Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/fyvr97imYUTFBt9l5sYIYNf2Ons.roa
File: fyvr97imYUTFBt9l5sYIYNf2Ons.roa (raw, json)
Hash identifier: AUG2AsXoRoAIdq/CrrKAbvrdnCXm+u8hO0sJjnMZJYE=
Subject key identifier: 7F:2B:EB:F7:B8:A6:61:44:C5:06:DF:65:E6:C6:08:60:D7:F6:3A:7B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01978C1916F387636F9E824DA099E84BBA17
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/fyvr97imYUTFBt9l5sYIYNf2Ons.roa
Signing time: Fri 20 Jun 2025 06:49:03 +0000
ROA not before: Fri 20 Jun 2025 06:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49581
IP address blocks: 45.151.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8c:19:16:f3:87:63:6f:9e:82:4d:a0:99:e8:4b:ba:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 20 06:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7f2bebf7b8a66144c506df65e6c60860d7f63a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:12:26:c8:ed:66:f2:04:72:09:58:60:74:2c:
0b:e1:67:64:7d:58:34:f2:8c:d9:34:90:d0:4e:26:
46:46:8a:85:81:8d:4c:34:df:68:d3:55:9a:4e:d1:
33:02:f4:4a:d0:df:54:9d:55:7a:09:86:b0:2d:14:
74:43:ca:72:fd:d7:3c:37:b0:54:5f:38:6f:ca:e4:
48:26:67:bd:c4:76:b0:2e:f4:85:09:e9:75:96:cb:
a0:f2:00:17:fa:e5:5e:f8:ef:d9:31:03:24:74:af:
36:28:4c:5a:18:f7:0d:66:7c:ec:26:75:28:ad:79:
3e:9b:22:be:f1:d1:39:e3:eb:ff:ef:1f:27:5f:00:
76:ac:d5:bf:9a:a0:6d:ca:64:2b:fb:3e:32:13:15:
ad:a1:0c:da:d4:97:7c:8b:b0:47:a5:1c:6a:88:00:
49:06:7b:d9:ab:ca:9e:cb:2a:26:10:e5:f4:57:f3:
69:03:9b:2d:41:40:0e:fb:ba:e4:ef:3a:50:ac:7f:
91:cc:20:0e:b7:73:70:9d:a5:87:d2:7c:c4:64:3e:
d4:cc:52:cc:86:2c:dd:47:d4:1c:47:38:2e:d0:eb:
ef:f0:7b:91:a5:00:97:6b:e8:5c:66:9b:69:68:b2:
62:2d:af:c4:4a:5c:6f:80:54:9c:d0:e2:0e:e2:c3:
34:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2B:EB:F7:B8:A6:61:44:C5:06:DF:65:E6:C6:08:60:D7:F6:3A:7B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/fyvr97imYUTFBt9l5sYIYNf2Ons.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.90.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:98:f0:bd:f6:75:f3:41:20:03:82:eb:24:e4:14:aa:52:c9:
b3:74:c0:61:b3:2e:00:42:8b:cb:1a:35:95:66:21:d4:45:e7:
91:03:e6:42:57:b2:22:e8:95:89:94:a9:3f:bc:1a:55:52:18:
32:c8:eb:78:57:0b:7f:9e:38:44:02:2f:dc:f2:da:35:3a:ac:
e5:31:79:66:a4:0b:58:d1:1b:16:55:1a:6a:f8:9d:88:9f:f9:
51:7f:7b:92:cf:5d:f2:80:dc:74:99:48:4b:41:e4:4f:06:ed:
79:d2:3c:c7:25:c2:e6:dd:97:32:ff:00:33:c9:fa:c3:e3:61:
8e:9e:53:2f:cd:0e:28:e3:e8:fd:95:da:8a:47:a6:6f:db:97:
dc:e1:1c:b9:42:c5:a5:c8:e0:95:e9:5e:a4:37:e3:df:5a:1f:
54:ec:2f:ef:63:ce:cb:77:37:48:a2:28:72:8d:98:c6:47:24:
3b:76:d8:00:4a:23:46:8f:29:d2:55:c5:71:b9:10:05:61:f9:
58:1f:0e:df:24:4b:88:2e:5d:1e:b4:74:26:6d:8b:22:b9:fe:
78:7d:99:61:8e:cc:1e:0e:5b:78:49:8e:f5:83:73:6c:30:c0:
14:e6:a5:fa:a4:60:49:f8:57:46:38:a9:e7:82:00:95:d4:57:
c2:ce:fc:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 10:22:59 2025 by rpki-client