Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/ZLCgOlPZ-adZViTKhsMv3BABRVQ.roa
File: ZLCgOlPZ-adZViTKhsMv3BABRVQ.roa (raw, json)
Hash identifier: y37YnkCGLdmrEa4m8cGkKpYMZJFVaIJVqpcOQKXrYQA=
Subject key identifier: 64:B0:A0:3A:53:D9:F9:A7:59:56:24:CA:86:C3:2F:DC:10:01:45:54
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 0198AA6A36904E7A9534380B7E9618A38B39
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/ZLCgOlPZ-adZViTKhsMv3BABRVQ.roa
Signing time: Thu 14 Aug 2025 21:09:04 +0000
ROA not before: Thu 14 Aug 2025 21:09:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6830
IP address blocks: 83.229.113.0/24 maxlen: 24
185.90.220.0/24 maxlen: 24
185.90.221.0/24 maxlen: 24
185.90.222.0/24 maxlen: 24
185.90.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:aa:6a:36:90:4e:7a:95:34:38:0b:7e:96:18:a3:8b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Aug 14 21:09:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=64b0a03a53d9f9a7595624ca86c32fdc10014554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c9:23:0a:2f:76:8d:ac:d9:b4:bc:89:32:5f:
13:34:32:2b:8d:8a:06:cc:90:f0:05:67:6c:4c:db:
49:58:20:4b:b7:20:5b:f6:d9:fb:fe:08:55:fd:07:
a0:35:b6:95:5f:0f:23:11:de:84:1c:fc:d6:f9:18:
de:20:03:23:fe:7d:ef:79:6c:82:34:dc:66:d3:90:
bb:37:68:7f:39:a1:06:4c:1e:c8:b8:28:7d:ff:0b:
84:d2:af:94:81:fc:73:6c:8f:e9:e2:8b:1b:83:23:
3a:9a:38:7a:7a:dd:4e:fd:2e:a8:bf:db:6e:05:92:
89:8a:df:dd:50:e7:b9:d3:5d:22:42:46:4c:d3:0d:
a1:06:a4:b5:7e:2a:b3:83:33:1c:c3:8d:2d:0a:97:
23:6f:97:78:3d:81:c0:d2:d1:4a:cf:dc:b5:ea:89:
26:2b:93:c7:55:02:dc:bd:08:26:0b:06:73:94:3c:
8e:bf:95:f5:54:ba:3e:9c:5b:6c:cb:99:f4:f3:a9:
39:d7:bf:0c:54:c7:7b:cc:37:3b:f2:a8:20:13:d7:
6c:ac:ce:8f:9b:85:6e:ac:5c:b8:c9:e5:98:76:2b:
61:53:a3:23:b9:fb:66:04:51:fd:c5:d1:b1:7e:0b:
b6:f7:05:31:c5:94:1a:96:06:29:90:c6:cd:a2:c8:
b6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B0:A0:3A:53:D9:F9:A7:59:56:24:CA:86:C3:2F:DC:10:01:45:54
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/ZLCgOlPZ-adZViTKhsMv3BABRVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.113.0/24
185.90.220.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:7e:6f:92:b1:84:66:dd:8d:47:2c:30:2c:d8:cf:7b:c9:b8:
4f:18:32:7c:38:d2:ac:8a:12:e5:33:3c:25:a4:21:83:33:e3:
41:f2:bc:67:f1:45:e4:ee:30:5d:42:c2:af:a1:3d:4f:44:d5:
bb:72:53:43:37:eb:5f:e6:b4:3c:38:9d:4e:9c:5b:19:5d:fa:
75:3f:31:13:ec:86:e0:87:83:2b:aa:80:52:74:16:17:79:8b:
5e:61:1e:50:55:da:ce:c5:31:97:3e:18:e4:48:9c:2b:7b:33:
53:5d:d7:de:9f:d6:29:04:e7:e0:74:e0:87:ab:39:a1:99:f2:
fa:24:16:ae:d4:ff:be:c9:74:f1:d4:db:d1:53:39:a3:a4:48:
a3:db:05:9a:2f:f6:5c:53:d8:38:6c:b0:83:2b:b0:e1:f2:a9:
4d:77:3c:58:38:38:56:57:fb:d1:01:34:74:f1:19:27:9d:68:
ec:38:50:e2:04:54:e8:e5:9c:e6:e6:d1:62:21:0f:1c:18:a2:
ac:92:1d:7e:d6:95:22:91:49:39:cd:54:b3:06:09:44:17:88:
0a:a1:79:86:c5:56:16:88:2d:9d:3f:30:1e:ab:72:89:8b:8f:
8c:fb:dc:14:4d:cf:e5:77:08:bb:f8:91:37:f7:02:65:b1:ed:
51:1e:ff:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:38:14 2025 by rpki-client