Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/gpB2BVGWrRLqRz5HLEbVSi_o2sM.roa
File: gpB2BVGWrRLqRz5HLEbVSi_o2sM.roa (raw, json)
Hash identifier: ZlbOS86h5Kq/eaPdWdlhuqyA2pmL0rOZPWnQ30e/T5M=
Subject key identifier: 82:90:76:05:51:96:AD:12:EA:47:3E:47:2C:46:D5:4A:2F:E8:DA:C3
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196D5878596D8E4543FBE9C8D46281BAE4D
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/gpB2BVGWrRLqRz5HLEbVSi_o2sM.roa
Signing time: Thu 15 May 2025 19:59:10 +0000
ROA not before: Thu 15 May 2025 19:59:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 152179
IP address blocks: 151.240.116.0/23 maxlen: 24
151.240.126.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d5:87:85:96:d8:e4:54:3f:be:9c:8d:46:28:1b:ae:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 15 19:59:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=829076055196ad12ea473e472c46d54a2fe8dac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:20:18:3b:b9:16:51:3e:f7:dd:da:c2:e2:e9:
e0:46:7b:35:6a:44:36:47:85:47:ee:7d:c9:7c:58:
67:9f:c6:92:38:0f:2e:49:41:84:a4:2e:7e:3c:5a:
97:9d:80:ee:5e:6c:b7:06:d0:db:ca:30:c2:34:61:
5a:f7:b7:f7:e9:31:20:57:66:30:ca:34:b6:21:96:
75:00:75:56:6f:fe:38:a0:50:07:84:9f:74:17:c2:
87:16:41:35:bd:a1:e4:b2:2f:64:83:9f:cb:71:e9:
2e:1d:fe:88:7d:bf:bf:9a:a7:e2:37:be:32:d0:ce:
b9:09:c6:4f:8f:24:40:29:79:c6:29:13:4b:df:24:
0d:b0:9f:e8:9b:35:7d:29:1a:72:99:7c:bb:63:0c:
3e:e6:7d:cc:c5:8e:b6:b6:37:d3:6e:74:d3:3a:2c:
b1:c0:9e:c5:97:6f:6c:59:eb:a4:8b:8a:f7:81:3a:
07:88:ed:23:53:c6:c0:e9:c3:15:ec:ea:c9:cc:79:
67:c3:98:7f:ea:65:f7:13:0b:32:44:af:00:60:cc:
bc:3a:e9:f8:b9:08:25:99:9c:ef:2e:4b:9d:05:e8:
7d:d9:df:a5:52:de:9a:0c:da:9f:a0:a2:7f:42:34:
b9:11:7e:60:71:44:0b:e8:25:8f:f5:98:b4:da:49:
00:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:90:76:05:51:96:AD:12:EA:47:3E:47:2C:46:D5:4A:2F:E8:DA:C3
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/gpB2BVGWrRLqRz5HLEbVSi_o2sM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.240.116.0/23
151.240.126.0/23
Signature Algorithm: sha256WithRSAEncryption
84:44:5c:4d:c2:00:a8:00:e2:45:c0:1e:cf:ba:83:18:0c:7e:
42:1b:fa:af:f4:07:46:ba:fb:44:14:ca:cb:c9:51:e2:ad:fa:
4a:3e:51:54:8e:f2:3f:1d:07:10:16:dd:c3:82:ee:8d:f9:92:
ee:34:03:67:8c:b3:6f:5d:4a:c7:e0:53:3d:9f:6b:e3:d9:8e:
63:ae:07:37:1f:6a:1c:f0:71:e2:75:61:00:98:6c:8f:6f:ed:
18:20:82:e6:28:73:75:41:4a:5a:12:5f:45:2b:12:a9:51:bc:
d4:0c:0b:a5:35:49:24:36:ed:1b:61:b3:98:a8:b8:ee:0f:59:
5d:b8:40:5a:78:f3:74:00:bc:c2:80:46:8e:db:32:0c:93:33:
6e:b0:84:f4:78:c5:ac:10:89:05:0e:85:ab:27:70:d9:09:03:
af:1d:27:bb:44:ab:bf:b5:55:72:22:3a:4c:48:62:e6:85:92:
7a:85:38:89:c3:c4:77:5a:ca:13:90:45:b1:ab:98:cb:79:6b:
e2:87:cd:19:9b:0d:98:d4:85:55:d3:36:fc:b7:1f:3a:1f:4a:
f5:11:71:4a:97:16:58:51:49:fe:a7:22:99:19:4d:f8:e9:fd:
86:a5:45:81:e9:08:31:77:8a:27:8d:23:e5:be:3b:f8:b7:11:
24:4c:89:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:14:35 2025 by rpki-client