Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/LV7qS68myAD6Pdf3XI9QpPlgklE.roa
File: LV7qS68myAD6Pdf3XI9QpPlgklE.roa (raw, json)
Hash identifier: F60E5+3l0Eo/QOubZGGlGF4FPPqbb+sPtbbiuUCn/XQ=
Subject key identifier: 2D:5E:EA:4B:AF:26:C8:00:FA:3D:D7:F7:5C:8F:50:A4:F9:60:92:51
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 019A01FEBEEA5997ECFAA12D294DE55C58E8
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/LV7qS68myAD6Pdf3XI9QpPlgklE.roa
Signing time: Mon 20 Oct 2025 14:21:03 +0000
ROA not before: Mon 20 Oct 2025 14:21:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 31.14.37.0/24 maxlen: 24
45.132.27.0/24 maxlen: 24
185.155.53.0/24 maxlen: 24
185.155.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:fe:be:ea:59:97:ec:fa:a1:2d:29:4d:e5:5c:58:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Oct 20 14:21:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d5eea4baf26c800fa3dd7f75c8f50a4f9609251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d8:1b:28:d9:60:c7:fc:84:30:39:b5:1b:4b:
e5:3e:7b:14:a5:5e:36:b3:be:f4:a7:b4:25:7f:cf:
77:72:b9:d0:ef:63:10:85:21:ab:4c:b9:d1:97:69:
b9:c2:7c:ff:70:ff:61:12:82:33:71:27:3b:a6:bc:
3c:4c:b9:48:1e:98:d7:05:06:4c:f7:8c:33:bf:45:
10:37:1c:e2:d0:0c:fe:17:af:88:12:0a:d1:68:fb:
e9:ea:d9:92:94:a5:f1:1c:ac:42:39:7b:46:ca:53:
20:a8:c5:ea:88:1a:8f:0c:35:c8:6a:a5:99:cd:dc:
3f:54:17:54:b8:43:a9:2f:1e:e4:ee:a3:ad:ba:42:
0f:a7:d7:57:2c:d8:5e:86:b5:90:39:6c:76:ff:7e:
4b:39:8d:ae:2e:3b:e3:ff:99:85:f3:84:96:e0:d2:
cd:f8:79:a8:81:33:bc:40:10:64:23:07:a1:56:c0:
e1:4e:1c:42:99:21:fe:76:b0:1c:70:6c:0c:fa:ad:
cb:17:33:bf:1e:90:35:56:6e:0c:ed:a9:12:e2:65:
7c:dc:bb:74:f9:cd:5f:99:ee:a5:c2:c5:a3:96:17:
17:1c:a2:ea:14:fa:a4:34:82:dc:71:7a:84:95:6c:
b6:53:d9:8e:a1:2e:9c:5f:7a:d3:92:22:ce:26:80:
a3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:5E:EA:4B:AF:26:C8:00:FA:3D:D7:F7:5C:8F:50:A4:F9:60:92:51
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/LV7qS68myAD6Pdf3XI9QpPlgklE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.37.0/24
45.132.27.0/24
185.155.53.0/24
185.155.55.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6b:ca:3d:58:12:d4:0a:bd:8c:04:f9:38:c2:a6:8f:90:c7:
02:13:f6:b7:5e:dd:32:35:31:83:7e:da:3f:1c:b6:90:e1:5c:
2e:b8:02:da:8d:3e:df:14:3b:68:8b:4f:b5:b9:91:86:bf:b5:
0d:f6:19:8f:bb:59:a7:7d:f5:b9:6c:41:78:b3:ba:47:e2:0d:
cc:76:78:3e:d4:05:d7:05:48:0a:e2:54:96:ce:23:f9:87:63:
7e:76:db:c7:d8:17:22:58:5f:28:7a:f2:dc:54:b2:36:25:33:
96:d4:c7:03:6c:12:3d:24:db:28:91:de:94:e3:68:83:c5:dc:
e0:df:e7:02:da:a2:c7:99:13:9c:6b:b4:47:b6:c4:1d:0f:db:
02:4b:92:03:71:eb:22:f7:21:08:db:ab:07:48:f1:37:0d:81:
a5:9d:19:cd:f6:58:4a:e5:fd:09:97:11:60:0e:45:57:3b:71:
17:b3:e2:e7:21:a3:42:58:35:7a:9b:ef:e3:ec:aa:43:0d:62:
c4:3d:e7:10:87:b0:d4:dc:60:25:25:5a:3f:d8:54:72:a8:73:
9d:18:f4:1c:63:a4:ea:99:21:1a:cb:26:7c:9a:e9:5c:e2:d9:
ca:9d:37:f7:d7:7f:d3:15:24:88:b1:d9:ee:1e:d1:12:96:9e:
12:8a:21:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 21:02:05 2025 by rpki-client