Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/E9Jwdio8wX_xqnKuXI9fZ_oHtDc.roa
File: E9Jwdio8wX_xqnKuXI9fZ_oHtDc.roa (raw, json)
Hash identifier: ECAIS90IaPHlQjI+lVlWinjaB8CNUQFfSBH/sS9eBjs=
Subject key identifier: 13:D2:70:76:2A:3C:C1:7F:F1:AA:72:AE:5C:8F:5F:67:FA:07:B4:37
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 019975EBADA85D491C6868BAC1D18DD7A97B
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/E9Jwdio8wX_xqnKuXI9fZ_oHtDc.roa
Signing time: Tue 23 Sep 2025 09:33:23 +0000
ROA not before: Tue 23 Sep 2025 09:33:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 400342
IP address blocks: 45.152.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:75:eb:ad:a8:5d:49:1c:68:68:ba:c1:d1:8d:d7:a9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Sep 23 09:33:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13d270762a3cc17ff1aa72ae5c8f5f67fa07b437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:8d:c1:1b:40:2a:97:e1:6d:53:bc:f1:be:d3:
f6:e5:ad:87:7c:7e:ba:bb:20:01:17:5e:83:d1:83:
ac:74:95:33:74:6d:11:d6:f8:fe:fb:80:18:a5:51:
cc:c9:cb:90:7f:27:b5:57:55:6d:4e:c9:95:4b:66:
9c:c7:e6:cf:e2:6b:5c:f6:e3:8a:c0:88:d3:d5:45:
74:a9:67:fc:67:c8:a6:cd:1a:9a:7c:e8:fd:31:3c:
17:b4:93:cd:46:b2:e2:40:8f:35:64:46:aa:7f:88:
66:e9:26:98:ea:72:82:b6:fd:1b:e0:32:ad:7c:65:
9f:c3:76:23:0b:ec:fd:fe:c1:d3:55:91:bb:5e:b2:
57:b8:44:d1:56:e1:25:5b:f7:f9:1d:ef:4f:ec:7a:
ca:da:93:c4:ce:17:fe:a2:7a:b6:d8:c9:f8:06:17:
ce:32:4e:17:bc:88:fe:bf:bb:8f:e3:ac:e4:af:e9:
98:9b:17:3e:79:18:4d:97:a5:fc:ef:93:c0:7d:8c:
ef:07:41:e6:ef:f4:0b:d2:bc:58:41:7c:fb:d6:fc:
7d:a5:f9:ec:24:60:6c:ee:fa:bf:f5:45:d9:b0:1b:
7b:2b:cb:d3:52:66:1f:f7:d0:52:35:8b:d6:c5:a6:
01:f2:77:20:29:ee:be:75:04:98:03:05:05:9e:8b:
a4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D2:70:76:2A:3C:C1:7F:F1:AA:72:AE:5C:8F:5F:67:FA:07:B4:37
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/E9Jwdio8wX_xqnKuXI9fZ_oHtDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.179.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b0:9d:e5:c1:2e:7b:2a:af:ee:b1:9c:2f:58:75:e5:7b:2a:
cf:af:cb:0d:ff:36:5f:52:49:44:01:82:04:3f:1c:1e:14:62:
f4:c7:b6:5e:4c:6b:5e:b9:cb:f2:ca:c8:ad:7a:0c:53:64:88:
c7:a0:22:23:8a:93:83:67:46:4f:cf:ab:e7:c5:92:40:ab:17:
7a:c5:e5:8b:dd:7a:1e:85:be:b3:6c:78:51:f5:2a:61:73:35:
81:6c:32:5a:20:53:1d:b5:1b:52:a0:a4:a8:c6:15:9e:5c:60:
77:5b:aa:cf:09:8a:56:d8:4a:14:c8:cd:ee:ca:6e:f0:39:50:
80:40:6f:74:71:21:8d:27:14:c7:df:a7:92:c9:09:93:61:a5:
c7:36:8e:1a:82:ff:a3:c9:b0:71:93:33:87:c6:d5:e3:8b:d5:
7a:dc:bf:40:8e:ea:f4:49:e6:9f:8a:56:b9:02:2f:53:6d:27:
b2:d6:71:63:ed:21:0e:94:79:66:24:56:59:97:05:bc:2f:65:
d3:29:e9:0a:be:67:63:a6:72:98:81:5d:21:32:ff:5c:f8:7a:
72:6d:a5:ed:3a:91:85:78:7b:d1:46:93:0d:c5:f4:3c:00:5e:
03:5b:1c:5a:66:6f:48:80:cc:d5:6b:2d:ec:38:7d:74:44:ac:
3f:5e:e4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:25:07 2025 by rpki-client