Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/X5OzyWwR6e_iv7BJerwYAhi05yE.roa
File: X5OzyWwR6e_iv7BJerwYAhi05yE.roa (raw, json)
Hash identifier: WQkHcwkvY5O0XXXO4mcoATlRp4Zx9rwZXcKZe+qcN54=
Subject key identifier: 5F:93:B3:C9:6C:11:E9:EF:E2:BF:B0:49:7A:BC:18:02:18:B4:E7:21
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 01985BA9C349C5DC1AF55C1C2FF96994A7A9
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/X5OzyWwR6e_iv7BJerwYAhi05yE.roa
Signing time: Wed 30 Jul 2025 14:08:28 +0000
ROA not before: Wed 30 Jul 2025 14:08:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 141718
IP address blocks: 185.217.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.mft
rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:5b:a9:c3:49:c5:dc:1a:f5:5c:1c:2f:f9:69:94:a7:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Jul 30 14:08:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5f93b3c96c11e9efe2bfb0497abc180218b4e721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:48:5f:0e:50:f3:5e:cd:f1:6c:af:a8:60:3a:
81:7b:bc:b3:ce:e1:56:ba:b6:62:66:0a:ea:72:97:
e8:ab:9a:e0:7e:62:81:1b:91:09:92:ae:12:62:b4:
0d:a8:da:71:d6:ea:e8:4a:8f:40:96:ce:cf:17:7f:
23:1a:d3:3b:89:eb:00:fe:24:61:22:34:9a:a7:6e:
1a:81:93:23:cd:cf:c1:ff:54:02:3d:37:27:9c:31:
ea:21:fd:3c:f6:fd:2d:03:16:c3:a1:2b:82:c0:c8:
79:1e:bf:cb:c6:0a:62:a5:14:bc:5b:02:21:8d:4d:
35:39:21:24:ec:27:8b:0c:38:c6:a3:c3:e0:b1:14:
64:b5:78:d6:1d:ce:45:20:db:32:b3:86:13:a4:fb:
35:19:41:c4:5c:f4:fb:23:22:ea:c4:8e:86:d9:ab:
1e:ae:14:27:e3:ac:fe:b0:56:5c:96:6b:3f:f5:76:
08:6a:6e:8c:cb:79:c3:b5:28:8d:4f:a8:ab:41:90:
af:8d:4e:ea:a9:59:8b:1d:17:3e:fc:8b:53:c7:81:
27:74:8f:2a:84:0b:f9:f7:c9:15:59:68:24:7a:8d:
e2:29:22:b0:b2:b5:47:c1:5a:a9:c4:a6:a2:69:8d:
23:9b:70:93:20:8c:94:bb:47:63:e0:01:fc:10:e3:
47:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:93:B3:C9:6C:11:E9:EF:E2:BF:B0:49:7A:BC:18:02:18:B4:E7:21
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/X5OzyWwR6e_iv7BJerwYAhi05yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.39.0/24
Signature Algorithm: sha256WithRSAEncryption
05:09:94:24:4d:aa:81:0d:2c:6f:79:80:f2:fe:14:7b:d3:7f:
1e:2a:e5:d4:df:73:71:eb:8b:dd:8b:9c:73:1c:af:9a:70:66:
11:87:5f:05:14:37:09:fe:f6:ab:5a:59:06:98:ec:b2:3d:62:
13:cc:db:c8:e8:96:1e:67:6a:34:d9:db:cb:94:7e:e4:70:8a:
3b:fd:b9:dc:ea:c7:1a:a4:65:f5:92:82:7d:73:82:5f:3b:83:
b6:3a:85:af:c1:a5:91:07:d7:60:c6:94:cb:f5:03:db:72:93:
a8:0d:3a:77:56:f7:82:3f:f8:d4:c0:30:ad:b9:87:11:cb:b7:
e4:c6:c6:2d:5c:9a:7f:77:08:4c:04:0f:c4:3a:f4:24:ca:72:
09:3d:16:a8:22:3e:e9:7f:9b:8e:49:b7:c5:5f:54:cc:d3:be:
c1:3a:e5:5f:aa:f1:9f:ea:a3:58:5d:b3:95:d4:b0:af:ea:3e:
03:a8:c9:19:c4:3e:a4:4f:4c:6b:91:ff:70:ab:a5:18:a3:18:
5c:ee:9e:2e:37:58:9e:15:43:11:8c:81:d2:0e:eb:47:22:fe:
86:54:ec:1f:d5:ef:e9:16:3d:b2:3b:9d:b1:af:d0:ea:f4:fe:
8b:b2:6a:f1:90:b6:a1:98:8e:0a:11:a3:3b:d6:d2:d7:de:c4:
5f:e2:83:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZhbqcNJxdwa9VwcL/lplKepMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkMzBhMTMxNzE4NTYwYTM0YWIzNDkzODg0ZTg1OGVjNDMx
ZjZhZDEwHhcNMjUwNzMwMTQwODI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjkzYjNjOTZjMTFlOWVmZTJiZmIwNDk3YWJjMTgwMjE4YjRlNzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2khfDlDzXs3xbK+oYDqBe7yzzuFW
urZiZgrqcpfoq5rgfmKBG5EJkq4SYrQNqNpx1uroSo9Als7PF38jGtM7iesA/iRh
IjSap24agZMjzc/B/1QCPTcnnDHqIf089v0tAxbDoSuCwMh5Hr/LxgpipRS8WwIh
jU01OSEk7CeLDDjGo8PgsRRktXjWHc5FINsys4YTpPs1GUHEXPT7IyLqxI6G2ase
rhQn46z+sFZclms/9XYIam6My3nDtSiNT6irQZCvjU7qqVmLHRc+/ItTx4EndI8q
hAv598kVWWgkeo3iKSKwsrVHwVqpxKaiaY0jm3CTIIyUu0dj4AH8EONHOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF+Ts8lsEenv4r+wSXq8GAIYtOchMB8GA1UdIwQY
MBaAFO0woTFxhWCjSrNJOIToWOxDH2rRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTkt
NGIzYjFiNjNiNmFiLzEvWDVPenlXd1I2ZV9pdjdCSmVyd1lBaGkwNXlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTktNGIzYjFiNjNiNmFi
LzEvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudknMA0G
CSqGSIb3DQEBCwUAA4IBAQAFCZQkTaqBDSxveYDy/hR7038eKuXU33Nx64vdi5xz
HK+acGYRh18FFDcJ/varWlkGmOyyPWITzNvI6JYeZ2o02dvLlH7kcIo7/bnc6sca
pGX1koJ9c4JfO4O2OoWvwaWRB9dgxpTL9QPbcpOoDTp3VveCP/jUwDCtuYcRy7fk
xsYtXJp/dwhMBA/EOvQkynIJPRaoIj7pf5uOSbfFX1TM077BOuVfqvGf6qNYXbOV
1LCv6j4DqMkZxD6kT0xrkf9wq6UYoxhc7p4uN1ieFUMRjIHSDutHIv6GVOwf1e/p
Fj2yO52xr9Dq9P6LsmrxkLahmI4KEaM71tLX3sRf4oOU
-----END CERTIFICATE-----
Generated at Thu Aug 7 20:25:23 2025 by rpki-client