Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/zuBYUMQuImDw5y8xo2oUjEcsRHI.roa
File: zuBYUMQuImDw5y8xo2oUjEcsRHI.roa (raw, json)
Hash identifier: IJdq9yaPegdfLWFIez0usa50ZCwchm6CImUTf8ttAAY=
Subject key identifier: CE:E0:58:50:C4:2E:22:60:F0:E7:2F:31:A3:6A:14:8C:47:2C:44:72
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 01969170CB39FE26440C97CD6F4190F0CB70
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/zuBYUMQuImDw5y8xo2oUjEcsRHI.roa
Signing time: Fri 02 May 2025 14:40:10 +0000
ROA not before: Fri 02 May 2025 14:40:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209298
IP address blocks: 5.183.129.0/24 maxlen: 24
45.11.23.0/24 maxlen: 24
45.14.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:70:cb:39:fe:26:44:0c:97:cd:6f:41:90:f0:cb:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 2 14:40:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cee05850c42e2260f0e72f31a36a148c472c4472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:68:04:db:02:8f:c5:ce:f1:b4:17:5c:50:df:
ee:b8:8e:70:9c:fa:20:11:d1:12:c0:45:4d:d6:d5:
f6:d4:57:7f:bc:dd:4b:17:3c:bb:99:43:2a:de:72:
68:1b:0d:99:e0:de:4d:10:06:bf:24:dc:ad:25:dc:
06:2f:3b:92:9c:50:f6:ab:86:ef:68:eb:f2:00:99:
ef:bb:2c:b7:b9:eb:d0:1c:a8:e1:c4:41:08:93:d6:
67:15:2e:bf:dc:93:a9:07:16:a7:ce:20:61:fb:59:
bf:ac:1a:02:f4:3d:65:c2:01:04:65:88:63:29:53:
e5:10:ba:11:ca:b2:77:64:62:f7:0f:ee:98:14:fd:
2c:84:57:7f:97:60:8a:79:5f:fd:c0:c5:c7:b9:9c:
4f:0b:a1:b8:60:2e:cd:2f:33:ed:16:46:e4:04:e6:
1d:95:c7:48:53:ca:bd:06:a7:00:8a:3b:1d:0b:5b:
32:97:4e:c8:a6:13:bb:12:5f:3c:d0:e9:66:61:67:
a9:9d:13:ac:40:c3:cb:57:9b:32:35:97:70:9c:d9:
72:62:fb:bd:aa:5a:22:4d:35:fc:71:6e:e6:f0:8c:
81:9d:95:a6:cb:40:54:f0:f9:d6:13:1b:c8:bd:42:
e6:d1:6d:ef:54:f2:27:93:8f:d0:3f:0d:4e:40:2c:
c9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E0:58:50:C4:2E:22:60:F0:E7:2F:31:A3:6A:14:8C:47:2C:44:72
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/zuBYUMQuImDw5y8xo2oUjEcsRHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.129.0/24
45.11.23.0/24
45.14.222.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:75:6e:cd:29:47:91:0a:fb:dc:b3:ef:23:ea:4e:01:80:7d:
ad:6c:e5:be:fb:f8:0e:4a:8d:72:ab:2e:3f:a3:7c:24:f0:06:
64:ca:4b:55:3a:5d:7b:b7:90:ec:f6:d0:c7:71:04:07:ba:36:
ed:4e:16:73:77:34:54:c3:65:35:c3:43:d1:86:72:aa:47:ad:
ae:bf:5e:50:60:68:dd:5e:73:d7:2c:91:27:50:27:78:7d:b7:
78:bd:7b:10:e3:e3:97:2c:c2:fe:db:44:23:c2:4a:e8:90:50:
7b:0e:be:6a:07:3c:c4:7c:a5:90:d0:33:b4:54:99:1d:d0:9b:
04:63:9f:6e:ac:4d:16:c0:d6:3e:49:fb:8a:f3:2d:ed:1e:df:
35:37:fd:96:80:5b:35:39:af:7b:9e:b5:34:18:8a:f9:a1:27:
50:05:e7:f4:10:57:94:73:d5:8d:09:f4:93:de:4d:5b:f9:59:
a4:a1:be:c3:72:f5:26:53:c9:01:88:78:29:88:0a:28:09:95:
fb:34:b7:4e:c3:0a:79:61:b5:6b:a9:7e:e5:77:1a:d0:73:ab:
26:0c:d9:8c:c1:57:00:cf:e2:a0:b1:89:2e:03:6c:4c:ea:fd:
19:04:82:d1:1a:19:35:c2:87:c8:7f:28:d9:e5:26:85:02:10:
8e:96:07:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:08:04 2025 by rpki-client