Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/b3ls2RKEi7btSvTuB9J31RUrqq8.roa
File: b3ls2RKEi7btSvTuB9J31RUrqq8.roa (raw, json)
Hash identifier: Tmn2A08/pPnJswfFfuB0hKa0Or3dzyOac9A6nKBoV/A=
Subject key identifier: 6F:79:6C:D9:12:84:8B:B6:ED:4A:F4:EE:07:D2:77:D5:15:2B:AA:AF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0196ED7550A43040E71E6A5665712F873241
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/b3ls2RKEi7btSvTuB9J31RUrqq8.roa
Signing time: Tue 20 May 2025 11:30:10 +0000
ROA not before: Tue 20 May 2025 11:30:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201409
IP address blocks: 93.123.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ed:75:50:a4:30:40:e7:1e:6a:56:65:71:2f:87:32:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 20 11:30:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f796cd912848bb6ed4af4ee07d277d5152baaaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cd:28:29:0c:b3:94:b6:d2:a6:e4:0f:ed:fa:
98:e5:25:a4:67:2b:9e:85:af:5b:d0:97:d5:e4:15:
ec:fb:fa:ec:8f:ef:d5:ab:64:c3:a9:26:6b:3a:7b:
3b:db:89:5b:65:58:42:b2:9a:27:f2:53:de:30:1c:
6d:93:01:e4:b7:77:fd:e7:6b:36:4c:0b:5e:6e:1f:
55:ef:36:d8:8e:41:b2:92:74:61:07:db:be:28:c7:
6a:36:29:9d:11:8e:b4:cd:bb:0c:3e:b8:cb:9a:18:
ee:bd:47:0a:3a:c9:10:00:3e:5c:50:44:06:bb:55:
8c:96:72:ef:54:f9:cb:af:5a:f3:b6:51:59:a0:45:
0a:ff:c1:3d:e4:ad:73:f7:cf:d5:7e:68:47:8c:bf:
aa:f2:5c:ff:1b:da:bc:e7:7b:57:13:04:2b:2b:f8:
61:8c:39:01:01:52:e2:59:77:e1:56:ab:8e:83:4b:
e0:68:e6:54:a3:c7:82:d5:6e:b0:ba:71:ed:d3:9c:
08:14:e7:4a:f7:ea:bc:15:bd:5c:ad:0b:45:28:0f:
c1:a1:d3:87:b5:63:01:b1:dc:0d:0b:9f:f0:93:ff:
db:0d:4c:b1:62:b8:d3:55:f0:1e:13:d5:2f:ce:36:
04:22:c1:be:2f:5b:61:21:a0:67:d1:5a:8b:d1:1b:
67:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:79:6C:D9:12:84:8B:B6:ED:4A:F4:EE:07:D2:77:D5:15:2B:AA:AF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/b3ls2RKEi7btSvTuB9J31RUrqq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.123.118.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b6:87:d5:2a:dd:98:19:5e:a4:08:c3:4b:30:c3:9d:a9:4c:
cc:ae:3e:95:d4:13:cb:38:3f:73:58:e1:d4:b1:ad:49:a3:72:
d9:29:69:b4:a5:1a:0a:53:e3:48:d3:ac:d9:02:48:24:a8:49:
25:16:b1:20:df:0e:ac:7a:bf:bb:77:e8:d9:4c:75:1e:2c:2f:
30:3f:df:d0:62:0c:29:ab:65:74:cd:17:4f:25:97:a7:09:43:
c2:70:9d:b1:7c:20:58:9f:24:c7:1e:82:74:ec:6a:9a:4e:a9:
bd:a4:22:93:b9:d8:df:aa:96:f8:87:9f:dc:cf:86:fe:34:e2:
b5:15:6d:02:ad:69:7f:98:10:3b:3a:a5:49:5a:be:0a:a0:ad:
f8:08:ef:e0:b3:62:0e:7a:ae:75:21:7b:58:53:1e:65:c4:be:
b4:88:c2:ca:a6:63:1c:eb:ba:08:d2:b3:f4:34:b2:ed:c0:0f:
ff:14:51:49:88:85:d0:aa:f8:0f:48:46:78:5f:44:11:48:ab:
ae:ea:19:50:db:c0:31:dd:d6:10:33:4c:86:0b:3c:89:50:34:
f8:2d:7d:a8:21:ce:b0:b5:e1:02:fd:a1:51:82:74:d0:f3:1b:
54:6d:c9:cb:93:2e:72:d8:7c:c0:f6:3b:fa:0d:b2:05:0a:76:
e2:92:4a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:39:58 2025 by rpki-client