Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/j3melTPDUivy7GFJWeYYT3tCvkI.roa
File: j3melTPDUivy7GFJWeYYT3tCvkI.roa (raw, json)
Hash identifier: mnfZYq9kgwm43YC344tZSUqx/4MU+PdWE9c+mszOOJw=
Subject key identifier: 8F:79:9E:95:33:C3:52:2B:F2:EC:61:49:59:E6:18:4F:7B:42:BE:42
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019710537C7E7904AE19FD01F1EF231238C1
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/j3melTPDUivy7GFJWeYYT3tCvkI.roa
Signing time: Tue 27 May 2025 05:59:56 +0000
ROA not before: Tue 27 May 2025 05:59:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 37.202.209.0/24 maxlen: 24
151.243.16.0/23 maxlen: 24
151.243.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:10:53:7c:7e:79:04:ae:19:fd:01:f1:ef:23:12:38:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 27 05:59:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8f799e9533c3522bf2ec614959e6184f7b42be42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:69:d0:2d:4b:78:a6:ef:86:fe:6e:43:7d:ca:
5e:6c:86:c0:06:52:b2:48:32:d1:28:44:9a:21:34:
58:aa:de:87:a6:5c:f6:3d:8b:85:79:5b:9f:ba:ae:
f7:fd:3d:25:ec:6b:7d:5f:37:2d:0d:23:d9:e4:75:
ce:c3:30:9b:f2:32:4e:b1:35:99:d9:61:72:2c:10:
f3:b2:42:82:2a:4a:1c:96:84:a6:cf:a9:ee:93:ce:
65:4e:57:be:a4:ff:1c:53:0f:96:7c:96:f5:02:58:
f2:2c:72:8e:85:ed:66:55:93:29:88:f4:f8:c9:03:
73:bb:b5:84:9b:29:0d:72:b0:2a:5d:76:92:07:8b:
db:6f:16:6b:c0:5e:8c:19:42:65:90:1d:c8:46:68:
02:c1:48:1e:77:91:9c:cc:b9:6f:73:8d:b5:9b:27:
3a:26:0d:84:49:ba:dc:0b:2c:e9:15:a6:07:86:ae:
ea:bc:84:c9:5a:de:66:ff:81:c1:6e:ba:55:d3:a9:
ab:a8:60:d8:23:f2:ac:15:ca:02:f0:9d:b8:c6:25:
6e:8e:69:88:bd:5e:04:b8:7a:20:15:02:b9:71:0c:
bd:f1:77:30:78:50:f5:3d:06:88:a1:0c:b6:6f:60:
29:0a:83:58:98:91:ef:37:e3:8d:bb:3a:d3:05:cf:
71:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:79:9E:95:33:C3:52:2B:F2:EC:61:49:59:E6:18:4F:7B:42:BE:42
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/j3melTPDUivy7GFJWeYYT3tCvkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.209.0/24
151.243.16.0/23
151.243.102.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:da:a8:cc:8b:44:a2:5d:5e:fd:34:33:f6:f9:45:d6:0e:bc:
20:6e:51:56:31:2e:bb:0f:15:e8:8d:61:a0:23:7e:ce:14:e1:
28:d6:de:69:4a:e0:88:63:1c:d2:07:6c:88:77:b2:78:99:78:
70:c6:15:dd:77:51:2c:ac:b3:bb:54:bd:d2:bf:28:3c:89:b4:
40:6b:a8:7f:f3:cb:b2:59:2f:50:99:bf:cf:c6:3a:7f:2f:4d:
07:14:57:81:c6:e3:5f:e0:1a:05:3f:9b:80:b1:b9:6a:c0:7c:
db:e2:2e:68:af:ee:f7:4d:8b:61:30:f4:8b:1e:e0:d7:02:b5:
f2:77:b8:a3:8c:d5:85:1d:be:6d:c4:b4:c2:5a:f9:0c:33:85:
be:3f:fc:09:7e:ff:aa:85:67:02:40:a0:d2:df:3b:11:65:4a:
03:a6:74:1c:45:f8:1c:5c:43:d7:d4:fb:f7:4c:59:24:92:a0:
dd:63:a7:e2:c2:26:48:2e:e2:97:7e:72:35:8a:c9:4b:e1:2f:
0d:5c:bf:c2:e9:c3:1b:0c:dc:f9:7c:2e:60:0b:54:50:fa:38:
cb:93:e1:b6:bd:2a:9a:19:dc:08:7c:d4:15:82:3b:6d:59:3e:
a8:ad:f5:c7:ac:df:fd:83:bb:ed:e6:14:f9:4a:54:91:b8:e9:
9a:b5:9d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:35:45 2025 by rpki-client