Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UIudOGrcmif6iaq16yQYozOyuSI.roa
File: UIudOGrcmif6iaq16yQYozOyuSI.roa (raw, json)
Hash identifier: 4ydMkPLiIgunGLubgeqiiLd8RwPKvSkfDSSI/xAQ/Q8=
Subject key identifier: 50:8B:9D:38:6A:DC:9A:27:FA:89:AA:B5:EB:24:18:A3:33:B2:B9:22
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01977378164E35F3D0B2A82CA13DB42930CB
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UIudOGrcmif6iaq16yQYozOyuSI.roa
Signing time: Sun 15 Jun 2025 12:02:19 +0000
ROA not before: Sun 15 Jun 2025 12:02:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44486
IP address blocks: 151.242.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 11:18:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:78:16:4e:35:f3:d0:b2:a8:2c:a1:3d:b4:29:30:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 15 12:02:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=508b9d386adc9a27fa89aab5eb2418a333b2b922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fe:1e:e9:d7:9b:be:8d:88:07:69:31:e8:1c:
e9:03:68:38:d8:27:0d:29:f6:60:ce:c0:94:47:ca:
5e:e3:73:da:7e:6f:da:f9:73:75:e1:07:44:6a:59:
07:e3:39:66:61:88:44:16:be:a0:b4:cc:f9:a7:0c:
a3:6e:1a:5a:df:46:8a:0e:4e:77:0f:52:38:65:18:
70:e1:79:a9:e2:76:9e:63:79:b3:ce:d2:46:69:7a:
34:f9:c1:ac:cc:fb:a5:46:69:c5:4b:55:d7:33:dd:
99:d7:58:64:6d:c9:2a:40:cc:61:c2:3d:7d:d7:3a:
6a:73:5a:c9:ea:9d:4f:bf:09:62:e7:f4:fd:24:18:
62:8e:83:b4:66:5c:2f:14:0d:da:1d:84:bd:bc:a4:
e3:ee:82:88:65:94:85:0b:c8:a9:4f:d0:c5:8e:82:
1e:c5:1a:66:ad:3c:d7:fc:43:18:a3:c5:46:24:39:
67:40:10:de:83:0a:35:c9:c2:9b:98:a4:c7:50:6b:
08:3c:04:f7:c5:97:c2:2c:6a:89:ff:27:5b:f2:2b:
1d:02:ac:20:57:e9:79:9e:2a:dc:16:37:ef:7a:2e:
e8:9c:45:56:dc:93:50:bb:07:53:8f:26:9e:7e:a1:
05:27:93:dd:c2:5a:f7:08:72:37:6b:f3:8f:c9:2e:
d4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8B:9D:38:6A:DC:9A:27:FA:89:AA:B5:EB:24:18:A3:33:B2:B9:22
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UIudOGrcmif6iaq16yQYozOyuSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.156.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:24:af:5f:26:c3:f6:5a:31:af:7c:e2:4a:5a:85:60:0b:26:
6a:4b:28:87:02:d7:3e:5d:22:a0:b0:92:b2:b9:12:9d:74:11:
ae:79:0d:b9:90:ad:1a:7f:35:c9:ef:6a:1e:0c:78:0b:85:70:
98:22:9c:22:de:70:a7:a4:05:c4:56:25:3b:89:a4:4a:e6:75:
08:21:9a:49:4e:22:2c:b5:ca:be:f0:6f:97:e2:55:ac:7e:38:
6b:6e:e9:f1:15:49:47:6b:65:c4:4d:7e:82:1e:24:38:bb:f4:
b2:68:60:2d:0a:6a:46:a4:be:e5:fd:90:8e:8c:b5:45:36:0e:
2f:6c:9c:c6:70:fe:35:9a:4f:d2:20:15:e3:56:b3:b4:23:07:
e9:f7:c7:49:03:61:43:54:03:14:a5:f5:22:39:51:76:43:ff:
38:39:a0:90:3c:ae:c4:f0:d7:4d:e1:0d:6a:f3:ed:51:65:d9:
b3:59:be:b1:2c:bb:6d:7f:c7:61:7f:1e:8a:7d:5e:62:1f:40:
38:cd:81:bc:d8:35:e7:3f:42:50:d2:04:0d:3e:d1:0c:77:eb:
04:c0:00:22:d4:3a:07:13:c3:df:12:4e:84:8c:19:dc:01:8f:
c8:01:6c:15:ac:5a:fa:aa:ef:7d:63:41:62:81:9d:23:66:ad:
dc:84:37:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZdzeBZONfPQsqgsoT20KTDLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjUwNjE1MTIwMjE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDhiOWQzODZhZGM5YTI3ZmE4OWFhYjVlYjI0MThhMzMzYjJiOTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/4e6debvo2IB2kx6BzpA2g42CcN
KfZgzsCUR8pe43Pafm/a+XN14QdEalkH4zlmYYhEFr6gtMz5pwyjbhpa30aKDk53
D1I4ZRhw4Xmp4naeY3mzztJGaXo0+cGszPulRmnFS1XXM92Z11hkbckqQMxhwj19
1zpqc1rJ6p1Pvwli5/T9JBhijoO0ZlwvFA3aHYS9vKTj7oKIZZSFC8ipT9DFjoIe
xRpmrTzX/EMYo8VGJDlnQBDegwo1ycKbmKTHUGsIPAT3xZfCLGqJ/ydb8isdAqwg
V+l5nircFjfvei7onEVW3JNQuwdTjyaefqEFJ5Pdwlr3CHI3a/OPyS7UxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFCLnThq3Jon+omqteskGKMzsrkiMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvVUl1ZE9HcmNtaWY2aWFxMTZ5UVlvek95dVNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/KcMA0G
CSqGSIb3DQEBCwUAA4IBAQAtJK9fJsP2WjGvfOJKWoVgCyZqSyiHAtc+XSKgsJKy
uRKddBGueQ25kK0afzXJ72oeDHgLhXCYIpwi3nCnpAXEViU7iaRK5nUIIZpJTiIs
tcq+8G+X4lWsfjhrbunxFUlHa2XETX6CHiQ4u/SyaGAtCmpGpL7l/ZCOjLVFNg4v
bJzGcP41mk/SIBXjVrO0Iwfp98dJA2FDVAMUpfUiOVF2Q/84OaCQPK7E8NdN4Q1q
8+1RZdmzWb6xLLttf8dhfx6KfV5iH0A4zYG82DXnP0JQ0gQNPtEMd+sEwAAi1DoH
E8PfEk6EjBncAY/IAWwVrFr6qu99Y0FigZ0jZq3chDdB
-----END CERTIFICATE-----
Generated at Mon Jun 30 20:27:21 2025 by rpki-client