Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/bl1f-poGtLSo5yagSqXyluvVirs.roa
File: bl1f-poGtLSo5yagSqXyluvVirs.roa (raw, json)
Hash identifier: cpYv0yRUyLmXhceQZE6Ke54aLJ1RjsI2p0KUhTzYBqQ=
Subject key identifier: 6E:5D:5F:FA:9A:06:B4:B4:A8:E7:26:A0:4A:A5:F2:96:EB:D5:8A:BB
Certificate issuer: /CN=bea649ef6030fc80848fdfe21d4321ac8011fd10
Certificate serial: 0198BD91C6DDED27934EC2F6FDA21E90A62A
Authority key identifier: BE:A6:49:EF:60:30:FC:80:84:8F:DF:E2:1D:43:21:AC:80:11:FD:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/bl1f-poGtLSo5yagSqXyluvVirs.roa
Signing time: Mon 18 Aug 2025 14:25:04 +0000
ROA not before: Mon 18 Aug 2025 14:25:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209559
IP address blocks: 45.91.127.0/24 maxlen: 24
2a0e:f43:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 20:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:bd:91:c6:dd:ed:27:93:4e:c2:f6:fd:a2:1e:90:a6:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bea649ef6030fc80848fdfe21d4321ac8011fd10
Validity
Not Before: Aug 18 14:25:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e5d5ffa9a06b4b4a8e726a04aa5f296ebd58abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:92:96:1b:e4:27:b8:eb:dc:2b:65:39:0c:d6:
f7:43:bc:ee:db:1f:16:e7:e8:eb:fa:9c:e1:7a:b5:
0e:94:82:e7:80:d7:18:24:7c:f3:b0:80:94:6f:a8:
4c:42:a8:de:7f:61:8f:cd:8c:1d:dd:b2:40:0c:f2:
58:5c:f0:07:c9:89:30:00:78:57:47:66:73:67:ff:
3f:fe:8b:13:94:77:40:5b:d1:9d:a8:f4:16:b8:2f:
5d:47:23:6b:e8:17:d0:0c:47:79:0b:c8:c4:32:e7:
2b:9e:41:58:8a:e4:e6:95:1e:c2:ee:3c:62:ee:d3:
d6:59:23:15:ed:b7:f6:74:06:28:90:eb:fa:7f:61:
3f:a3:41:e6:b7:29:4a:75:9b:cd:83:b8:18:af:3f:
c5:29:f5:aa:5a:95:8f:a0:c4:02:0f:07:e3:50:66:
b6:35:d6:a1:9c:4d:f6:55:71:11:54:3a:7e:d3:0b:
ec:ab:0c:91:bc:56:62:ac:d7:a9:c2:0d:60:e1:c6:
5d:6f:59:dd:5e:97:df:57:63:2e:1b:91:6f:37:f0:
9a:9d:c7:60:37:9a:b8:13:8c:79:86:cf:fe:90:af:
b8:36:36:3b:a1:8a:51:47:7c:c7:0a:92:9d:7c:d2:
d7:9f:7f:95:55:87:4c:4e:91:0e:fe:54:0e:81:ca:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5D:5F:FA:9A:06:B4:B4:A8:E7:26:A0:4A:A5:F2:96:EB:D5:8A:BB
X509v3 Authority Key Identifier:
keyid:BE:A6:49:EF:60:30:FC:80:84:8F:DF:E2:1D:43:21:AC:80:11:FD:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/bl1f-poGtLSo5yagSqXyluvVirs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/19455b-d2cf-4e5f-bf58-21df55ba9ebf/1/vqZJ72Aw_ICEj9_iHUMhrIAR_RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.127.0/24
IPv6:
2a0e:f43:2::/48
Signature Algorithm: sha256WithRSAEncryption
75:6f:2f:a6:cb:ed:37:85:d1:ac:df:8d:20:b3:b2:e7:0a:5b:
d6:04:ad:8f:18:4c:68:11:78:43:f8:8f:3e:b4:31:78:01:04:
4e:48:a9:c8:81:d7:b5:d7:fb:07:b9:20:ef:62:b2:78:56:45:
96:d1:db:c1:34:84:3d:64:30:86:99:16:43:b8:fb:12:f5:4e:
f0:9f:6d:c5:ae:1a:8f:a8:d4:79:e2:ff:37:3f:fb:06:09:b9:
56:b2:04:4e:24:06:14:36:bc:75:d3:63:0b:13:6f:0a:71:a7:
f4:da:b5:b8:4e:bb:a2:07:88:09:fa:83:6d:4c:0a:b0:28:62:
f2:13:0d:76:28:8d:63:c5:dd:af:d4:e8:3b:bc:61:38:81:fe:
13:48:57:38:82:59:2d:46:87:d8:da:80:96:1b:0a:74:9d:22:
00:ae:9b:f5:2c:ca:b7:2a:94:4a:6b:a6:b7:30:c3:ce:f4:38:
b9:59:b8:0c:18:ab:ae:cb:dd:52:a5:80:97:d2:72:e8:76:0a:
44:62:96:12:45:6a:e8:e8:c0:a9:f5:72:2c:59:59:0e:77:cc:
60:83:86:aa:e3:6c:17:9c:8f:62:fa:c4:af:73:9d:59:5d:1c:
83:49:71:1d:cf:f5:90:15:5b:7c:ea:e0:20:ee:6e:41:e1:c3:
9e:c7:3c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:42:35 2025 by rpki-client