Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Jy6DxUtfAWO9u2Sm5jY82yWcu38.roa
File: Jy6DxUtfAWO9u2Sm5jY82yWcu38.roa (raw, json)
Hash identifier: NrNcY2mNboVYsgbPUo6JOMStin1i8M1Ah7eQYaS7Ai0=
Subject key identifier: 27:2E:83:C5:4B:5F:01:63:BD:BB:64:A6:E6:36:3C:DB:25:9C:BB:7F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01963EFB7B59857FD4176460782CEAE5268B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Jy6DxUtfAWO9u2Sm5jY82yWcu38.roa
Signing time: Wed 16 Apr 2025 14:23:10 +0000
ROA not before: Wed 16 Apr 2025 14:23:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 83.219.98.0/24 maxlen: 24
87.120.68.0/23 maxlen: 24
87.121.60.0/24 maxlen: 24
87.121.61.0/24 maxlen: 24
93.123.74.0/23 maxlen: 24
185.252.160.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:fb:7b:59:85:7f:d4:17:64:60:78:2c:ea:e5:26:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 16 14:23:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=272e83c54b5f0163bdbb64a6e6363cdb259cbb7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bd:7f:15:f7:28:53:b0:d8:fb:5a:7e:b4:68:
e1:21:d8:03:b8:01:ad:2b:06:b0:8e:97:21:62:ab:
2b:fa:9a:de:10:49:a6:d1:54:52:f5:f6:ad:22:9b:
27:37:8b:5c:e7:54:67:f6:ff:ff:75:8b:36:31:e1:
04:56:b4:0e:c3:96:5b:25:77:0c:38:12:31:82:29:
7f:b7:ee:f1:27:7d:21:dc:ad:c8:d7:db:f5:ab:9f:
7a:55:62:5e:cb:58:1a:e5:53:9d:22:7f:e8:87:1c:
53:59:7e:9f:31:17:8f:db:8a:51:3a:14:fd:ea:af:
17:e7:06:13:e6:f3:dc:96:9b:dd:48:33:1b:0e:be:
e6:b8:71:b1:b7:33:0c:ae:3c:16:27:39:ea:7d:1b:
97:57:cc:01:6c:4b:b1:f9:72:af:46:98:f0:be:34:
a4:8b:d9:bf:b1:64:c2:eb:31:23:55:ad:9d:44:c3:
3f:4a:ad:7d:4d:49:93:3b:ec:72:b7:f9:03:49:40:
c5:5a:92:02:8d:6b:a3:77:55:bd:51:77:fb:3d:d1:
9c:6f:65:97:a8:d1:2b:20:bd:0e:78:59:57:13:43:
51:f1:8d:fe:26:ae:8d:c3:03:c0:2b:bc:02:69:a4:
bb:1a:e7:7d:3b:53:68:ef:c8:eb:4a:7b:80:c8:9b:
96:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2E:83:C5:4B:5F:01:63:BD:BB:64:A6:E6:36:3C:DB:25:9C:BB:7F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Jy6DxUtfAWO9u2Sm5jY82yWcu38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.219.98.0/24
87.120.68.0/23
87.121.60.0/23
93.123.74.0/23
185.252.160.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:d2:23:be:36:70:ac:83:8d:e2:3e:69:fd:de:52:42:f7:d7:
b0:f9:85:0d:ab:2f:0b:e6:11:ad:b8:7a:dc:51:64:24:cd:e1:
a1:cc:78:a5:a0:de:3b:d6:fa:af:18:45:fc:b0:bc:d2:41:d2:
ca:59:6e:ee:14:4f:15:37:93:21:91:51:ca:33:a1:94:c4:e9:
ac:ff:0f:98:6f:84:7c:c0:d0:de:6f:c4:87:70:95:e3:47:89:
37:56:4a:95:d1:b5:1c:d6:1e:2c:63:5b:2e:37:08:fd:57:d1:
34:60:8f:43:8f:b1:0e:d1:5c:32:4c:b7:ed:dc:93:e3:a6:46:
8e:2a:d5:8c:c1:3f:22:5f:44:e1:98:8b:41:47:2e:f7:85:88:
83:b3:83:48:1e:b6:19:16:2d:4b:21:88:b6:39:c0:7c:4e:07:
04:c8:ca:7b:11:d8:fd:e4:db:7e:30:5d:bc:69:2d:a5:d8:d3:
bd:70:c1:e4:53:74:5d:66:a6:46:b0:c1:91:18:db:28:57:f5:
3b:c7:3a:f8:b6:21:75:cd:cb:7b:a2:d7:14:84:38:32:97:34:
a0:f2:05:3f:42:55:a5:00:90:af:a4:90:83:10:aa:d4:40:90:
fb:c2:7b:bb:c1:1c:5c:2b:ed:a4:d8:e2:f3:0b:a0:fa:16:60:
b5:2b:f6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:58:42 2025 by rpki-client