Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1564-3466-4732-83bd-b90d974e5fb5/1/LPoSWmH9lMAQGTklM5DJIT-hXL8.roa
File: LPoSWmH9lMAQGTklM5DJIT-hXL8.roa (raw, json)
Hash identifier: TOrMsZzQDuOs5c3iwWnYNm18JhvhdddP0HuUPukBsu0=
Subject key identifier: 2C:FA:12:5A:61:FD:94:C0:10:19:39:25:33:90:C9:21:3F:A1:5C:BF
Certificate issuer: /CN=644ca1f90518d4253f325947d7f32db78721647c
Certificate serial: 0196F2DD572BA3316C525B715AD58CFD51E5
Authority key identifier: 64:4C:A1:F9:05:18:D4:25:3F:32:59:47:D7:F3:2D:B7:87:21:64:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZEyh-QUY1CU_MllH1_Mtt4chZHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1564-3466-4732-83bd-b90d974e5fb5/1/LPoSWmH9lMAQGTklM5DJIT-hXL8.roa
Signing time: Wed 21 May 2025 12:41:54 +0000
ROA not before: Wed 21 May 2025 12:41:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210031
IP address blocks: 185.245.50.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1564-3466-4732-83bd-b90d974e5fb5/1/ZEyh-QUY1CU_MllH1_Mtt4chZHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1564-3466-4732-83bd-b90d974e5fb5/1/ZEyh-QUY1CU_MllH1_Mtt4chZHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZEyh-QUY1CU_MllH1_Mtt4chZHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 10:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f2:dd:57:2b:a3:31:6c:52:5b:71:5a:d5:8c:fd:51:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644ca1f90518d4253f325947d7f32db78721647c
Validity
Not Before: May 21 12:41:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2cfa125a61fd94c0101939253390c9213fa15cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:88:85:b4:8a:45:8b:75:a5:63:77:97:56:7b:
6f:cf:31:b2:90:de:8a:78:84:3e:51:78:b1:ab:55:
86:ed:b7:1f:29:08:5c:4f:d1:2d:d0:82:3d:c2:30:
24:f9:0a:4e:b6:86:bc:3a:8c:49:3e:21:82:2c:0d:
99:9f:3d:8f:a5:15:e8:bd:3c:f4:4a:74:c2:7f:7b:
33:4d:29:0e:b7:ca:f2:95:15:fa:05:82:ac:1b:b4:
56:d1:9c:81:34:98:f5:5a:d4:bd:7f:a1:d0:a7:4b:
80:83:35:6f:ee:6e:6d:8d:1a:0a:a4:b2:48:45:8c:
3b:4e:4f:bb:1f:a3:d7:bd:cf:16:42:83:87:30:d0:
c7:95:c6:7c:5c:75:43:e2:1c:4f:8f:35:7a:e7:eb:
78:04:ba:18:5d:76:fd:33:d3:3f:49:70:8a:d4:f7:
50:52:86:8b:45:0d:93:2a:ab:99:47:b4:17:9d:3a:
a7:d5:bf:06:be:0b:69:55:c1:72:ab:cf:ad:26:3c:
58:d7:3c:ee:fd:03:9a:5e:06:fa:15:79:66:1c:1b:
c7:9f:6a:84:98:99:39:ef:45:d9:24:18:aa:b9:00:
a6:31:a5:16:88:56:f5:e3:2e:41:bd:21:9f:dc:46:
1e:9b:63:83:23:ec:69:0d:94:76:7b:d2:8e:c4:fa:
f0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:FA:12:5A:61:FD:94:C0:10:19:39:25:33:90:C9:21:3F:A1:5C:BF
X509v3 Authority Key Identifier:
keyid:64:4C:A1:F9:05:18:D4:25:3F:32:59:47:D7:F3:2D:B7:87:21:64:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZEyh-QUY1CU_MllH1_Mtt4chZHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1564-3466-4732-83bd-b90d974e5fb5/1/LPoSWmH9lMAQGTklM5DJIT-hXL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1564-3466-4732-83bd-b90d974e5fb5/1/ZEyh-QUY1CU_MllH1_Mtt4chZHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.50.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:95:69:97:08:75:3a:14:72:dd:1b:d1:6c:d3:43:bd:9a:9e:
e6:20:ac:c1:f7:c8:90:0a:48:8b:8b:e1:2e:68:ab:20:95:36:
90:38:71:a8:f3:9c:3e:72:34:6d:3c:c4:92:f3:62:c8:34:05:
e0:89:31:73:fe:cd:5e:62:60:6e:0f:3f:bd:91:75:1a:ef:c2:
6e:58:4f:04:18:81:f8:c3:9d:34:a5:02:f7:5c:aa:4d:cc:1d:
de:f1:05:67:76:dd:48:77:91:45:f4:df:2e:67:86:18:91:77:
d8:45:03:28:6f:e0:80:4b:d5:88:db:9e:ce:38:00:8e:6b:26:
bc:26:de:a2:f6:ff:45:78:20:f1:48:c0:bc:8c:01:8d:22:ef:
44:c9:c8:de:e2:41:a0:3b:e1:a3:06:c3:f2:a3:b3:f2:70:d9:
92:73:36:71:40:c1:db:10:0c:a8:86:3b:a5:20:2e:cf:0c:4b:
a6:30:d1:7e:e6:ee:74:1c:50:c2:c3:07:30:c9:48:87:3d:ac:
c0:dc:03:ce:d7:b4:a0:0b:eb:58:88:12:13:01:a0:88:92:c1:
e2:52:ba:8f:12:80:9d:e7:6d:5d:1b:47:c8:72:6a:90:58:c1:
32:6d:42:0a:a8:0d:3d:38:23:91:5c:e9:0a:51:1c:db:8a:ce:
b4:0c:31:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:15:55 2025 by rpki-client