Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/MF1phW691ijv216Yiy9jeG-EGUs.roa
File: MF1phW691ijv216Yiy9jeG-EGUs.roa (raw, json)
Hash identifier: JiDSPlbDIIdcY1GRbwa08pZWXFsnsj0ScAdRZO3iurU=
Subject key identifier: 30:5D:69:85:6E:BD:D6:28:EF:DB:5E:98:8B:2F:63:78:6F:84:19:4B
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 019934BE126E75D61BEB1C1233040BC38A38
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/MF1phW691ijv216Yiy9jeG-EGUs.roa
Signing time: Wed 10 Sep 2025 17:48:15 +0000
ROA not before: Wed 10 Sep 2025 17:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 45.153.230.0/24 maxlen: 24
193.38.54.0/24 maxlen: 24
193.38.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 19:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:be:12:6e:75:d6:1b:eb:1c:12:33:04:0b:c3:8a:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Sep 10 17:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=305d69856ebdd628efdb5e988b2f63786f84194b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7e:66:9b:d2:96:ec:7d:d7:fb:6b:c4:d6:2c:
4d:a4:36:01:c5:05:ec:42:16:f8:93:3a:65:e8:29:
67:ae:b6:96:4b:5b:bd:45:3c:51:86:2e:84:1a:1a:
cb:8d:c9:ee:42:e8:7f:35:32:98:6e:a3:e7:c5:bf:
bd:a4:cc:fc:d1:4c:32:d5:b5:ca:6d:ce:dd:ac:57:
e3:2a:5b:47:92:ef:73:3a:5a:c2:a4:a1:51:e9:59:
a1:76:c9:9a:b9:68:89:b9:52:d7:68:88:56:4f:5b:
0d:eb:49:c1:63:ab:7b:32:53:96:32:4b:ae:f6:6b:
c3:06:c2:61:f8:ac:77:f1:5e:d9:13:56:30:8f:4f:
4b:07:bf:be:58:e0:87:3f:00:22:d7:2a:e0:95:b5:
ba:44:c4:54:8f:62:6e:26:d9:06:88:8a:2a:0d:d5:
29:99:07:7c:30:6f:d8:57:24:3f:46:80:c3:fd:c3:
1e:88:ba:5c:b1:92:af:19:4e:2f:91:68:47:14:65:
94:d7:58:9c:31:af:bf:a6:49:ca:0a:5c:e4:50:33:
c6:c5:e8:30:83:20:60:bd:a3:45:64:b9:97:97:d7:
5d:30:a2:93:2f:c9:2d:f2:ec:e8:37:93:fe:b8:90:
2a:7a:94:1f:fe:bf:a8:d1:a4:38:d6:1d:4f:ad:fb:
b8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5D:69:85:6E:BD:D6:28:EF:DB:5E:98:8B:2F:63:78:6F:84:19:4B
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/MF1phW691ijv216Yiy9jeG-EGUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.230.0/24
193.38.54.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:ee:26:38:84:01:e2:c7:20:b6:7d:c8:f0:46:bd:f8:bb:42:
2d:64:5c:42:94:a4:81:26:3d:35:29:80:95:98:0c:c2:fa:86:
27:1c:91:28:8f:45:dc:7d:19:7d:ac:04:51:a1:0f:f6:83:b3:
fc:87:10:4e:7e:40:8f:38:73:75:a9:b7:0b:82:ff:c9:d3:23:
bc:ed:8c:fc:b1:37:5f:37:9a:ba:cc:52:5f:5a:b5:ee:a9:7f:
1c:c1:86:f9:79:96:3f:19:30:30:9b:f8:f2:d5:38:6a:80:4f:
62:96:d0:c7:23:9b:89:68:c3:98:21:d7:51:30:49:7d:ca:c0:
35:2a:5b:6f:83:46:6f:84:69:d4:22:6b:4f:86:ee:c4:19:2d:
8e:2c:e3:ab:b5:07:45:1a:57:19:ba:d6:70:f0:4b:17:b7:7b:
e9:1c:41:e3:6d:92:91:d4:e1:69:73:28:34:52:2a:4f:f2:a2:
82:63:89:59:84:f1:22:5d:d4:5d:44:1a:c4:16:10:95:7c:5e:
de:db:93:2c:21:5e:98:13:d3:46:c2:08:50:58:22:c5:85:f0:
90:32:aa:fc:33:2a:01:01:b4:37:b8:da:04:49:37:55:45:4e:
3e:f4:29:1a:7d:21:e3:51:5b:f1:df:30:2e:5f:32:da:bc:2d:
59:ad:f5:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 01:49:42 2025 by rpki-client