Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Uj4ioPjjyq2i6q1RbS_v7BbYhXk.roa
File: Uj4ioPjjyq2i6q1RbS_v7BbYhXk.roa (raw, json)
Hash identifier: /miAvLKH3DzdtiGSUmMYLssvrEQ8WfCsfOBu4FHPpIE=
Subject key identifier: 52:3E:22:A0:F8:E3:CA:AD:A2:EA:AD:51:6D:2F:EF:EC:16:D8:85:79
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 019790DD7AFB7BAE334C2014121E5F18B6C0
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Uj4ioPjjyq2i6q1RbS_v7BbYhXk.roa
Signing time: Sat 21 Jun 2025 05:02:03 +0000
ROA not before: Sat 21 Jun 2025 05:02:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210006
IP address blocks: 93.152.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Jun 2025 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:90:dd:7a:fb:7b:ae:33:4c:20:14:12:1e:5f:18:b6:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jun 21 05:02:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=523e22a0f8e3caada2eaad516d2fefec16d88579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fa:ab:8d:9f:54:80:82:55:e6:d1:69:8c:51:
4b:83:17:a3:d4:ae:23:29:38:93:4d:f2:c8:cf:53:
97:bb:d9:0d:b1:ca:04:05:47:9b:06:4b:12:09:5e:
51:b6:9c:db:95:51:f5:12:b2:cc:ca:3c:ac:a7:a3:
6b:f8:f2:17:70:aa:a4:a1:b9:e8:1b:41:d2:2b:95:
5c:81:47:8e:aa:4f:e3:ff:d0:6e:27:5f:86:7d:77:
6f:77:3b:5b:fe:85:f1:2e:e1:7e:53:32:0d:b2:f6:
4f:9e:3d:d8:b8:b9:b5:7c:df:36:d6:e7:fb:7e:4b:
c0:85:34:2b:46:da:ef:f9:ea:f6:71:f8:10:04:bf:
c7:32:e7:ba:93:5f:5e:3f:84:9b:08:cf:67:91:89:
24:b2:69:4b:31:d4:71:a0:5f:0d:98:8f:e5:ed:4c:
2c:a9:68:ad:1f:26:98:76:6c:84:50:6f:1a:b2:17:
12:ba:db:29:21:2e:7d:96:38:74:2c:f0:1c:d2:dc:
64:b7:18:53:3e:52:5c:4c:8b:0f:53:b5:b2:09:f9:
ce:7c:85:4c:df:40:54:24:5f:70:33:e8:99:04:eb:
8a:e8:65:25:f6:71:36:6f:54:ce:f0:e3:fc:05:4e:
84:cb:66:bb:cf:d9:e3:ee:8f:70:12:d3:65:b1:f7:
9b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3E:22:A0:F8:E3:CA:AD:A2:EA:AD:51:6D:2F:EF:EC:16:D8:85:79
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Uj4ioPjjyq2i6q1RbS_v7BbYhXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.230.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:3a:79:8f:8e:79:6d:e7:2c:15:46:14:fd:98:09:70:99:6f:
aa:8e:02:5f:46:69:e1:e1:f3:d4:1c:d4:a2:4e:8c:71:7b:f3:
8d:bb:d9:8d:1b:ac:a5:d4:d8:1b:23:4b:14:51:4d:33:0b:dc:
7c:97:87:0c:84:08:db:9e:40:46:08:99:34:12:ff:0c:e1:d3:
d2:68:21:eb:91:53:11:8d:e0:54:74:8f:d9:fd:49:91:2d:72:
ed:6b:9b:7f:d5:86:80:7a:bc:3e:be:4b:e1:34:50:41:97:ec:
bb:09:40:05:f2:9d:5e:3b:7f:26:3f:29:10:5d:f5:3e:40:cc:
7c:a8:c8:c3:e7:50:23:8b:5a:a6:ba:99:1e:ef:01:ba:9c:63:
8d:81:f0:ab:48:b4:70:17:01:8f:b7:ca:3b:f7:2f:0d:d4:2b:
58:5f:1a:7e:c6:73:91:10:2d:59:0d:d8:b2:b8:57:4d:30:78:
9f:4e:9d:9b:77:d4:50:f1:79:18:8e:1b:7d:e2:d0:86:e0:1f:
01:22:85:be:ef:cd:3d:18:aa:4f:d9:8f:27:bc:57:00:b3:c0:
a2:1f:7b:40:b4:17:71:99:af:ad:a7:83:12:94:f9:3a:b3:d6:
82:40:98:64:fd:c0:37:70:a2:8b:e1:79:a5:46:62:77:f6:2e:
da:0d:44:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZeQ3Xr7e64zTCAUEh5fGLbAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjUwNjIxMDUwMjAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjNlMjJhMGY4ZTNjYWFkYTJlYWFkNTE2ZDJmZWZlYzE2ZDg4NTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovqrjZ9UgIJV5tFpjFFLgxej1K4j
KTiTTfLIz1OXu9kNscoEBUebBksSCV5RtpzblVH1ErLMyjysp6Nr+PIXcKqkobno
G0HSK5VcgUeOqk/j/9BuJ1+GfXdvdztb/oXxLuF+UzINsvZPnj3YuLm1fN821uf7
fkvAhTQrRtrv+er2cfgQBL/HMue6k19eP4SbCM9nkYkksmlLMdRxoF8NmI/l7Uws
qWitHyaYdmyEUG8ashcSutspIS59ljh0LPAc0txktxhTPlJcTIsPU7WyCfnOfIVM
30BUJF9wM+iZBOuK6GUl9nE2b1TO8OP8BU6Ey2a7z9nj7o9wEtNlsfebEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFI+IqD448qtouqtUW0v7+wW2IV5MB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvVWo0aW9Qamp5cTJpNnExUmJTX3Y3QmJZaFhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXZjmMA0G
CSqGSIb3DQEBCwUAA4IBAQAMOnmPjnlt5ywVRhT9mAlwmW+qjgJfRmnh4fPUHNSi
Toxxe/ONu9mNG6yl1NgbI0sUUU0zC9x8l4cMhAjbnkBGCJk0Ev8M4dPSaCHrkVMR
jeBUdI/Z/UmRLXLta5t/1YaAerw+vkvhNFBBl+y7CUAF8p1eO38mPykQXfU+QMx8
qMjD51Aji1qmupke7wG6nGONgfCrSLRwFwGPt8o79y8N1CtYXxp+xnOREC1ZDdiy
uFdNMHifTp2bd9RQ8XkYjht94tCG4B8BIoW+7809GKpP2Y8nvFcAs8CiH3tAtBdx
ma+tp4MSlPk6s9aCQJhk/cA3cKKL4XmlRmJ39i7aDUTs
-----END CERTIFICATE-----
Generated at Sun Jun 22 15:53:02 2025 by rpki-client