Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/fTcTwvnUHLNTHLYpq_yLjyJ4oO0.roa
File: fTcTwvnUHLNTHLYpq_yLjyJ4oO0.roa (raw, json)
Hash identifier: c0F2vsyEI8dstqZ+X43Jm5LUO/JY9v0hLkvmrnh21P4=
Subject key identifier: 7D:37:13:C2:F9:D4:1C:B3:53:1C:B6:29:AB:FC:8B:8F:22:78:A0:ED
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0197598994CE5807F0D0B1F8A062DCDBABF4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/fTcTwvnUHLNTHLYpq_yLjyJ4oO0.roa
Signing time: Tue 10 Jun 2025 11:11:18 +0000
ROA not before: Tue 10 Jun 2025 11:11:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57197
IP address blocks: 93.170.44.0/22 maxlen: 24
93.170.90.0/23 maxlen: 24
93.171.128.0/22 maxlen: 24
93.171.188.0/22 maxlen: 24
95.47.122.0/23 maxlen: 24
146.120.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:89:94:ce:58:07:f0:d0:b1:f8:a0:62:dc:db:ab:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jun 10 11:11:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d3713c2f9d41cb3531cb629abfc8b8f2278a0ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b6:36:14:f6:9b:1a:a1:37:1f:b8:3a:92:a6:
91:f4:96:e5:07:ae:eb:2f:7d:76:d4:38:9f:83:c7:
ad:6a:b6:b9:64:cb:56:fb:e6:09:97:f7:59:c5:36:
41:18:6b:14:eb:cb:fb:c3:dd:42:b7:c9:ab:ab:90:
6f:81:5e:47:20:db:04:5c:3b:9f:d6:b9:91:28:ab:
66:32:2b:ac:16:43:ff:7e:2a:be:97:1c:35:59:1e:
75:ce:8b:e1:01:7c:16:ef:30:3c:79:5f:60:c5:7a:
03:4b:fc:0c:45:6b:30:25:55:c2:55:dd:0d:01:8b:
52:af:d6:ea:cb:89:0a:3b:2b:c7:a2:65:e3:b0:e9:
ea:e8:46:2f:41:c7:74:b7:ff:43:92:fa:3d:32:6a:
b0:32:28:62:4b:1a:fb:1e:39:28:e0:e8:be:d3:c3:
7f:ee:75:50:0e:b6:92:7f:be:49:0c:49:f9:a1:da:
a8:8b:22:6d:62:80:b2:ea:d7:8a:bf:32:d5:4f:e5:
c0:1a:af:f3:a8:7c:2f:e9:26:6e:3e:7a:95:22:c5:
f0:8b:5d:96:02:5f:21:1d:e8:3e:88:6d:8f:22:e2:
18:e8:a7:eb:25:0d:44:2f:65:39:7d:2c:35:cf:4b:
00:57:e3:e8:da:b3:61:05:c3:3d:df:a6:10:f0:34:
ca:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:37:13:C2:F9:D4:1C:B3:53:1C:B6:29:AB:FC:8B:8F:22:78:A0:ED
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/fTcTwvnUHLNTHLYpq_yLjyJ4oO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.44.0/22
93.170.90.0/23
93.171.128.0/22
93.171.188.0/22
95.47.122.0/23
146.120.244.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:f1:e3:c4:2e:ee:9d:d6:38:09:88:40:72:06:5f:dc:48:78:
52:1e:fa:9b:15:88:22:93:56:0d:2f:75:34:50:c7:db:6b:c9:
91:78:6d:32:51:14:e7:4a:bd:0d:85:37:c3:01:6a:7b:30:fc:
4d:de:29:b1:a0:d6:02:dc:95:95:0e:82:1c:7e:f7:c4:a3:08:
84:36:16:2d:90:4b:9b:87:22:5b:9e:2e:72:9c:2c:a9:96:9a:
76:81:99:77:1a:5e:40:d3:c5:e2:4d:9d:7e:2f:4d:81:9c:1f:
98:25:9d:d8:dd:3b:64:1e:ad:74:64:96:cf:59:5c:44:52:ea:
36:ee:f7:81:21:d4:61:54:c4:63:bf:da:ba:90:7e:fc:42:6b:
d3:83:7e:bc:f0:e3:89:2a:33:ae:db:14:2a:7a:d7:57:af:0a:
b0:e8:be:65:ff:6d:52:d1:32:8b:04:cd:cf:80:79:96:53:cd:
6a:29:0c:f6:b8:4c:55:95:51:e4:7f:92:81:ff:ca:5c:03:84:
5a:4e:e9:f3:28:6a:85:82:0c:d1:7b:0d:2d:28:c7:b8:ea:19:
72:5c:45:64:2e:d2:5b:c8:40:32:6b:a5:12:cb:6b:28:b7:64:
28:77:09:56:09:d1:0e:2a:73:bb:ba:ae:32:a6:41:e0:65:3c:
c8:ac:e9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:03:19 2025 by rpki-client