Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/06V3VaUZTA2VNrAmfMPwriHCC8o.roa
File: 06V3VaUZTA2VNrAmfMPwriHCC8o.roa (raw, json)
Hash identifier: B8KCdDKqqqK6XMJFje2IhjCWSjFWCC38seVzoSN+ZhY=
Subject key identifier: D3:A5:77:55:A5:19:4C:0D:95:36:B0:26:7C:C3:F0:AE:21:C2:0B:CA
Certificate issuer: /CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Certificate serial: 0197A6BE8E0A3CB531740F6641ECA11B2C93
Authority key identifier: A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/06V3VaUZTA2VNrAmfMPwriHCC8o.roa
Signing time: Wed 25 Jun 2025 10:59:55 +0000
ROA not before: Wed 25 Jun 2025 10:59:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206996
IP address blocks: 5.249.160.0/24 maxlen: 24
5.249.161.0/24 maxlen: 24
5.249.162.0/24 maxlen: 24
5.249.164.0/24 maxlen: 24
45.141.36.0/24 maxlen: 24
45.141.37.0/24 maxlen: 24
45.146.252.0/24 maxlen: 24
45.146.253.0/24 maxlen: 24
45.146.254.0/24 maxlen: 24
45.146.255.0/24 maxlen: 24
92.42.44.0/24 maxlen: 24
92.42.45.0/24 maxlen: 24
92.42.46.0/24 maxlen: 24
92.42.47.0/24 maxlen: 24
134.255.216.0/24 maxlen: 24
134.255.217.0/24 maxlen: 24
134.255.218.0/24 maxlen: 24
134.255.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:a6:be:8e:0a:3c:b5:31:74:0f:66:41:ec:a1:1b:2c:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Validity
Not Before: Jun 25 10:59:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d3a57755a5194c0d9536b0267cc3f0ae21c20bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:47:be:53:93:c3:11:7a:51:40:72:fb:a3:98:
48:a6:79:9d:03:09:f6:54:5a:4e:d0:35:23:e6:d6:
64:39:97:8c:09:bb:41:5b:42:02:2b:2c:1b:76:1c:
8d:bb:04:64:10:db:cd:08:44:47:00:b2:71:46:a2:
96:1a:2d:c3:01:00:12:77:97:ab:7e:a9:7e:1a:8c:
cd:d4:e2:06:ee:c6:ef:0d:63:32:25:ae:88:e8:4f:
c2:ba:3b:02:7b:aa:77:4a:a8:69:1b:4d:ec:da:5b:
45:53:28:63:40:1e:c4:a8:8e:f3:75:3d:d7:ef:2a:
23:68:35:56:35:59:ef:2d:31:92:87:3e:73:62:7d:
ba:3d:ae:93:b1:6f:ca:ae:a1:76:2c:fe:c3:44:d7:
4f:27:d9:3d:1b:e0:34:8d:d4:0d:9d:29:8d:a7:61:
f2:16:94:07:b3:b9:5e:64:c0:71:87:c1:13:8e:a8:
43:0f:91:36:cf:5d:49:da:88:54:0d:37:94:56:3c:
3e:05:f9:3e:b1:fe:07:57:7b:28:48:f6:3b:14:f5:
20:8c:79:ae:1f:11:43:3f:a0:04:f6:c9:7d:ff:a4:
13:a1:9f:1e:65:46:14:3b:e3:ed:f8:5a:1a:fe:ca:
70:ad:c6:79:fd:65:26:ff:9d:50:2d:ef:ab:5e:0b:
df:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A5:77:55:A5:19:4C:0D:95:36:B0:26:7C:C3:F0:AE:21:C2:0B:CA
X509v3 Authority Key Identifier:
keyid:A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/06V3VaUZTA2VNrAmfMPwriHCC8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.160.0-5.249.162.255
5.249.164.0/24
45.141.36.0/23
45.146.252.0/22
92.42.44.0/22
134.255.216.0/22
Signature Algorithm: sha256WithRSAEncryption
82:26:18:80:34:eb:6b:d4:95:76:96:58:16:be:6e:f5:22:a8:
ed:eb:07:99:e8:b7:01:15:2e:09:47:a6:95:d8:e8:24:4f:ea:
eb:65:14:bb:88:71:d3:c1:34:43:47:41:05:09:29:8e:0d:f4:
4d:8c:28:24:6a:ad:a4:17:6d:67:49:5c:20:ad:78:4a:b8:8f:
6d:0f:51:67:15:82:29:f0:84:2f:83:e0:18:3f:6f:31:b4:ff:
72:ea:e6:87:f9:fc:ef:d2:0e:99:ee:31:6d:1c:40:01:bb:21:
0e:c3:f4:0d:8d:71:21:3a:bc:5b:bb:a2:4f:89:77:35:ce:d7:
83:e5:38:93:33:c4:7c:58:64:f7:fe:cb:fc:f0:fa:9b:a2:6c:
a0:3f:1e:28:83:28:52:8d:ae:56:ed:39:78:d0:db:a3:4b:be:
25:e4:93:13:fb:04:c3:33:e1:bc:7f:aa:dd:b0:41:3d:ff:79:
76:e8:ea:d1:68:dd:f6:e2:8f:f7:70:a8:09:32:be:f8:6d:d8:
ec:0e:4c:f3:50:96:86:e3:5e:74:a4:fe:d4:8d:75:3e:0f:97:
8f:3d:49:4d:bd:53:7e:a8:c7:03:ff:59:f7:14:49:04:ea:2f:
ca:3f:45:e8:53:c9:a9:ff:95:27:39:16:2e:95:96:dc:81:28:
6f:88:5b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 03:50:04 2025 by rpki-client