Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/eSDGXftwPU-DhjYptcEbu97gSEU.roa
File: eSDGXftwPU-DhjYptcEbu97gSEU.roa (raw, json)
Hash identifier: 298/MebJAxJVNu0RXxXXDu+aRB+xIjmk2sL/OavJmSI=
Subject key identifier: 79:20:C6:5D:FB:70:3D:4F:83:86:36:29:B5:C1:1B:BB:DE:E0:48:45
Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d
Certificate serial: 019889BA9ADF4A851C99242A833B5DB60580
Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/eSDGXftwPU-DhjYptcEbu97gSEU.roa
Signing time: Fri 08 Aug 2025 12:49:24 +0000
ROA not before: Fri 08 Aug 2025 12:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2914
IP address blocks: 95.164.77.0/24 maxlen: 24
95.164.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 07:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:ba:9a:df:4a:85:1c:99:24:2a:83:3b:5d:b6:05:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6991c56f11a7171c6153239769f557beba10182d
Validity
Not Before: Aug 8 12:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7920c65dfb703d4f83863629b5c11bbbdee04845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:77:8e:73:77:ff:84:d5:77:b8:f0:22:a5:80:
c1:ba:41:b9:c3:b0:80:20:8d:87:8a:86:f6:24:7d:
d9:70:3e:07:6d:0e:c7:df:b7:96:c3:b7:f6:66:01:
a1:d3:83:36:22:79:64:b5:5c:80:7e:7c:c4:96:2c:
25:c2:85:18:90:fe:19:fc:b4:ee:12:e2:ae:b7:15:
81:ba:3d:8d:69:3b:fa:54:a6:b7:29:2e:02:57:9c:
e7:2f:f1:3b:02:80:dd:f0:fc:15:e9:89:3a:0f:7d:
93:d4:07:86:e1:a3:1d:ab:a1:e7:d8:8b:89:1b:bc:
5d:6e:a1:2c:e2:ff:ca:a0:d1:bf:e4:35:5e:90:05:
97:a9:34:d2:40:a2:e4:30:96:4a:79:ec:3c:6a:ba:
f3:73:8e:bf:b9:10:34:8e:93:4e:80:dc:28:62:24:
14:cb:f2:46:3d:35:1d:8b:f0:7f:46:c1:49:df:dd:
90:be:72:ac:51:66:4d:bd:ca:4c:d9:bc:56:83:80:
c0:87:30:be:1a:34:00:62:d0:8f:12:ef:5c:cf:3f:
3a:f3:d1:cb:18:37:4e:8d:56:70:ac:68:cf:9b:3f:
8d:69:fe:d6:39:bb:ae:00:25:9a:2b:d6:9f:d5:96:
f4:ea:d6:f5:92:0b:d8:f8:5a:08:33:98:a1:c3:80:
8a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:20:C6:5D:FB:70:3D:4F:83:86:36:29:B5:C1:1B:BB:DE:E0:48:45
X509v3 Authority Key Identifier:
keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/eSDGXftwPU-DhjYptcEbu97gSEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.77.0/24
95.164.160.0/22
Signature Algorithm: sha256WithRSAEncryption
05:97:75:a8:5c:79:57:6c:96:1f:6b:37:99:f6:ce:af:a9:e8:
de:7e:32:b5:6c:98:8b:49:46:6b:e8:a9:92:32:c8:b8:73:b3:
9b:b5:b7:0c:f1:84:39:90:70:19:0c:52:e7:c4:a9:2d:c1:d2:
19:07:94:d2:74:9f:20:16:44:ec:9c:3f:4a:c9:0f:48:31:64:
fe:2e:07:18:d2:fc:47:60:1d:9a:49:5b:2f:a0:3a:f1:1f:ef:
8e:4e:74:c1:3e:d3:20:83:ab:5a:24:c6:81:ee:4b:bf:de:ea:
5f:f4:05:3d:b8:88:cc:16:7f:e2:8e:e8:3b:21:87:f2:80:99:
9a:6c:b8:85:8f:1c:25:aa:42:de:77:90:0a:70:4e:85:45:c2:
c1:cf:76:25:65:74:cd:e2:53:f2:3b:ff:6c:f6:d0:0f:9a:8f:
14:59:97:8a:76:aa:ee:ec:99:10:b3:30:ec:0b:61:03:a4:07:
49:c1:79:b4:af:d0:7c:e0:44:48:6c:3c:24:3c:ea:ed:db:df:
08:5c:1d:a3:b5:04:fe:32:9e:29:1b:d0:d2:3c:15:bb:95:64:
d5:12:d5:0a:16:79:3f:ac:7d:1a:9a:00:29:4c:f8:d5:e7:0a:
11:15:3c:a8:ac:b7:22:8c:ff:a0:ba:3e:0a:dc:97:a7:91:df:
98:33:7b:42
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZiJuprfSoUcmSQqgztdtgWAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx
MDE4MmQwHhcNMjUwODA4MTI0OTI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTIwYzY1ZGZiNzAzZDRmODM4NjM2MjliNWMxMWJiYmRlZTA0ODQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXeOc3f/hNV3uPAipYDBukG5w7CA
II2Hiob2JH3ZcD4HbQ7H37eWw7f2ZgGh04M2InlktVyAfnzEliwlwoUYkP4Z/LTu
EuKutxWBuj2NaTv6VKa3KS4CV5znL/E7AoDd8PwV6Yk6D32T1AeG4aMdq6Hn2IuJ
G7xdbqEs4v/KoNG/5DVekAWXqTTSQKLkMJZKeew8arrzc46/uRA0jpNOgNwoYiQU
y/JGPTUdi/B/RsFJ392QvnKsUWZNvcpM2bxWg4DAhzC+GjQAYtCPEu9czz8689HL
GDdOjVZwrGjPmz+Naf7WObuuACWaK9af1Zb06tb1kgvY+FoIM5ihw4CKHQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHkgxl37cD1Pg4Y2KbXBG7ve4EhFMB8GA1UdIwQY
MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt
NjVkMTU2NzM0MGZkLzEvZVNER1hmdHdQVS1EaGpZcHRjRWJ1OTdnU0VVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk
LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX6RNAwQC
X6SgMA0GCSqGSIb3DQEBCwUAA4IBAQAFl3WoXHlXbJYfazeZ9s6vqejefjK1bJiL
SUZr6KmSMsi4c7ObtbcM8YQ5kHAZDFLnxKktwdIZB5TSdJ8gFkTsnD9KyQ9IMWT+
LgcY0vxHYB2aSVsvoDrxH++OTnTBPtMgg6taJMaB7ku/3upf9AU9uIjMFn/ijug7
IYfygJmabLiFjxwlqkLed5AKcE6FRcLBz3YlZXTN4lPyO/9s9tAPmo8UWZeKdqru
7JkQszDsC2EDpAdJwXm0r9B84ERIbDwkPOrt298IXB2jtQT+Mp4pG9DSPBW7lWTV
EtUKFnk/rH0amgApTPjV5woRFTyorLcijP+guj4K3Jenkd+YM3tC
-----END CERTIFICATE-----
Generated at Wed Aug 20 10:45:57 2025 by rpki-client