Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZcuP9_ZXbUOn9RzTX2JSL6WswIY.roa
File: ZcuP9_ZXbUOn9RzTX2JSL6WswIY.roa (raw, json)
Hash identifier: a8BuBupIzTvmzAjTtbCbtvIuGFTLoyyqeQVAY0paAsY=
Subject key identifier: 65:CB:8F:F7:F6:57:6D:43:A7:F5:1C:D3:5F:62:52:2F:A5:AC:C0:86
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0198791B4E76115C073F87FEB28F77A3D919
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZcuP9_ZXbUOn9RzTX2JSL6WswIY.roa
Signing time: Tue 05 Aug 2025 07:21:29 +0000
ROA not before: Tue 05 Aug 2025 07:21:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210415
IP address blocks: 31.15.7.0/24 maxlen: 24
45.67.245.0/24 maxlen: 24
45.130.163.0/24 maxlen: 24
45.137.139.0/24 maxlen: 24
45.145.135.0/24 maxlen: 24
91.132.30.0/24 maxlen: 24
185.226.192.0/24 maxlen: 24
185.231.187.0/24 maxlen: 24
185.246.15.0/24 maxlen: 24
201.49.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:1b:4e:76:11:5c:07:3f:87:fe:b2:8f:77:a3:d9:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Aug 5 07:21:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=65cb8ff7f6576d43a7f51cd35f62522fa5acc086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f3:87:f0:3d:e8:8e:9d:d0:36:85:05:25:ac:
69:a1:6e:7f:c9:b2:57:6c:98:f6:aa:25:85:fa:3c:
86:31:14:95:24:64:aa:d1:66:96:9f:a8:2f:6a:d7:
6e:26:0c:e8:31:d8:aa:02:c9:b0:22:e7:b6:16:68:
f9:07:de:d0:2a:f4:e0:8b:85:9f:23:76:ba:02:27:
78:86:69:56:c5:7d:ce:bd:3b:f9:6f:79:20:fe:3f:
9c:67:90:7d:2d:61:f3:93:de:7a:6a:52:42:65:84:
7c:6f:aa:f6:41:86:d3:6f:95:34:64:b5:0c:21:ad:
63:11:24:c3:d1:4b:71:3e:a0:f9:e2:78:c4:f0:00:
0c:10:d7:e6:34:82:9a:25:fc:ae:a3:08:ba:82:61:
6a:e0:aa:16:99:f0:5c:17:ab:e9:00:fe:81:34:46:
2f:42:cd:11:85:de:64:de:b7:66:03:c7:98:a6:61:
3a:16:e0:1f:80:40:b2:82:99:d0:d8:7b:10:6f:a5:
19:86:9b:5f:72:24:b3:88:13:66:4c:99:e5:54:e7:
6e:c7:38:9f:2a:39:24:0a:84:e2:cf:72:f6:1f:d2:
98:16:ba:ff:53:0e:dd:f6:9f:bd:cb:d7:11:50:28:
3c:2d:ab:d9:35:e3:e6:df:2f:e5:44:7e:67:fe:ed:
a2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:CB:8F:F7:F6:57:6D:43:A7:F5:1C:D3:5F:62:52:2F:A5:AC:C0:86
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZcuP9_ZXbUOn9RzTX2JSL6WswIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.7.0/24
45.67.245.0/24
45.130.163.0/24
45.137.139.0/24
45.145.135.0/24
91.132.30.0/24
185.226.192.0/24
185.231.187.0/24
185.246.15.0/24
201.49.189.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:d5:f5:34:48:3d:37:e2:0f:d3:61:83:7d:0f:47:a4:2d:19:
ef:e1:35:93:6b:19:31:96:6f:d6:ac:92:86:db:3d:e4:14:32:
48:ff:fc:e5:02:4e:27:a6:be:60:39:73:c1:71:78:99:79:77:
4d:c2:e0:92:01:83:44:38:74:3e:45:59:c3:b5:e0:bc:f6:c7:
ce:14:d7:bd:2e:25:b5:ca:19:19:71:be:93:66:93:ea:2f:d3:
a8:02:ae:87:55:c0:94:ac:03:a9:88:3d:3a:7e:8f:c0:39:5d:
96:2a:4f:74:28:f1:b8:ea:68:8e:07:17:cf:28:2f:61:71:b6:
9d:ca:d5:49:11:19:ca:f2:4a:bc:37:c4:a5:3d:ca:bf:f2:10:
ea:b8:90:60:d8:56:69:f3:75:15:80:43:73:de:99:5d:88:59:
19:c9:83:bf:58:32:67:f4:79:90:be:65:86:1a:f8:c8:36:56:
3b:ef:ed:01:8e:81:68:63:28:1a:da:50:fb:5d:28:5d:10:e0:
2f:dc:fa:9f:c7:e9:1c:2b:d8:0b:ec:cb:20:c4:df:66:3f:92:
37:3c:b2:8a:7d:1a:9b:ee:10:96:08:b8:4e:33:ec:8f:17:f4:
fc:80:eb:9d:ff:6b:66:d1:96:0f:44:30:22:d5:7a:a5:c9:74:
70:2e:ce:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:57:35 2025 by rpki-client