Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/g8jMo_QsKJmAh3--K7lt-CRT_Tk.roa
File: g8jMo_QsKJmAh3--K7lt-CRT_Tk.roa (raw, json)
Hash identifier: ZB3W2ZFOgZyvBhJbKrZbmDd6HYpq4QopxVVjxqb9GCw=
Subject key identifier: 83:C8:CC:A3:F4:2C:28:99:80:87:7F:BE:2B:B9:6D:F8:24:53:FD:39
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01986F1D585F3D3992CE9CA4DF2799A47B6C
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/g8jMo_QsKJmAh3--K7lt-CRT_Tk.roa
Signing time: Sun 03 Aug 2025 08:47:30 +0000
ROA not before: Sun 03 Aug 2025 08:47:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 151.240.98.0/24 maxlen: 24
151.243.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:6f:1d:58:5f:3d:39:92:ce:9c:a4:df:27:99:a4:7b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Aug 3 08:47:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=83c8cca3f42c289980877fbe2bb96df82453fd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:da:29:b0:5a:6d:ce:ee:1f:c5:74:58:2f:75:
c9:be:2f:9b:01:a8:d3:6f:ad:d5:d2:7b:22:99:99:
c7:6e:fd:2b:2f:d1:0a:1a:96:bd:e0:82:6a:f2:66:
cb:ac:7b:b6:c2:e3:41:b7:ea:20:98:40:d3:a3:62:
09:aa:70:07:8d:32:ab:8c:42:96:5a:52:d4:01:cd:
11:95:32:54:d9:23:39:19:0c:07:bf:c9:b9:79:c5:
cb:8b:83:09:39:3a:88:49:f0:75:24:3b:df:15:09:
54:ab:7a:c7:2e:db:5f:6b:af:5f:dc:bd:47:e0:3c:
49:af:00:53:d9:6d:df:86:fa:25:c0:20:15:cf:46:
d9:3f:c3:cb:46:f5:8f:6c:a5:c8:b2:19:45:d6:5a:
de:62:3a:f1:10:01:44:ca:91:ac:93:32:03:35:72:
7a:96:e5:fd:bf:97:3d:dd:8c:2e:38:1f:7a:2e:0d:
34:46:c8:4e:10:ed:e9:a9:0f:d4:7e:34:37:00:1c:
2c:c6:58:fc:25:97:27:23:b3:06:be:63:1d:9a:4d:
b3:20:75:74:f7:a0:24:84:02:8b:b0:ac:8f:ab:b5:
ab:fb:d5:5c:5b:59:3c:37:c9:5a:16:f9:be:13:42:
c4:8a:0f:19:2b:86:b4:de:db:15:59:63:e3:9e:5e:
04:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C8:CC:A3:F4:2C:28:99:80:87:7F:BE:2B:B9:6D:F8:24:53:FD:39
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/g8jMo_QsKJmAh3--K7lt-CRT_Tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.240.98.0/24
151.243.16.0/23
Signature Algorithm: sha256WithRSAEncryption
56:fc:55:d4:53:3a:3e:4f:27:76:11:d3:44:df:95:d8:17:bc:
3a:b4:6e:7e:95:61:dc:78:5a:24:9f:60:a4:2b:d7:87:f2:83:
44:c5:f5:fe:93:f1:19:f4:71:f7:86:dd:5e:a9:61:47:8a:b2:
93:b0:ba:f2:d9:aa:2c:73:1d:fe:0a:8d:13:48:2d:d8:d5:e4:
ef:14:66:16:81:7f:d8:65:91:58:33:8e:35:35:87:f2:e1:4f:
81:04:da:d4:44:27:55:15:22:c0:5e:45:da:b4:7d:98:93:47:
14:fd:6d:93:a2:93:4b:f4:e3:3b:69:0b:39:b4:9d:a1:51:dc:
05:ec:8f:2a:07:7a:9e:12:40:48:61:66:8f:d3:91:f0:8c:6c:
6c:43:25:1e:a0:c1:0b:31:9c:0f:c8:94:e9:ce:ca:4b:94:65:
30:c9:68:d9:4a:c3:44:9a:06:b3:b0:dd:35:64:85:79:1f:cf:
0b:c1:3f:9e:55:75:9c:10:3d:d4:1f:40:b6:2b:5f:6a:cc:c5:
b7:7a:dd:a3:c1:ba:83:0a:4f:12:68:8c:04:32:42:41:ff:65:
6b:b3:60:6f:d0:01:bf:8e:03:d8:6c:65:06:8c:15:6e:df:a0:
d1:88:bb:8d:fb:45:43:18:c9:86:42:fe:c9:28:aa:5b:58:5f:
18:c9:f7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:27:01 2025 by rpki-client