Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/seyE655E00Ui5AmzDsrocf7iZ7M.roa
File: seyE655E00Ui5AmzDsrocf7iZ7M.roa (raw, json)
Hash identifier: hg0bIiMEtoNG+cAWlL9U4vPkZRjE6mCnPMXCvsFPWlk=
Subject key identifier: B1:EC:84:EB:9E:44:D3:45:22:E4:09:B3:0E:CA:E8:71:FE:E2:67:B3
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196B3A14EAD328B9CF389844471A5376CE0
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/seyE655E00Ui5AmzDsrocf7iZ7M.roa
Signing time: Fri 09 May 2025 06:00:15 +0000
ROA not before: Fri 09 May 2025 06:00:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 11878
IP address blocks: 37.202.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:a1:4e:ad:32:8b:9c:f3:89:84:44:71:a5:37:6c:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 9 06:00:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b1ec84eb9e44d34522e409b30ecae871fee267b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:87:2a:19:85:17:cd:bc:44:2e:8f:4c:68:95:
39:93:15:2c:a3:f3:a9:1f:78:8a:d0:7c:bf:d7:29:
bf:a9:64:4b:55:4d:84:c2:24:9a:4c:e2:2a:f6:c0:
6b:f4:b0:02:fa:80:f5:d5:ab:dc:8d:83:e7:08:af:
f2:46:a5:f0:00:c2:e0:af:7c:08:95:b2:80:4a:59:
a4:8c:c2:f9:37:2e:08:b4:8d:9f:32:6a:35:95:44:
8c:73:9c:e3:b7:63:e5:88:9c:59:4c:c6:25:32:b3:
6d:d3:27:c3:59:a9:3c:81:93:87:eb:bd:8c:22:ed:
8b:17:dd:0e:cd:b2:6f:ac:df:94:07:86:6f:d9:ed:
60:d6:f9:ba:07:11:3c:8c:52:c7:4e:74:db:78:db:
1d:64:9d:5f:18:d1:90:0c:d0:f4:4e:72:e1:9b:b7:
d9:71:4b:22:e6:f7:66:25:5b:ce:ed:2c:92:bd:0d:
66:05:20:df:c3:51:54:39:3e:1c:03:72:b0:d1:a2:
2d:57:a4:ed:05:01:07:fd:12:b7:15:ec:14:82:5f:
62:2e:05:98:d4:2d:8a:68:47:c5:6f:6b:d8:c1:83:
19:fa:62:26:64:81:17:22:40:0f:6f:c4:d0:32:07:
e8:71:73:3a:2d:f7:44:f5:90:ce:5b:0e:00:2d:c9:
71:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:EC:84:EB:9E:44:D3:45:22:E4:09:B3:0E:CA:E8:71:FE:E2:67:B3
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/seyE655E00Ui5AmzDsrocf7iZ7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.204.0/24
Signature Algorithm: sha256WithRSAEncryption
61:f9:36:72:79:ec:70:99:7d:6a:c2:1f:62:47:ac:b8:2f:f5:
ed:a4:16:26:c1:5f:06:27:af:5f:1c:70:f5:07:25:0d:cb:83:
bf:7f:ce:f9:18:40:04:32:ed:74:f0:74:0e:1a:e2:04:a9:08:
1b:5a:b9:01:23:21:b9:5d:e5:fb:7a:a6:52:05:47:1e:d2:2e:
71:c3:7a:d7:f8:ee:cd:af:3d:3a:61:b3:be:ab:e5:67:15:50:
9e:ba:d5:2d:96:c5:e6:b4:12:19:9c:74:bb:15:5b:91:f1:ed:
d2:50:ff:d3:24:ef:df:2a:8d:f5:f9:c6:7f:6c:6b:7d:02:74:
ad:9a:40:ed:a5:84:e0:aa:63:cb:0d:20:78:c2:b1:19:6f:9d:
35:66:29:c5:46:51:d6:e1:61:ee:fc:1c:33:b9:98:a2:a7:61:
1d:55:01:0c:29:06:f3:3c:4b:8d:44:6b:56:49:27:81:a7:30:
49:92:3c:57:7a:e2:0f:d7:28:70:9f:66:96:1d:d9:be:ee:5d:
2d:0f:f8:e5:de:7d:3d:aa:8f:7e:73:5a:9d:65:a0:09:0c:c4:
be:05:8c:b4:eb:55:81:37:4c:d4:f9:96:2a:61:f6:af:8f:d5:
f8:f2:6d:f4:4e:7e:44:e1:6e:be:c1:33:19:52:4b:96:73:c3:
77:71:a8:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 08:15:21 2025 by rpki-client