Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ezb_RXAYbV-ChhtXC9SxcJ0G4Mc.roa
File: ezb_RXAYbV-ChhtXC9SxcJ0G4Mc.roa (raw, json)
Hash identifier: Yzg0pV/z7tvLyn1img0MZbFp07b1DIUmVAFTCQUnHKE=
Subject key identifier: 7B:36:FF:45:70:18:6D:5F:82:86:1B:57:0B:D4:B1:70:9D:06:E0:C7
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01992CD9A64AB6348414024D1EEA928F92E5
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ezb_RXAYbV-ChhtXC9SxcJ0G4Mc.roa
Signing time: Tue 09 Sep 2025 05:01:25 +0000
ROA not before: Tue 09 Sep 2025 05:01:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205949
IP address blocks: 151.241.24.0/24 maxlen: 24
151.242.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:d9:a6:4a:b6:34:84:14:02:4d:1e:ea:92:8f:92:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Sep 9 05:01:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b36ff4570186d5f82861b570bd4b1709d06e0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:e5:17:5d:7a:0f:0c:46:fe:db:d4:99:33:71:
eb:3e:d5:6a:82:97:e7:68:f9:8a:c9:4d:98:9e:d4:
9d:24:ed:66:1c:ef:89:61:37:83:7b:c9:46:66:c6:
31:8c:97:21:c0:ad:36:06:a9:d1:34:9c:91:6c:b4:
34:4f:e6:b9:23:8c:50:d7:76:7c:4a:c7:42:bf:9e:
e0:84:e1:a9:e6:3f:7e:76:1e:dd:d1:85:db:45:09:
5f:a6:a7:d3:59:2a:60:6d:ce:33:75:e9:17:15:93:
bb:b6:a5:8e:83:dd:c9:e7:60:bb:10:c4:b2:d8:ea:
67:15:8a:84:af:73:ae:ce:34:ef:2e:0b:66:69:54:
ec:ae:07:c2:f1:be:2f:9f:a4:38:29:23:aa:68:80:
8d:10:38:e9:51:c1:bd:81:be:75:4e:d8:b4:ef:63:
fd:de:fe:25:6b:69:e6:87:ee:78:19:da:72:43:d0:
51:8b:81:8b:47:58:ba:69:17:00:2d:1b:ea:c2:49:
87:0b:19:07:d8:77:c3:ce:23:39:42:61:82:66:bf:
b6:c8:b8:f8:cc:5d:3a:6d:ae:23:20:b7:bf:14:2c:
60:27:08:00:e1:08:46:30:9d:4a:35:0d:e5:34:3c:
9b:81:a0:58:bf:f4:b8:90:93:bc:2e:fc:41:71:10:
88:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:36:FF:45:70:18:6D:5F:82:86:1B:57:0B:D4:B1:70:9D:06:E0:C7
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ezb_RXAYbV-ChhtXC9SxcJ0G4Mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.241.24.0/24
151.242.44.0/24
Signature Algorithm: sha256WithRSAEncryption
69:d8:aa:48:dd:2a:c7:ee:24:db:f3:d5:e9:00:00:ea:cf:64:
93:59:6f:ba:f5:2e:ff:e4:e8:ee:cb:79:4a:5a:05:bb:1f:c9:
06:ee:d5:24:84:c6:6d:8d:37:20:4e:5c:cf:ef:33:98:4d:51:
7f:00:54:7c:99:73:08:9b:3c:5e:e0:59:35:e8:89:ea:93:86:
4d:4e:8c:1d:fe:05:d5:8b:c5:cf:20:74:db:b0:91:95:b3:01:
0e:b9:7a:1b:14:00:8a:4e:46:c8:ec:a0:aa:e8:e0:8e:db:70:
da:16:a3:e1:7e:ce:94:d4:f8:0a:29:52:3b:09:8a:ea:d3:e9:
ca:5d:b3:24:8c:f2:eb:de:67:2a:e6:52:05:17:8a:a0:32:af:
fa:a0:e4:c5:5f:69:f9:24:f6:6e:df:71:df:6f:4a:a7:93:4f:
c7:ec:d5:7d:38:c2:93:21:52:74:ef:ea:c7:92:10:f6:e6:83:
f4:03:e9:cf:71:5b:b5:e0:4a:77:ce:57:f2:64:e2:96:2d:64:
e8:0e:16:0c:79:f4:09:21:a0:58:b2:aa:41:2a:9c:24:0e:4e:
d5:f8:87:93:52:7a:04:27:9a:69:38:33:27:b2:f8:9a:8f:42:
4e:9e:b0:fb:b9:32:59:29:ae:ca:36:45:17:5d:10:da:e4:1c:
1d:e3:72:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:40:15 2025 by rpki-client