Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa
File: JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa (raw, json)
Hash identifier: q2mwtM0pyYItD49ctwOqLjVJYv5g0mJ64QH0B7oRSCM=
Subject key identifier: 25:61:86:91:1B:89:09:5C:97:20:97:FB:53:F4:E5:97:1F:46:BC:BA
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0198488AFEC1394A7EB5FEC13E0F4A5234F3
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa
Signing time: Sat 26 Jul 2025 21:02:05 +0000
ROA not before: Sat 26 Jul 2025 21:02:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48678
IP address blocks: 45.133.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:8a:fe:c1:39:4a:7e:b5:fe:c1:3e:0f:4a:52:34:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jul 26 21:02:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=256186911b89095c972097fb53f4e5971f46bcba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5a:a2:30:94:82:09:65:ff:95:94:f9:2b:93:
47:fa:1a:6e:a4:10:37:16:92:4c:7c:8f:79:a6:f3:
1d:31:47:0c:13:99:b9:82:e5:dc:06:9e:58:af:8b:
73:3a:53:f7:42:ca:a9:e1:d4:aa:78:ee:e9:47:00:
13:f9:18:bd:d1:93:79:90:f4:73:a8:4d:9e:d3:a9:
26:20:b1:3c:49:08:98:44:42:5b:6b:f7:4c:b5:5c:
0f:99:ee:35:83:98:78:e2:53:0a:6f:06:c2:1e:11:
b3:a6:16:88:1d:6c:11:f4:45:36:dd:84:c5:46:8c:
de:93:f2:eb:d0:58:8e:b0:05:c6:0a:73:ec:d6:b1:
92:fa:06:44:fa:93:e7:97:ee:6d:76:53:9e:22:e6:
6d:6b:35:bb:a8:42:7c:4b:a8:fd:26:59:13:58:4e:
59:09:65:7e:9d:bf:28:a7:36:79:e4:ca:d5:b2:26:
ed:54:62:a8:d1:9b:c6:f2:3b:b4:cc:2f:00:ee:07:
f1:3e:fc:63:e6:c1:c4:bd:f6:48:d3:35:1b:07:14:
9a:61:3b:59:43:5f:87:ee:b7:1e:c1:c3:c9:d3:76:
ce:8d:0d:8d:aa:66:60:44:ca:1b:6e:12:e1:92:84:
ab:2b:ce:9c:28:01:58:cb:16:bd:b0:a0:99:ff:6c:
d7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:61:86:91:1B:89:09:5C:97:20:97:FB:53:F4:E5:97:1F:46:BC:BA
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.39.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:1b:07:ce:75:38:a3:15:6d:30:83:2a:0b:2a:92:be:82:17:
4b:8c:ff:4b:28:ac:b3:5a:6d:83:e4:56:2d:07:8c:8e:d8:13:
4f:44:79:96:16:61:47:7d:bf:2c:cc:b0:5c:37:28:58:b3:ba:
6b:07:6c:b8:09:65:ee:bf:f5:07:93:eb:54:b6:64:5d:95:91:
34:d0:bd:d5:1d:c2:47:ef:06:5c:40:6c:28:09:e1:58:ba:7b:
59:aa:85:63:2c:88:e9:31:a6:41:93:d4:d6:3e:b6:a6:42:39:
01:80:e4:77:8b:6c:6d:75:9d:d1:d3:8c:a8:ab:cf:96:ba:8b:
91:4b:31:2d:13:e6:ef:ff:ce:bb:c5:a4:f3:8c:d1:6c:84:70:
3f:af:65:f0:43:32:91:0d:53:a5:d2:7f:3f:8c:a8:83:02:84:
38:53:29:ed:42:41:68:3b:89:f6:c8:54:0d:3a:5b:4e:4f:ab:
d0:90:11:ed:6f:8f:c3:82:87:ab:28:51:c9:3b:00:0c:84:79:
fb:54:e5:b4:62:3e:6d:ce:f7:90:20:bf:c7:42:07:25:f4:bf:
79:e2:23:ed:1c:67:b1:fe:dd:9a:3b:f4:89:34:80:0c:27:db:
5a:c0:77:7f:32:4a:42:e8:38:74:20:0c:4e:3f:54:ea:39:0d:
f9:5f:76:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:45:31 2025 by rpki-client