Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ru0W-eK1Y_90Vm3lmeXy_Zr5tBs.roa
File: ru0W-eK1Y_90Vm3lmeXy_Zr5tBs.roa (raw, json)
Hash identifier: vXsqPeycvzBzUU7swjIRM4IPeDZNshYmvG2lI62Jc94=
Subject key identifier: AE:ED:16:F9:E2:B5:63:FF:74:56:6D:E5:99:E5:F2:FD:9A:F9:B4:1B
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019A3DCE0751E9DA70845E4ED48B79646466
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ru0W-eK1Y_90Vm3lmeXy_Zr5tBs.roa
Signing time: Sat 01 Nov 2025 05:05:03 +0000
ROA not before: Sat 01 Nov 2025 05:05:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39351
IP address blocks: 151.241.163.0/24 maxlen: 24
151.241.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:3d:ce:07:51:e9:da:70:84:5e:4e:d4:8b:79:64:64:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Nov 1 05:05:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aeed16f9e2b563ff74566de599e5f2fd9af9b41b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:94:19:8f:9c:ae:c1:11:ad:7b:0c:82:e9:09:
1f:db:72:b8:37:9b:b3:2c:04:98:d6:87:e5:23:c6:
f9:d5:7b:95:d5:a8:77:d4:b9:69:8d:c9:9f:e9:04:
01:07:40:5f:28:f5:19:a9:7d:50:49:14:35:9b:4d:
ea:27:da:91:23:27:e1:de:b6:38:9b:25:a6:6f:93:
95:de:ea:6e:3a:7a:a5:22:6e:ba:36:92:3f:aa:aa:
a6:3b:ba:c1:72:95:61:55:b3:71:55:70:8f:c3:c4:
6f:4c:69:30:f2:f9:a7:cf:59:50:1f:49:ec:30:6d:
dc:36:88:a1:91:7b:16:cc:21:ef:b5:30:e3:43:d4:
79:86:df:c8:81:e6:2a:41:29:0e:e0:62:4c:4e:20:
84:89:ed:b3:51:d1:ef:de:f4:c9:84:dc:04:6f:26:
3f:02:50:c7:c5:15:11:7f:4e:e9:64:cc:40:f1:81:
40:14:c0:30:64:86:67:dc:27:14:b8:ab:ef:b6:72:
d6:18:7e:b3:df:e6:16:3a:f8:df:9f:ba:30:1d:a2:
84:09:f9:f6:6f:00:ba:a2:4c:b2:e6:64:d0:c5:6a:
84:6b:eb:fd:15:7c:7a:13:14:26:d9:b1:0f:84:bf:
78:ee:3d:57:1d:19:d8:52:00:ea:db:6d:b9:f6:bb:
d8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:ED:16:F9:E2:B5:63:FF:74:56:6D:E5:99:E5:F2:FD:9A:F9:B4:1B
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ru0W-eK1Y_90Vm3lmeXy_Zr5tBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.241.163.0/24
151.241.171.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:8d:fb:ad:40:7a:20:bd:d4:fe:e4:74:4a:82:5f:92:d0:c0:
f5:fa:66:9f:f0:f7:4a:49:f6:b5:86:ed:df:e6:df:01:e4:83:
b2:78:84:da:bc:35:39:b8:58:93:35:f0:dc:3c:09:da:8d:bb:
14:ca:ee:bc:b5:0b:b0:46:80:e5:be:7e:71:50:24:59:2b:9b:
99:cc:9b:58:db:b8:91:d2:45:42:b5:f9:66:b6:d1:41:a1:85:
e3:56:0a:73:1c:dd:61:30:06:6e:97:c9:80:80:1a:d4:f5:15:
44:04:68:1d:79:3a:b8:e1:43:a5:88:68:04:e9:3b:6a:19:ee:
95:0b:3b:a6:59:b7:4b:ac:cf:78:00:10:bb:73:ea:21:3a:3b:
df:d0:03:e3:28:b3:55:45:e3:84:88:71:a5:f6:af:ba:eb:4e:
27:20:d5:90:a7:c0:ea:ce:f9:b1:c5:7f:63:94:58:5f:79:61:
b1:8d:93:fe:e5:ef:40:53:ac:38:cc:c0:e0:90:4b:8b:0a:9b:
2e:4a:4c:79:49:8f:d5:f0:95:76:7f:b7:b5:f2:6f:40:b4:ef:
b7:57:51:bf:cf:0a:09:22:31:06:6f:7a:0f:b3:af:cb:28:30:
e4:d8:82:23:16:f7:39:35:5a:63:1c:73:a1:5c:be:a8:a7:1f:
a1:3b:6b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:46:20 2025 by rpki-client