Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1c7cb2-769c-47ae-b5c5-08942b454998/1/k_uwe0_hbp0DrMLcpHMI8wGcruA.roa
File: k_uwe0_hbp0DrMLcpHMI8wGcruA.roa (raw, json)
Hash identifier: qbYK3P/JMzm2gpspT6OG1E1S38E2GDjqMXcyX1H7Szc=
Subject key identifier: 93:FB:B0:7B:4F:E1:6E:9D:03:AC:C2:DC:A4:73:08:F3:01:9C:AE:E0
Certificate issuer: /CN=3925df798706f90e6d8fd42049555024b73ed369
Certificate serial: 01998A771009E47E8C8A18CE8FEFCB1502D4
Authority key identifier: 39:25:DF:79:87:06:F9:0E:6D:8F:D4:20:49:55:50:24:B7:3E:D3:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OSXfeYcG-Q5tj9QgSVVQJLc-02k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1c7cb2-769c-47ae-b5c5-08942b454998/1/k_uwe0_hbp0DrMLcpHMI8wGcruA.roa
Signing time: Sat 27 Sep 2025 09:18:02 +0000
ROA not before: Sat 27 Sep 2025 09:18:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213222
IP address blocks: 45.134.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1c7cb2-769c-47ae-b5c5-08942b454998/1/OSXfeYcG-Q5tj9QgSVVQJLc-02k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1c7cb2-769c-47ae-b5c5-08942b454998/1/OSXfeYcG-Q5tj9QgSVVQJLc-02k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OSXfeYcG-Q5tj9QgSVVQJLc-02k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:8a:77:10:09:e4:7e:8c:8a:18:ce:8f:ef:cb:15:02:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3925df798706f90e6d8fd42049555024b73ed369
Validity
Not Before: Sep 27 09:18:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=93fbb07b4fe16e9d03acc2dca47308f3019caee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2e:59:00:ec:31:a5:39:0a:68:e2:86:50:0d:
92:4e:89:3f:84:98:df:08:3a:73:87:e9:32:c5:cc:
78:e2:09:c6:25:0d:7c:6b:5e:df:86:d7:ee:7d:62:
86:85:60:57:13:06:40:94:2f:87:80:d7:8b:16:cd:
68:a7:ea:da:8c:e0:5a:ef:6a:1f:98:39:70:fb:4a:
13:35:10:11:4a:fb:8f:8e:72:bb:cd:02:6f:76:cb:
52:23:44:c8:77:78:e5:44:ca:75:d4:36:e6:d1:0a:
ce:fc:59:8a:11:db:0f:b6:7f:9c:8f:64:61:53:74:
52:dd:98:7e:d3:ab:b7:a7:e3:f1:e3:fd:a4:c5:b9:
29:4a:16:a9:cf:8d:34:96:25:b2:39:68:ff:c6:1a:
56:b1:36:54:62:0c:44:b5:54:e0:53:b6:4f:f3:2a:
b3:55:aa:ec:3f:04:56:d1:a2:7a:9c:ab:12:61:c0:
e8:6d:3a:be:82:46:e9:d9:50:76:3b:a8:ad:0c:52:
6a:0b:df:4a:e2:e2:c9:96:75:a0:35:12:5d:05:49:
e7:f3:32:91:20:30:8a:93:ae:49:3c:56:06:9a:ae:
f9:9b:8d:3c:a8:1d:bf:2a:9b:82:d5:8d:b9:56:6b:
92:ba:36:e6:4b:5d:b1:0c:81:1b:fd:2a:13:8c:28:
be:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FB:B0:7B:4F:E1:6E:9D:03:AC:C2:DC:A4:73:08:F3:01:9C:AE:E0
X509v3 Authority Key Identifier:
