Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UyZ7PItSMyekESZWLqn0Mmnpcsk.roa
File: UyZ7PItSMyekESZWLqn0Mmnpcsk.roa (raw, json)
Hash identifier: A2jlhxNWYsG/Hjpty94k4Z2K3s+bzBoh4futkARIVxE=
Subject key identifier: 53:26:7B:3C:8B:52:33:27:A4:11:26:56:2E:A9:F4:32:69:E9:72:C9
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197BB7B81D5DAFEEE826C7B936D70B92336
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UyZ7PItSMyekESZWLqn0Mmnpcsk.roa
Signing time: Sun 29 Jun 2025 11:38:42 +0000
ROA not before: Sun 29 Jun 2025 11:38:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 10753
IP address blocks: 151.242.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:7b:81:d5:da:fe:ee:82:6c:7b:93:6d:70:b9:23:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 29 11:38:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53267b3c8b523327a41126562ea9f43269e972c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e5:11:de:08:6e:d9:a2:5f:a4:7d:60:58:64:
42:58:df:96:ac:a2:67:01:70:4a:69:a3:6f:50:87:
fd:08:1b:a6:1d:a0:16:d9:14:c8:52:89:a5:bd:d5:
ed:b8:bb:87:c6:23:f6:67:cc:83:93:31:0e:df:80:
8a:01:17:65:d6:c4:16:8e:4b:e6:a2:d2:31:d0:61:
f3:3d:23:4f:af:59:4a:b8:f6:33:be:ec:f3:15:d0:
37:d5:2e:a8:32:bc:37:93:ef:4b:15:a9:b9:b0:9b:
e8:7b:0c:3c:87:b5:8e:0c:54:cc:16:73:02:07:42:
e2:61:87:f5:95:92:3a:d6:4c:95:d3:35:16:9d:87:
99:26:15:25:06:ed:40:61:1b:2e:18:1d:21:ef:74:
73:54:95:e9:e9:03:4f:0b:a0:64:39:3d:97:e4:27:
44:b4:2c:da:9d:58:d7:c5:a8:b9:9d:02:3e:69:5f:
af:d6:5f:ee:a9:ff:54:3a:1d:9e:34:1d:60:5e:26:
1b:3d:8c:11:97:0d:b9:ba:68:0f:59:44:4e:58:87:
27:e2:88:ac:25:0b:f0:fb:b5:ec:60:70:00:aa:73:
89:58:02:68:ec:92:0c:1e:94:8f:09:1d:09:11:aa:
5e:74:08:a2:2a:0d:33:4c:cf:0c:76:a4:f1:ec:5c:
89:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:26:7B:3C:8B:52:33:27:A4:11:26:56:2E:A9:F4:32:69:E9:72:C9
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UyZ7PItSMyekESZWLqn0Mmnpcsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.180.0/22
Signature Algorithm: sha256WithRSAEncryption
48:4e:f5:04:ab:2b:45:68:d3:b6:e6:0a:ac:f5:bb:00:61:0d:
2d:5c:34:8c:cb:15:b4:b4:f7:63:b8:12:c7:32:60:d1:da:14:
0b:ff:a2:d0:5a:2a:ba:49:e4:61:71:fa:dd:10:3f:95:6d:e4:
69:8a:5c:d6:d9:f8:2b:5b:1f:e4:ce:f2:74:fd:05:b7:c7:e1:
4b:5d:79:f5:ca:bf:91:47:90:71:cc:10:48:b9:b6:62:42:81:
04:57:b1:98:e2:33:7b:31:9a:91:96:6c:0b:f8:ce:a6:86:37:
bb:c2:0a:e6:eb:33:62:a1:93:b2:3a:0f:f2:3a:38:39:45:a7:
c2:9d:3d:97:54:60:a7:08:d8:ad:74:76:01:5f:8e:8c:38:80:
89:6d:ed:9a:92:dd:1f:58:e1:8d:92:d6:c4:e8:f3:76:3f:8a:
c5:cd:f7:1b:39:e5:6c:5d:cf:5f:f0:96:7d:af:9a:09:21:f6:
18:5d:2e:d5:32:8d:6e:4c:02:cc:dd:18:f8:e8:a2:7e:73:59:
5e:63:bb:32:34:4e:55:33:87:f1:9f:33:b0:ad:65:48:81:4c:
a1:0e:2f:44:25:fc:f8:e9:c6:57:b5:6b:c0:a0:a2:c3:d5:14:
08:29:3d:6f:94:90:a1:e7:09:f0:e8:8b:ed:7b:d8:ad:6b:cf:
0b:31:04:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 07:00:05 2025 by rpki-client