Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/uWP5tLXHh8TegI8ITQ2fajYk7Bk.roa
File: uWP5tLXHh8TegI8ITQ2fajYk7Bk.roa (raw, json)
Hash identifier: p7cwv0kZBwvZxjXniYwKfKYOtSo5mCVTyzW9YFAlMeU=
Subject key identifier: B9:63:F9:B4:B5:C7:87:C4:DE:80:8F:08:4D:0D:9F:6A:36:24:EC:19
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0197B293D633FD3D2B9504866B68FD4AB8FF
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/uWP5tLXHh8TegI8ITQ2fajYk7Bk.roa
Signing time: Fri 27 Jun 2025 18:08:42 +0000
ROA not before: Fri 27 Jun 2025 18:08:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 93.152.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b2:93:d6:33:fd:3d:2b:95:04:86:6b:68:fd:4a:b8:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jun 27 18:08:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b963f9b4b5c787c4de808f084d0d9f6a3624ec19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9e:ad:74:56:51:bf:0a:2a:3a:04:7d:55:ab:
d5:cf:af:db:df:43:c7:e1:6e:43:14:d2:ad:b4:50:
01:69:3d:4a:71:1e:ae:4c:f0:89:f0:dd:18:7b:12:
7a:43:7c:55:f0:ae:9d:07:e8:9b:40:9a:1c:7b:34:
c7:9e:ef:9d:9c:2b:4d:0d:ad:19:ed:3a:dd:80:71:
4e:07:98:7b:3d:fc:b4:05:b4:da:99:b8:10:de:b8:
f7:41:ad:9b:8d:cf:e7:0b:77:65:f5:b1:4d:5f:10:
a9:82:4b:f7:67:fa:99:78:eb:27:e1:67:e0:d8:a2:
39:71:d4:41:67:55:92:98:90:87:1d:be:d8:c3:f4:
9c:70:60:60:a2:8d:16:eb:87:d6:75:9f:ee:fc:25:
d8:5f:11:77:6c:a5:e3:31:e2:8d:11:05:46:d0:4b:
e3:f0:c9:58:07:ba:ea:4d:48:7e:fa:f1:fe:5d:50:
e8:3d:ed:51:d2:61:bc:f6:0c:de:21:9c:3f:a8:bb:
fe:d8:01:03:7b:02:0c:27:dd:f5:13:ff:79:e9:a7:
3b:b1:fd:97:b4:58:96:a1:30:5b:82:36:5e:22:b5:
7e:18:4d:b6:48:16:3d:5f:d3:f6:59:3a:76:40:af:
60:a1:c0:c0:c7:0b:e5:9b:a1:43:fd:9f:15:59:21:
c0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:63:F9:B4:B5:C7:87:C4:DE:80:8F:08:4D:0D:9F:6A:36:24:EC:19
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/uWP5tLXHh8TegI8ITQ2fajYk7Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.233.0/24
Signature Algorithm: sha256WithRSAEncryption
88:02:b8:d7:ba:6e:cb:a2:65:97:d5:b4:64:e4:33:4f:a2:78:
af:29:9b:6a:db:ca:d1:b1:d4:e7:ed:7d:0b:08:17:b9:ce:b8:
10:ae:0e:9c:0b:24:10:5c:03:40:fa:02:67:1c:77:7e:2d:48:
e3:84:fa:b2:5b:4a:88:69:53:b2:f3:f6:22:5d:11:1a:83:35:
c2:1c:df:78:0b:18:81:fc:63:f8:99:d7:29:b5:0c:55:00:f7:
43:2f:4d:c9:18:a1:9b:20:cf:3d:3e:e5:fd:02:74:11:17:60:
fe:8f:6e:f6:6a:88:a2:9a:04:6c:0f:22:96:b9:18:f6:7d:56:
5d:34:55:00:ad:f7:fc:41:70:92:65:8a:7c:66:5e:27:54:06:
c7:c2:45:bc:a1:d6:e2:be:2a:fe:e8:f7:27:d5:6e:78:56:f2:
4a:9a:a5:2e:84:b0:ce:4a:ba:90:46:5d:7f:a0:68:fa:c8:aa:
a2:c3:70:f3:79:68:44:d3:11:ff:2a:d9:aa:11:4f:28:d2:8a:
2a:78:13:18:1e:0b:c7:f5:b1:81:19:fd:26:1f:31:e4:bd:5f:
a4:63:d3:04:14:37:e5:61:c2:33:e1:5c:18:46:18:a5:a2:12:
1e:fc:d6:d1:99:c1:0c:62:01:c7:bc:77:26:61:ac:aa:c0:2d:
20:a4:9b:68
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZeyk9Yz/T0rlQSGa2j9Srj/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjUwNjI3MTgwODQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTYzZjliNGI1Yzc4N2M0ZGU4MDhmMDg0ZDBkOWY2YTM2MjRlYzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkp6tdFZRvwoqOgR9VavVz6/b30PH
4W5DFNKttFABaT1KcR6uTPCJ8N0YexJ6Q3xV8K6dB+ibQJocezTHnu+dnCtNDa0Z
7TrdgHFOB5h7Pfy0BbTambgQ3rj3Qa2bjc/nC3dl9bFNXxCpgkv3Z/qZeOsn4Wfg
2KI5cdRBZ1WSmJCHHb7Yw/SccGBgoo0W64fWdZ/u/CXYXxF3bKXjMeKNEQVG0Evj
8MlYB7rqTUh++vH+XVDoPe1R0mG89gzeIZw/qLv+2AEDewIMJ931E/956ac7sf2X
tFiWoTBbgjZeIrV+GE22SBY9X9P2WTp2QK9gocDAxwvlm6FD/Z8VWSHAJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLlj+bS1x4fE3oCPCE0Nn2o2JOwZMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvdVdQNXRMWEhoOFRlZ0k4SVRRMmZhallrN0JrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXZjpMA0G
CSqGSIb3DQEBCwUAA4IBAQCIArjXum7LomWX1bRk5DNPonivKZtq28rRsdTn7X0L
CBe5zrgQrg6cCyQQXANA+gJnHHd+LUjjhPqyW0qIaVOy8/YiXREagzXCHN94CxiB
/GP4mdcptQxVAPdDL03JGKGbIM89PuX9AnQRF2D+j272aoiimgRsDyKWuRj2fVZd
NFUArff8QXCSZYp8Zl4nVAbHwkW8odbivir+6Pcn1W54VvJKmqUuhLDOSrqQRl1/
oGj6yKqiw3DzeWhE0xH/KtmqEU8o0ooqeBMYHgvH9bGBGf0mHzHkvV+kY9MEFDfl
YcIz4VwYRhilohIe/NbRmcEMYgHHvHcmYayqwC0gpJto
-----END CERTIFICATE-----
Generated at Wed Jul 2 16:07:07 2025 by rpki-client