Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_UekHmisa99h1BC8bPeR9kmDJUc.roa
File: _UekHmisa99h1BC8bPeR9kmDJUc.roa (raw, json)
Hash identifier: fVstBW0ReHJF++eQJekHlneJcso8loK85pA96gp1IUk=
Subject key identifier: FD:47:A4:1E:68:AC:6B:DF:61:D4:10:BC:6C:F7:91:F6:49:83:25:47
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019744B4A16E16BDF2CB52A23649EA9FA9A5
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_UekHmisa99h1BC8bPeR9kmDJUc.roa
Signing time: Fri 06 Jun 2025 10:06:17 +0000
ROA not before: Fri 06 Jun 2025 10:06:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9123
IP address blocks: 93.190.244.0/24 maxlen: 24
2a09:4900::/29 maxlen: 29
2a0f:e640::/29 maxlen: 29
2a0f:e740::/29 maxlen: 29
2a11:4c40::/29 maxlen: 29
2a11:4e80::/29 maxlen: 29
2a11:5200::/29 maxlen: 29
2a12:f440::/29 maxlen: 29
2a13:540::/29 maxlen: 29
2a13:600::/29 maxlen: 29
2a13:cc0::/29 maxlen: 29
2a13:3040::/29 maxlen: 29
2a13:c500::/29 maxlen: 29
2a13:fd00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:44:b4:a1:6e:16:bd:f2:cb:52:a2:36:49:ea:9f:a9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 6 10:06:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fd47a41e68ac6bdf61d410bc6cf791f649832547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:88:1c:05:02:c1:53:7a:86:c3:85:99:44:2e:
31:52:a0:ca:30:6b:fe:b1:c5:1e:11:21:68:ca:e1:
69:66:8b:2e:08:20:56:68:9e:cb:8b:ff:7f:ce:33:
2c:d9:43:5a:e8:c4:7f:9c:e3:70:fb:e0:b6:84:e7:
b7:63:bf:05:ae:5c:11:6e:9e:86:6c:f9:d3:64:6e:
ba:5d:25:20:d8:49:5e:c8:8b:55:40:3b:a4:da:44:
af:96:63:9e:11:71:dc:0d:00:92:4b:b0:ef:98:58:
ce:81:27:f4:68:75:be:51:6f:eb:c2:cf:4d:02:ce:
59:c1:53:15:01:5f:4f:fe:14:54:f7:6a:a4:1c:a9:
bd:57:0a:e9:17:d0:ac:a9:a9:3c:67:11:41:c0:a7:
d4:0d:30:10:ed:95:d6:86:32:64:70:27:83:c5:6d:
41:8f:23:c8:8f:4a:cf:9f:82:65:bf:47:8e:e2:d2:
e2:ef:9a:16:13:d5:88:47:a6:a9:ba:26:cc:96:a7:
2e:be:f1:66:2d:4b:a4:bc:66:94:0d:ed:9b:51:a8:
9e:5a:03:0c:11:3b:af:aa:a8:e5:da:f7:6c:76:8f:
43:61:29:98:29:a6:99:5a:57:e6:0f:fa:d2:5e:bb:
3a:89:10:1f:19:52:9d:69:b6:d1:45:96:40:86:16:
66:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:47:A4:1E:68:AC:6B:DF:61:D4:10:BC:6C:F7:91:F6:49:83:25:47
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_UekHmisa99h1BC8bPeR9kmDJUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.244.0/24
IPv6:
2a09:4900::/29
2a0f:e640::/29
2a0f:e740::/29
2a11:4c40::/29
2a11:4e80::/29
2a11:5200::/29
2a12:f440::/29
2a13:540::/29
2a13:600::/29
2a13:cc0::/29
2a13:3040::/29
2a13:c500::/29
2a13:fd00::/29
Signature Algorithm: sha256WithRSAEncryption
99:23:33:5e:74:c9:17:c3:ea:6e:ff:09:06:20:3b:80:37:d6:
0f:0a:64:95:9f:e0:9d:81:a0:ee:fb:96:d1:77:ff:ca:7c:06:
f0:c5:a3:cc:2b:49:97:6c:ff:bd:00:5a:3d:40:b1:b2:dc:a2:
5d:83:92:29:43:27:4f:1d:49:d7:20:11:49:37:31:25:d1:af:
d6:e8:90:ae:26:ab:09:20:7a:35:6e:ac:c3:3b:0a:a5:f5:32:
65:f6:36:ef:1f:44:81:a8:f6:36:0e:68:99:b2:a0:82:64:89:
34:a0:b4:bf:4f:db:06:25:b7:ec:e6:4a:2f:09:b4:5e:de:74:
1c:e3:ab:21:af:65:5c:0c:8d:af:d0:ff:98:84:bd:70:76:d8:
99:fe:b3:8b:f8:d2:69:56:04:ff:1e:46:bc:cb:00:20:fd:88:
e5:76:52:a3:73:6a:31:12:d0:b5:a9:42:d5:f5:d4:7c:a8:59:
72:42:58:3c:11:79:76:c0:d7:ad:7a:94:63:70:73:0f:4b:26:
a1:f2:fc:28:a8:ce:75:83:34:6e:56:68:c5:b2:ce:70:85:a5:
d5:92:cd:21:21:ef:d5:24:5a:b1:d3:78:47:07:8e:49:02:04:
88:bc:58:3b:ce:fd:6e:d2:88:cd:6b:5b:04:3b:62:bc:f0:0e:
8b:18:02:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:42:57 2025 by rpki-client