Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/LpSLmweZelcbmo_GEc5eKMwl93U.roa
File: LpSLmweZelcbmo_GEc5eKMwl93U.roa (raw, json)
Hash identifier: TzKH9YhRXqzJEB4G1poS9vr/nADNVhJwt9Obg9D7eRo=
Subject key identifier: 2E:94:8B:9B:07:99:7A:57:1B:9A:8F:C6:11:CE:5E:28:CC:25:F7:75
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 0199C3155312E79CDB4DA1DB56EBDE782917
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/LpSLmweZelcbmo_GEc5eKMwl93U.roa
Signing time: Wed 08 Oct 2025 09:09:38 +0000
ROA not before: Wed 08 Oct 2025 09:09:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 212.100.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c3:15:53:12:e7:9c:db:4d:a1:db:56:eb:de:78:29:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Oct 8 09:09:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e948b9b07997a571b9a8fc611ce5e28cc25f775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:03:a5:68:b0:a1:0a:60:98:ac:24:9c:81:
02:81:39:14:0c:25:df:78:d7:13:ab:07:43:1b:2f:
77:62:5c:2a:55:15:c6:93:25:f3:b6:fe:54:bb:5d:
f0:84:eb:80:dd:e6:94:7f:75:37:20:31:72:f1:0d:
ed:23:5f:ef:df:03:39:e0:6d:cf:47:b6:32:f7:c4:
ca:40:23:83:0e:e5:9c:77:b7:c2:50:37:fc:02:62:
47:69:f5:e3:e3:db:19:84:6e:d8:01:2e:19:19:da:
97:d2:29:f3:a4:c4:5f:ea:9b:22:cc:17:b7:2e:3a:
be:a1:08:34:c7:8e:ca:e0:e7:be:da:14:48:8a:b0:
92:01:df:de:ef:ba:81:93:ee:7e:a1:fe:9a:e3:9d:
1e:15:a1:d4:8e:a3:28:8c:b8:ed:9b:d6:2b:e0:69:
74:f6:ca:1e:a8:37:7e:8d:c2:c1:72:c3:a2:80:d1:
9e:b6:f4:ec:ce:c4:fe:04:85:9c:0d:a2:ce:0d:66:
b1:da:b2:4c:87:1f:15:1a:fe:cc:dc:9a:32:42:dc:
81:37:60:6c:44:ff:9b:c1:1a:d9:bd:16:ec:d4:75:
7b:2b:83:e8:72:8c:9c:f0:af:1c:07:03:d3:6f:0d:
64:41:d4:b0:58:49:8a:93:55:05:c2:49:a5:b8:14:
90:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:94:8B:9B:07:99:7A:57:1B:9A:8F:C6:11:CE:5E:28:CC:25:F7:75
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/LpSLmweZelcbmo_GEc5eKMwl93U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.100.167.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ff:25:95:d7:b5:4e:2c:04:b0:d4:19:05:5b:70:85:1a:58:
a7:62:7d:ca:a8:2c:4d:0b:12:99:7f:5a:75:ce:c9:bb:a9:b0:
75:cc:22:0f:0e:9f:92:8c:14:a5:4e:e0:ae:e0:4c:34:ab:10:
fb:e9:91:c4:a6:f2:75:ea:da:6f:aa:2d:eb:33:a4:11:d4:f8:
4e:a9:00:2a:2b:c9:08:5c:1a:61:27:f6:33:cd:0b:de:df:e5:
f4:e1:88:4e:42:c3:c5:f0:fd:47:18:84:91:8b:ef:ce:00:c0:
42:87:3b:e6:e1:19:c5:cf:47:a4:db:4c:b9:e9:9c:6c:e0:f3:
3f:66:60:01:aa:66:85:e9:db:5a:f1:75:b8:0a:14:82:69:fa:
fb:20:8e:5a:b8:cd:e6:fa:44:45:dd:5c:53:6f:d5:e9:e5:a9:
c2:82:00:bd:9c:0c:b3:86:2f:e8:ab:23:1f:3c:8b:10:33:62:
3e:71:8c:9d:73:02:d6:e0:77:f0:cf:82:5b:27:30:eb:88:99:
82:1b:ea:86:38:e2:ca:98:94:45:ae:f8:87:23:74:2a:3a:65:
c9:79:19:05:12:36:f9:ba:03:fb:db:c5:58:df:8b:11:19:0f:
c1:0d:b0:f9:ac:b6:c2:c1:67:75:30:ac:03:aa:46:b3:61:24:
ce:70:f5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:57:46 2025 by rpki-client