Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/Ar1fWv1_hIj4CnYUFxQrZL3z4fY.roa
File: Ar1fWv1_hIj4CnYUFxQrZL3z4fY.roa (raw, json)
Hash identifier: 2Bg6bLRcq/VTG+W6Fos0x+p9alJULPJXDplzzBbJIbk=
Subject key identifier: 02:BD:5F:5A:FD:7F:84:88:F8:0A:76:14:17:14:2B:64:BD:F3:E1:F6
Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5
Certificate serial: 0198C8825FCB3AB267736220D699CDD154BE
Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/Ar1fWv1_hIj4CnYUFxQrZL3z4fY.roa
Signing time: Wed 20 Aug 2025 17:24:04 +0000
ROA not before: Wed 20 Aug 2025 17:24:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 185.139.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c8:82:5f:cb:3a:b2:67:73:62:20:d6:99:cd:d1:54:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5
Validity
Not Before: Aug 20 17:24:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02bd5f5afd7f8488f80a761417142b64bdf3e1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f6:57:0a:f4:cb:10:cb:ab:66:17:be:62:ae:
6c:7d:36:81:36:b1:36:ed:3e:7d:ab:3a:8b:4e:92:
05:b6:17:f7:ce:67:bd:8a:fb:6c:fd:e1:75:55:04:
be:e8:63:6d:e2:3c:44:d4:42:d3:2d:53:3d:86:47:
02:20:3a:53:55:93:35:dc:a6:64:5b:f8:42:6f:fd:
2d:4b:e3:8f:5e:36:10:3a:2c:29:5e:81:71:a0:6f:
2a:ae:fd:1c:99:78:9f:e8:c5:51:98:8c:13:15:41:
94:12:ee:54:35:c3:c2:84:15:b4:1e:cd:f0:26:f4:
91:11:35:da:f4:39:d7:af:3a:2f:1f:69:fb:51:a1:
20:f8:b6:81:d6:c4:a1:dd:7c:2d:ce:b6:0a:6b:a5:
0b:da:85:42:04:1e:31:72:1b:e7:1a:85:18:5a:45:
3b:77:80:8f:fc:c2:96:b3:64:0b:82:71:fb:54:d3:
12:a1:2e:68:b0:19:f3:8c:a3:5f:de:2d:f4:5a:a2:
98:44:71:be:9a:4e:5e:9b:ca:d1:ca:99:06:ae:e1:
98:ed:24:b2:8b:55:96:5e:df:21:da:3b:c0:36:d1:
74:70:6a:79:40:07:78:a5:3c:c4:db:31:0a:14:d8:
c4:1e:2a:7b:b0:23:ec:98:53:34:e9:38:78:a1:4d:
cb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BD:5F:5A:FD:7F:84:88:F8:0A:76:14:17:14:2B:64:BD:F3:E1:F6
X509v3 Authority Key Identifier:
keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/Ar1fWv1_hIj4CnYUFxQrZL3z4fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.35.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ff:1a:5c:ca:96:81:5c:bf:1b:eb:ff:74:31:6a:24:85:e8:
02:34:41:b5:09:3b:22:fb:3f:a5:ed:ef:24:bc:76:4e:3e:a1:
34:79:99:48:d3:66:aa:e0:02:1e:61:80:a5:85:70:32:7f:6f:
60:ae:ca:94:a1:fd:c3:58:57:68:f8:17:6f:83:bf:7b:43:9a:
ca:ca:44:0d:01:ee:48:20:e0:00:1d:b2:e6:4c:28:bd:dd:17:
50:b0:5b:14:7a:b0:dc:67:d7:18:74:de:d3:85:36:6d:3d:1b:
ea:d8:62:c2:e3:34:90:9e:09:cf:60:3b:9d:32:d8:1d:5c:9e:
f4:cb:2a:75:2c:a1:7a:9b:66:19:97:fd:69:f3:f0:d1:97:10:
89:92:26:13:54:2f:a0:a4:a5:66:01:e7:95:e8:18:15:11:86:
8b:87:6f:fa:0c:48:7a:58:ed:3e:c6:b9:6e:58:b3:2d:92:ef:
4d:b0:2d:b8:a4:b1:52:f0:04:45:8f:33:f1:85:97:7f:d7:3f:
83:68:20:a4:8e:55:df:83:98:f8:e6:73:a9:87:eb:22:8c:6b:
c5:71:45:2a:83:8f:1b:53:fe:26:50:fb:dd:21:0b:55:74:6e:
4c:db:80:af:5b:92:19:ec:79:d8:c5:1b:60:bf:2f:2c:57:9b:
49:56:b5:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:26:50 2025 by rpki-client