Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/7up0r1vQiZdKC1oE9L7mvuP0p4I.roa
File: 7up0r1vQiZdKC1oE9L7mvuP0p4I.roa (raw, json)
Hash identifier: cVjp4QTLbcnMTdi+ebHsiAxT4Sjmfp6erOaAfdsxTlE=
Subject key identifier: EE:EA:74:AF:5B:D0:89:97:4A:0B:5A:04:F4:BE:E6:BE:E3:F4:A7:82
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0196C51A805438574B892D7118D0422F5E95
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/7up0r1vQiZdKC1oE9L7mvuP0p4I.roa
Signing time: Mon 12 May 2025 15:26:10 +0000
ROA not before: Mon 12 May 2025 15:26:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49981
IP address blocks: 109.205.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:1a:80:54:38:57:4b:89:2d:71:18:d0:42:2f:5e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: May 12 15:26:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eeea74af5bd089974a0b5a04f4bee6bee3f4a782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ca:cf:ca:cd:03:33:78:24:1f:1f:9e:ae:24:
c3:69:d2:0f:55:46:1e:ae:82:d7:12:4f:9a:18:b4:
9d:e2:d7:e7:b8:07:81:fa:21:66:dd:d6:c8:4e:69:
f7:49:ed:bd:56:c9:89:f2:ad:7f:33:4d:4a:7f:8f:
e6:80:d7:cf:18:17:14:47:ba:b5:c5:7d:9c:65:dd:
29:5f:ea:69:65:e8:e2:6f:a4:40:45:fc:ed:c6:08:
f2:8d:21:f4:5b:d1:fb:ac:10:9a:61:71:28:75:a4:
25:e2:57:5a:e7:90:5a:10:34:e5:a2:b4:74:23:6a:
9e:73:0c:9b:42:f8:62:88:c1:f6:ed:aa:f2:aa:57:
d4:61:08:66:52:8e:d7:96:14:9f:36:dd:9c:0f:88:
55:f1:b7:70:e4:75:8a:fc:92:8c:31:11:79:a8:2a:
ec:fc:ea:f9:5b:6e:94:bd:b3:3b:7d:3b:85:47:7e:
12:8e:2c:9e:08:b1:6b:bb:7e:ea:ee:91:10:88:4f:
cf:52:8b:0a:7a:4e:d1:22:f7:ff:5c:bc:d8:59:92:
d2:7e:1b:c9:cc:a6:6e:2d:4f:6a:ed:f9:2f:e4:65:
4d:7d:2c:69:7c:5f:ab:a1:86:25:67:c4:0b:bb:13:
9f:f7:54:2f:66:3d:04:6a:a8:3a:6e:c6:58:84:74:
37:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EA:74:AF:5B:D0:89:97:4A:0B:5A:04:F4:BE:E6:BE:E3:F4:A7:82
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/7up0r1vQiZdKC1oE9L7mvuP0p4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.211.0/24
Signature Algorithm: sha256WithRSAEncryption
35:0c:bc:42:3a:1f:2c:03:9d:e2:68:33:58:13:de:75:5e:3b:
c6:da:2d:61:55:c4:4a:11:08:fd:af:4e:4f:85:af:c7:a4:a1:
63:c7:18:7a:50:49:e8:a0:b5:2d:c3:18:94:0a:06:01:49:a9:
74:fc:4f:ca:2d:f0:80:39:ae:a7:a3:6f:21:ac:27:c6:6b:4d:
a3:0d:41:77:3a:bb:c6:a7:45:67:67:14:1f:d7:f6:c2:9b:6a:
a9:4f:ad:87:02:4f:ca:67:0e:14:a5:40:34:18:e7:13:16:e3:
e2:7f:2e:2e:08:9e:14:49:0b:61:0f:af:c6:9b:8d:58:69:4a:
fe:0a:6e:b8:e9:01:a7:e9:4d:31:23:4e:8f:1b:f8:19:a5:6b:
d5:7a:e3:40:03:fa:ce:44:80:25:af:18:13:20:6c:f5:5a:0f:
04:5b:aa:ca:fb:0a:d7:15:42:e2:ad:9b:69:af:3b:2f:f7:7b:
89:0c:e5:3d:87:74:66:de:07:64:c5:eb:bd:68:32:ad:8a:b0:
ae:20:89:e6:7e:78:91:c8:a9:34:f6:c5:ca:8a:d2:8a:b9:06:
77:98:d2:72:1d:03:f2:ed:1a:42:5e:94:16:5b:d8:3b:52:5c:
5c:90:0f:8f:97:66:02:98:47:5f:3f:83:6c:83:c4:e5:3c:c2:
ae:9d:23:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 20:53:09 2025 by rpki-client