keyid:39:25:DF:79:87:06:F9:0E:6D:8F:D4:20:49:55:50:24:B7:3E:D3:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OSXfeYcG-Q5tj9QgSVVQJLc-02k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1c7cb2-769c-47ae-b5c5-08942b454998/1/k_uwe0_hbp0DrMLcpHMI8wGcruA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1c7cb2-769c-47ae-b5c5-08942b454998/1/OSXfeYcG-Q5tj9QgSVVQJLc-02k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.97.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:1a:80:cc:d9:3a:f1:bd:d3:5c:bc:95:d4:e5:64:82:2b:e4:
76:af:54:61:b2:c4:7c:69:28:30:0e:34:d1:0e:91:87:18:50:
28:66:36:ce:86:5a:bf:6e:38:33:cc:7e:20:6a:18:ab:5d:f7:
a0:9a:31:3f:a2:16:67:73:71:5d:77:f2:fc:f3:e4:f4:3d:e0:
1b:4c:5c:82:ca:73:5d:db:10:2b:e4:f5:3c:cb:f9:a8:74:8c:
43:3d:62:83:3e:50:73:9b:0a:c3:62:1b:47:33:2d:33:f1:1d:
02:aa:ef:2a:26:84:e4:2c:14:3e:c3:fe:2a:44:6b:61:3f:09:
95:15:c1:7f:c5:f4:0a:0e:55:ce:31:ce:ee:54:80:ae:07:66:
e6:b6:1f:b1:38:a0:f8:d0:4e:d8:a9:77:0f:5e:a1:be:e4:70:
f8:c7:04:5b:e4:97:fb:0d:86:6a:21:a3:9d:37:05:ed:04:9a:
73:dd:16:01:63:0d:20:d7:2c:fb:8e:42:d7:f2:c1:23:95:04:
7c:6c:fe:20:86:d9:10:ce:6b:d1:a7:4c:ab:1a:2a:9f:06:b3:
18:a4:92:6b:1f:7d:40:5b:07:84:cb:24:cf:2a:e6:d3:21:a0:
75:54:16:f1:c7:10:9c:0d:30:30:40:bb:7a:9a:f0:28:dd:c1:
36:41:12:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZmKdxAJ5H6MihjOj+/LFQLUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MjVkZjc5ODcwNmY5MGU2ZDhmZDQyMDQ5NTU1MDI0Yjcz
ZWQzNjkwHhcNMjUwOTI3MDkxODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2ZiYjA3YjRmZTE2ZTlkMDNhY2MyZGNhNDczMDhmMzAxOWNhZWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkS5ZAOwxpTkKaOKGUA2STok/hJjf
CDpzh+kyxcx44gnGJQ18a17fhtfufWKGhWBXEwZAlC+HgNeLFs1op+rajOBa72of
mDlw+0oTNRARSvuPjnK7zQJvdstSI0TId3jlRMp11Dbm0QrO/FmKEdsPtn+cj2Rh
U3RS3Zh+06u3p+Px4/2kxbkpShapz400liWyOWj/xhpWsTZUYgxEtVTgU7ZP8yqz
VarsPwRW0aJ6nKsSYcDobTq+gkbp2VB2O6itDFJqC99K4uLJlnWgNRJdBUnn8zKR
IDCKk65JPFYGmq75m408qB2/KpuC1Y25VmuSujbmS12xDIEb/SoTjCi+eQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJP7sHtP4W6dA6zC3KRzCPMBnK7gMB8GA1UdIwQY
MBaAFDkl33mHBvkObY/UIElVUCS3PtNpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1NYZmVZY0ctUTV0ajlRZ1NWVlFKTGMtMDJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xYzdjYjItNzY5Yy00N2FlLWI1YzUt
MDg5NDJiNDU0OTk4LzEva191d2UwX2hicDBEck1MY3BITUk4d0djcnVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xYzdjYjItNzY5Yy00N2FlLWI1YzUtMDg5NDJiNDU0OTk4
LzEvT1NYZmVZY0ctUTV0ajlRZ1NWVlFKTGMtMDJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYZhMA0G
CSqGSIb3DQEBCwUAA4IBAQAcGoDM2TrxvdNcvJXU5WSCK+R2r1RhssR8aSgwDjTR
DpGHGFAoZjbOhlq/bjgzzH4gahirXfegmjE/ohZnc3Fdd/L88+T0PeAbTFyCynNd
2xAr5PU8y/modIxDPWKDPlBzmwrDYhtHMy0z8R0Cqu8qJoTkLBQ+w/4qRGthPwmV
FcF/xfQKDlXOMc7uVICuB2bmth+xOKD40E7YqXcPXqG+5HD4xwRb5Jf7DYZqIaOd
NwXtBJpz3RYBYw0g1yz7jkLX8sEjlQR8bP4ghtkQzmvRp0yrGiqfBrMYpJJrH31A
WweEyyTPKubTIaB1VBbxxxCcDTAwQLt6mvAo3cE2QRJj
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:25:25 2025 by rpki-client