Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/CyRu--zwDhYd5zhamEbAkFcQBvQ.roa
File: CyRu--zwDhYd5zhamEbAkFcQBvQ.roa (raw, json)
Hash identifier: sO2VoYkxgTRufknOOSGAsTFVUrBvzkN0qo3ZnwDHlpE=
Subject key identifier: 0B:24:6E:FB:EC:F0:0E:16:1D:E7:38:5A:98:46:C0:90:57:10:06:F4
Certificate issuer: /CN=de87d35bdcab123affc1a91d1736867969709a23
Certificate serial: 0196D297DF85DEF90B7D076FA7E4F46F45DA
Authority key identifier: DE:87:D3:5B:DC:AB:12:3A:FF:C1:A9:1D:17:36:86:79:69:70:9A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ofTW9yrEjr_wakdFzaGeWlwmiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/CyRu--zwDhYd5zhamEbAkFcQBvQ.roa
Signing time: Thu 15 May 2025 06:18:10 +0000
ROA not before: Thu 15 May 2025 06:18:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28712
IP address blocks: 217.14.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/3ofTW9yrEjr_wakdFzaGeWlwmiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/3ofTW9yrEjr_wakdFzaGeWlwmiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ofTW9yrEjr_wakdFzaGeWlwmiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:97:df:85:de:f9:0b:7d:07:6f:a7:e4:f4:6f:45:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de87d35bdcab123affc1a91d1736867969709a23
Validity
Not Before: May 15 06:18:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0b246efbecf00e161de7385a9846c090571006f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:75:14:72:59:f2:12:f1:42:41:e8:52:db:e3:
d7:72:f6:76:39:28:a0:68:31:21:b8:bf:af:59:9a:
80:36:16:28:05:6b:2f:56:b9:c4:34:b2:6f:0e:99:
2b:2b:6d:82:be:67:e0:f0:59:1f:d8:72:76:dc:c9:
57:db:18:d6:31:59:66:57:6f:42:f4:4f:01:3a:fc:
a1:6d:3d:0a:09:a2:23:29:6e:e3:c5:e9:e2:e8:e4:
b6:69:4d:08:8d:59:62:3a:d0:03:17:e2:a0:87:92:
af:d9:7a:5e:96:5e:df:32:87:c4:37:1f:cf:1a:c4:
7f:c0:69:d6:51:24:e3:6b:db:cb:21:e5:c6:bd:ab:
03:8d:24:a2:98:dd:1b:77:b7:2e:6c:1a:fa:04:46:
f2:68:ea:91:5a:50:59:7c:67:c0:17:d7:01:39:cf:
27:ab:a9:d1:6e:fd:e0:b1:2e:6c:97:56:a3:0f:4d:
8b:cc:56:df:9d:37:37:22:77:c1:2b:09:01:95:75:
86:9a:a6:5b:48:b7:73:b3:07:a9:3b:24:f9:03:9c:
32:d5:1a:f8:c9:b8:aa:02:b2:b1:24:08:5a:d4:51:
91:db:29:70:69:1f:5c:65:9e:a3:73:55:78:9d:53:
1d:b5:4c:00:87:8f:aa:09:f6:87:0f:40:e4:ce:27:
d9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:24:6E:FB:EC:F0:0E:16:1D:E7:38:5A:98:46:C0:90:57:10:06:F4
X509v3 Authority Key Identifier:
keyid:DE:87:D3:5B:DC:AB:12:3A:FF:C1:A9:1D:17:36:86:79:69:70:9A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ofTW9yrEjr_wakdFzaGeWlwmiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/CyRu--zwDhYd5zhamEbAkFcQBvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/910716-f266-47f0-9bad-c22390e8d9a6/1/3ofTW9yrEjr_wakdFzaGeWlwmiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.14.18.0/24
Signature Algorithm: sha256WithRSAEncryption
92:8f:e7:f6:ee:a2:fa:6c:98:a6:a1:c9:25:6b:cb:7e:ce:c3:
78:4d:13:0d:d1:60:6e:f2:a9:47:43:02:18:70:b0:73:ec:0c:
0a:b7:a2:bf:2e:2b:be:e7:7d:9f:8f:e1:06:c8:52:c5:a2:fb:
0f:ba:3e:b9:e0:17:80:c3:e9:c8:ab:e1:a0:be:c3:6d:35:64:
88:dd:51:7f:e1:1b:ea:a4:70:d9:d7:ce:a9:51:ee:99:ca:31:
3e:27:fa:c8:b1:e6:12:01:e8:70:20:c0:12:f6:72:84:03:26:
18:e8:04:e4:2b:3f:d7:28:fc:ab:64:77:c5:76:c0:67:97:3d:
a0:17:e6:88:89:e5:64:67:a9:78:e5:b6:a8:bb:1e:af:12:49:
58:59:0c:87:8f:9b:b2:ac:b9:4b:01:b0:92:24:9e:dd:d3:44:
46:9d:1d:32:21:ca:fd:e6:0e:3f:b6:72:f4:e6:00:c8:29:ff:
cf:ab:61:6f:cc:c0:6d:f5:b2:99:cc:9d:2c:21:fb:cd:4c:2a:
79:49:b0:b7:cf:55:79:8a:09:39:06:ca:ba:e6:30:58:56:51:
3c:9d:fa:fb:f5:0e:5d:54:b5:a5:00:6e:20:2e:4f:73:76:fe:
76:26:bc:48:60:76:12:69:b9:fd:f1:64:c8:72:b1:60:6d:58:
9b:e4:ed:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:57:02 2025 by rpki-client