Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/eedbzYzEcmD0bN8sTsEevoG4QUg.roa
File: eedbzYzEcmD0bN8sTsEevoG4QUg.roa (raw, json)
Hash identifier: 6jdJpPkj8W0Pxp6tNFGamsmHhGO42KF7tGZ5t9MB8aQ=
Subject key identifier: 79:E7:5B:CD:8C:C4:72:60:F4:6C:DF:2C:4E:C1:1E:BE:81:B8:41:48
Certificate issuer: /CN=712f2269d15633bdbc71d8cd3f458cbd03fe031f
Certificate serial: 0198EA11AEF45781AAE0AE1FF6C310E2D3E4
Authority key identifier: 71:2F:22:69:D1:56:33:BD:BC:71:D8:CD:3F:45:8C:BD:03:FE:03:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS8iadFWM728cdjNP0WMvQP-Ax8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/eedbzYzEcmD0bN8sTsEevoG4QUg.roa
Signing time: Wed 27 Aug 2025 05:48:04 +0000
ROA not before: Wed 27 Aug 2025 05:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212616
IP address blocks: 91.230.48.0/24 maxlen: 24
93.175.32.0/19 maxlen: 24
93.175.32.0/24 maxlen: 24
93.175.40.0/24 maxlen: 24
93.175.41.0/24 maxlen: 24
93.175.42.0/24 maxlen: 24
93.175.45.0/24 maxlen: 24
93.175.47.0/24 maxlen: 24
93.175.50.0/24 maxlen: 24
93.175.57.0/24 maxlen: 24
93.175.58.0/24 maxlen: 24
93.175.59.0/24 maxlen: 24
93.175.60.0/24 maxlen: 24
176.97.214.0/24 maxlen: 24
2a0e:5b00::/29 maxlen: 48
2a0e:5b00::/48 maxlen: 48
2a0e:5b00:3::/48 maxlen: 48
2a0e:5b00:100::/48 maxlen: 48
2a0e:5b00:403::/48 maxlen: 48
2a0e:5b00:406::/48 maxlen: 48
2a0e:5b00:409::/48 maxlen: 48
2a0e:5b00:40f::/48 maxlen: 48
2a0e:5b00:411::/48 maxlen: 48
2a0e:5b00:412::/48 maxlen: 48
2a0e:5b00:413::/48 maxlen: 48
2a0e:5b00:415::/48 maxlen: 48
2a0e:5b00:418::/48 maxlen: 48
2a0e:5b00:419::/48 maxlen: 48
2a0e:5b00:41b::/48 maxlen: 48
2a0e:5b00:41d::/48 maxlen: 48
2a0e:5b00:41e::/48 maxlen: 48
2a0e:5b00:41f::/48 maxlen: 48
2a0e:5b00:420::/48 maxlen: 48
2a0e:5b00:500::/48 maxlen: 48
2a0e:5b00:a00::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/cS8iadFWM728cdjNP0WMvQP-Ax8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/cS8iadFWM728cdjNP0WMvQP-Ax8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cS8iadFWM728cdjNP0WMvQP-Ax8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 20:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ea:11:ae:f4:57:81:aa:e0:ae:1f:f6:c3:10:e2:d3:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=712f2269d15633bdbc71d8cd3f458cbd03fe031f
Validity
Not Before: Aug 27 05:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=79e75bcd8cc47260f46cdf2c4ec11ebe81b84148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:44:d9:25:36:9a:15:81:d0:da:d6:ca:8c:3c:
e4:10:7b:9c:a1:41:62:f9:a1:14:66:d7:42:66:b4:
a4:27:69:b1:82:61:a3:69:74:25:f9:92:ee:09:da:
d5:87:1e:bf:ad:6b:6d:e8:0e:94:7b:d3:39:22:3d:
4f:11:b6:7d:38:da:b5:1f:fc:91:f6:35:82:fa:b4:
7b:33:36:49:ef:b2:84:ee:b1:ba:97:85:e3:93:11:
7b:d5:41:79:18:c2:5f:33:86:f4:4b:3e:62:36:4a:
14:d0:a4:7c:05:8b:6e:d3:1f:97:d7:77:23:71:77:
2a:e1:56:ff:4d:b8:af:0f:c6:a1:49:1a:b4:b1:39:
31:49:20:ea:7f:ff:7e:f2:d5:f3:b3:8a:ad:38:8c:
0f:09:8d:72:d4:53:a1:be:b1:7d:99:39:25:38:3e:
c9:95:07:84:a1:17:01:23:01:b2:a8:29:78:45:4f:
b5:46:7b:23:55:55:d5:1a:b1:ca:54:2e:73:fa:d4:
86:6b:c6:17:56:bf:d1:5f:23:b1:cf:2f:8e:49:82:
a3:9e:36:27:1f:71:a0:4a:b8:81:40:69:50:c4:1f:
c9:3b:07:5c:9b:77:b6:ca:7b:8c:d2:d4:1d:53:ac:
5e:da:89:90:2c:91:91:a5:72:a6:9e:ef:33:45:13:
1f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E7:5B:CD:8C:C4:72:60:F4:6C:DF:2C:4E:C1:1E:BE:81:B8:41:48
X509v3 Authority Key Identifier:
keyid:71:2F:22:69:D1:56:33:BD:BC:71:D8:CD:3F:45:8C:BD:03:FE:03:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS8iadFWM728cdjNP0WMvQP-Ax8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/eedbzYzEcmD0bN8sTsEevoG4QUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e6373c-53cd-4fd5-a435-d18bab9515bf/1/cS8iadFWM728cdjNP0WMvQP-Ax8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.48.0/24
93.175.32.0/19
176.97.214.0/24
IPv6:
2a0e:5b00::/29
Signature Algorithm: sha256WithRSAEncryption
7e:e4:18:9b:65:0a:3d:c6:65:4c:db:a9:a5:e9:e2:e5:1b:cc:
26:65:01:4e:d0:cb:ec:a4:b5:1e:b2:ba:ee:f5:c6:24:67:25:
24:d8:a9:83:59:18:b9:6f:fa:0b:e2:11:67:3a:c8:34:87:26:
82:58:b6:62:13:ea:44:57:7d:69:31:ab:18:ae:3e:4a:e8:3d:
55:1a:a2:76:75:e6:19:59:9e:19:38:a5:ec:6f:ad:1f:c3:3e:
3f:22:61:98:33:7f:ee:61:4e:81:9c:88:86:56:de:f2:96:5a:
92:ec:43:78:7e:f1:aa:5e:a9:6f:73:b7:33:42:05:b7:cc:79:
6a:af:ce:7b:7f:49:25:8d:d7:67:48:b3:a7:df:e1:da:20:97:
58:bb:07:4b:8b:62:b1:4f:ca:ef:a4:ec:0f:dc:61:c8:81:31:
41:1e:ef:27:e2:25:0e:f0:5a:7a:1e:3c:d5:db:c0:bd:32:f3:
14:d2:e7:7c:7f:db:e4:50:fd:4b:c7:05:76:a2:bd:51:8f:ad:
3e:6b:a5:2c:61:fa:6d:91:b4:f5:f8:42:3d:b0:fa:36:9a:0f:
62:a3:e5:85:3c:e4:0a:1b:83:2e:7c:ff:f7:1d:4f:c2:43:8c:
a3:3e:15:1d:98:62:87:05:13:ea:b3:3c:69:93:eb:a1:72:50:
36:b7:7f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 05:30:48 2025 by rpki-client