
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/tJ3p5HClK7_Zys7HmTyd9fvc8fc.roa
File: tJ3p5HClK7_Zys7HmTyd9fvc8fc.roa (raw, json)
Hash identifier: Vb24XEYV3piwOFKNbcMsm3FKc7s/MAVWo0d0F95vGQI=
Subject key identifier: B4:9D:E9:E4:70:A5:2B:BF:D9:CA:CE:C7:99:3C:9D:F5:FB:DC:F1:F7
Certificate issuer: /CN=83f36b0adee6cb5518763b5bc8eaa3d41f23e938
Certificate serial: 0198549EBA5C2BD710C6192AD553DD720B75
Authority key identifier: 83:F3:6B:0A:DE:E6:CB:55:18:76:3B:5B:C8:EA:A3:D4:1F:23:E9:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g_NrCt7my1UYdjtbyOqj1B8j6Tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/tJ3p5HClK7_Zys7HmTyd9fvc8fc.roa
Signing time: Tue 29 Jul 2025 05:19:05 +0000
ROA not before: Tue 29 Jul 2025 05:19:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213541
IP address blocks: 176.100.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/g_NrCt7my1UYdjtbyOqj1B8j6Tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/g_NrCt7my1UYdjtbyOqj1B8j6Tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/g_NrCt7my1UYdjtbyOqj1B8j6Tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:9e:ba:5c:2b:d7:10:c6:19:2a:d5:53:dd:72:0b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83f36b0adee6cb5518763b5bc8eaa3d41f23e938
Validity
Not Before: Jul 29 05:19:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b49de9e470a52bbfd9cacec7993c9df5fbdcf1f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:88:3c:4a:53:74:10:41:4a:67:a8:17:ab:02:
6b:71:fa:3d:ab:f8:9f:c0:54:c1:e7:52:28:33:b0:
d7:d4:5e:43:19:70:67:92:e3:66:d9:83:4f:79:03:
a8:95:a8:58:ba:f0:63:3a:08:66:8e:5b:7a:4d:9b:
60:ad:fc:04:9c:11:b0:ea:7d:c9:e7:2d:a6:ea:fd:
cb:7f:37:5c:b9:a4:c2:c0:aa:af:24:e6:a0:44:28:
05:98:20:6e:11:6f:01:cd:3d:2e:59:1f:12:95:d5:
02:d2:ce:85:66:5b:9c:37:fc:b7:26:74:ee:ae:0c:
1b:44:b0:83:64:14:91:dc:34:29:0b:5b:c7:bf:28:
3c:71:da:2b:f2:d8:09:60:36:66:4f:e6:32:7f:1a:
6d:90:28:d3:ea:26:af:dc:fd:9e:39:c1:1a:5d:25:
99:65:f5:9f:70:a5:fd:9b:3f:71:24:03:e4:c5:ad:
03:00:cb:70:f5:69:2a:c1:7d:6a:8f:b4:1f:bc:d4:
e2:6d:6f:1c:0f:e5:d1:43:2f:2b:9b:46:30:83:34:
1f:38:30:84:fb:1d:5c:b5:11:0c:06:b0:ee:bb:71:
da:f2:82:d4:c6:1e:c0:15:a0:ae:6f:62:9d:91:95:
f2:a4:ac:2d:fc:c2:99:a8:8c:19:04:73:83:4c:dd:
c6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9D:E9:E4:70:A5:2B:BF:D9:CA:CE:C7:99:3C:9D:F5:FB:DC:F1:F7
X509v3 Authority Key Identifier:
keyid:83:F3:6B:0A:DE:E6:CB:55:18:76:3B:5B:C8:EA:A3:D4:1F:23:E9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g_NrCt7my1UYdjtbyOqj1B8j6Tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/tJ3p5HClK7_Zys7HmTyd9fvc8fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/g_NrCt7my1UYdjtbyOqj1B8j6Tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.159.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:0a:2c:6d:fb:c2:23:45:c1:05:41:bb:c3:99:01:f6:e1:f8:
7f:e8:59:eb:db:f8:55:d3:af:c2:ae:00:17:9d:33:be:e6:de:
6e:e4:3b:6a:80:33:eb:9c:0a:76:ef:9b:84:9b:55:c4:fb:5e:
ca:67:9e:83:bf:49:54:0c:c5:79:2c:d0:f7:61:9c:99:b2:a9:
97:7b:ab:da:3e:9a:fe:d8:31:39:2b:a0:27:07:61:7c:cb:7d:
d3:5d:87:61:4a:c2:88:f8:71:10:1e:c4:b5:6d:e2:ad:cb:73:
7b:52:b8:0f:2f:0a:f3:46:24:fd:66:25:aa:0e:fc:47:16:6c:
53:b5:56:20:2c:0a:15:49:c0:e1:cd:42:95:4f:06:37:bc:53:
4a:21:19:53:75:75:ab:45:d1:33:01:34:76:9c:7d:d9:87:77:
73:0d:6f:3a:bf:37:3a:32:d8:4e:45:f3:3c:b9:22:60:96:fb:
67:b1:2a:15:b4:85:4f:57:c7:e7:36:d1:e5:b9:75:8c:58:d8:
6d:ad:ce:85:cb:ad:4f:71:78:02:07:9c:49:88:46:ab:62:92:
b6:59:dd:02:9a:2a:20:90:1d:5c:e0:81:d0:42:ca:bb:75:56:
c7:0e:35:54:29:35:1d:33:cc:83:9e:69:70:05:39:28:f5:c3:
13:ab:5a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 22:11:12 2025 by rpki-client