b7:27:86:da:88:68:c4:a7:e5:dd:b4:22:e5:a2:89:07:
03:cf:63:e4:53:89:0b:ae:9e:37:89:88:c3:2d:de:fc:ac:b9:
0c:79:39:e7:9f:85:a4:7a:f0:3f:b1:89:40:ab:91:41:1b:a8:
ef:fd:0d:f7:2e:ea:24:6e:a1:70:f0:98:ca:1a:98:ca:85:5f:
de:81:4b:31:a7:b0:db:3a:ff:2d:ba:6a:b8:a3:64:45:1e:9c:
7f:9e:7f:64:1f:dc:19:80:f3:ea:34:cb:62:ad:64:ec:ba:99:
f7:d0:1e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:58:40 2025 by rpki-client