Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/a92eb2-b2ba-4efd-bd09-6abb1ccb6153/1/7kHtWJwf55jOxnVlDwQ_Pz_QbDo.roa
File: 7kHtWJwf55jOxnVlDwQ_Pz_QbDo.roa (raw, json)
Hash identifier: 5xzI11cU+vDKS4SWJ2VW5NiWSSXP8uOI0oJRmaU/700=
Subject key identifier: EE:41:ED:58:9C:1F:E7:98:CE:C6:75:65:0F:04:3F:3F:3F:D0:6C:3A
Certificate issuer: /CN=93efa2bf90a23728852727f126ede65286c3ca67
Certificate serial: 019758C029E683C3C2DE9D32FB49472E5884
Authority key identifier: 93:EF:A2:BF:90:A2:37:28:85:27:27:F1:26:ED:E6:52:86:C3:CA:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k--iv5CiNyiFJyfxJu3mUobDymc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/a92eb2-b2ba-4efd-bd09-6abb1ccb6153/1/7kHtWJwf55jOxnVlDwQ_Pz_QbDo.roa
Signing time: Tue 10 Jun 2025 07:31:17 +0000
ROA not before: Tue 10 Jun 2025 07:31:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14445
IP address blocks: 80.73.247.0/24 maxlen: 24
164.152.216.0/24 maxlen: 24
185.218.2.0/24 maxlen: 24
2001:3900::/29 maxlen: 29
2a11:2800:239::/48 maxlen: 48
2a11:2800:761::/48 maxlen: 48
2a11:2800:10db::/48 maxlen: 48
2a11:2800:131c::/48 maxlen: 48
2a11:2800:1bce::/48 maxlen: 48
2a11:2800:1f33::/48 maxlen: 48
2a11:2800:2047::/48 maxlen: 48
2a11:2800:215b::/48 maxlen: 48
2a11:2800:285d::/48 maxlen: 48
2a11:2800:3dc6::/48 maxlen: 48
2a11:2800:661f::/48 maxlen: 48
2a11:2800:792e::/48 maxlen: 48
2a11:2800:9e16::/48 maxlen: 48
2a11:2800:b41d::/48 maxlen: 48
2a11:2801:35d3::/48 maxlen: 48
2a11:2801:4ac9::/48 maxlen: 48
2a11:2801:5a28::/48 maxlen: 48
2a11:2803:e78b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/a92eb2-b2ba-4efd-bd09-6abb1ccb6153/1/k--iv5CiNyiFJyfxJu3mUobDymc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/a92eb2-b2ba-4efd-bd09-6abb1ccb6153/1/k--iv5CiNyiFJyfxJu3mUobDymc.mft
rsync://rpki.ripe.net/repository/DEFAULT/k--iv5CiNyiFJyfxJu3mUobDymc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:c0:29:e6:83:c3:c2:de:9d:32:fb:49:47:2e:58:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93efa2bf90a23728852727f126ede65286c3ca67
Validity
Not Before: Jun 10 07:31:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee41ed589c1fe798cec675650f043f3f3fd06c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e0:c5:7b:75:88:f2:c1:60:16:52:e4:85:29:
56:65:23:8d:6b:56:54:f3:a1:d6:46:15:b6:8a:84:
3d:d7:cd:c1:dd:06:3a:c4:5e:f5:9f:29:ba:17:47:
57:2f:ea:55:02:01:69:6b:dd:e4:6b:54:89:91:9d:
36:3f:cc:99:75:aa:f9:2a:18:c2:0f:50:03:0b:9c:
24:c9:1e:b2:74:4d:ed:4d:8d:f0:11:aa:06:48:39:
48:2d:48:c2:69:5f:fd:af:52:ba:b3:99:99:e8:68:
db:3b:5e:bc:8a:72:62:5d:41:1b:a5:64:96:d3:e6:
ea:fd:17:9f:fb:75:c4:84:a5:46:fe:0f:4f:a2:ce:
74:96:d2:69:69:15:f4:36:30:13:77:ef:07:6e:40:
e0:c9:c9:64:0d:f0:a6:5e:a4:4d:a2:c5:c8:e3:db:
58:7c:ff:69:99:77:4c:b4:a9:3a:43:68:c3:fa:ce:
06:f6:f7:32:c5:6b:c5:3a:01:2d:c9:1d:11:22:ff:
39:a5:66:ac:6b:ab:f4:46:45:31:bc:c6:79:b8:22:
c7:41:a3:22:cf:9a:c5:ca:41:10:f8:43:1b:1a:f2:
53:05:ca:dd:55:f6:36:df:d1:23:45:06:e1:ef:ce:
a2:c4:23:a4:57:b0:a5:c6:fd:2d:e3:79:f2:8c:19:
8e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:41:ED:58:9C:1F:E7:98:CE:C6:75:65:0F:04:3F:3F:3F:D0:6C:3A
X509v3 Authority Key Identifier:
keyid:93:EF:A2:BF:90:A2:37:28:85:27:27:F1:26:ED:E6:52:86:C3:CA:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k--iv5CiNyiFJyfxJu3mUobDymc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/a92eb2-b2ba-4efd-bd09-6abb1ccb6153/1/7kHtWJwf55jOxnVlDwQ_Pz_QbDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/a92eb2-b2ba-4efd-bd09-6abb1ccb6153/1/k--iv5CiNyiFJyfxJu3mUobDymc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.247.0/24
164.152.216.0/24
185.218.2.0/24
IPv6:
2001:3900::/29
2a11:2800:239::/48
2a11:2800:761::/48
2a11:2800:10db::/48
2a11:2800:131c::/48
2a11:2800:1bce::/48
2a11:2800:1f33::/48
2a11:2800:2047::/48
2a11:2800:215b::/48
2a11:2800:285d::/48
2a11:2800:3dc6::/48
2a11:2800:661f::/48
2a11:2800:792e::/48
2a11:2800:9e16::/48
2a11:2800:b41d::/48
2a11:2801:35d3::/48
2a11:2801:4ac9::/48
2a11:2801:5a28::/48
2a11:2803:e78b::/48
Signature Algorithm: sha256WithRSAEncryption
a1:71:c6:09:bd:77:de:f5:8a:b0:b4:f7:13:63:b4:a6:55:a5:
17:39:22:af:57:9d:18:8c:2f:a3:2a:1b:a1:b9:84:8d:4b:e2:
cc:b6:08:7f:04:cd:08:1b:28:2e:fc:4a:08:a5:34:c0:bb:9d:
d9:bd:2a:99:fa:d8:80:17:f2:41:7d:28:6f:4b:7d:5b:9e:2c:
79:74:72:3c:27:f6:34:a2:df:74:5e:09:9c:28:05:2c:36:3d:
5c:b3:88:0e:76:ce:be:3b:12:ee:7f:61:ca:15:a8:2e:5f:d7:
b0:54:67:82:f2:0f:7a:f6:6f:d7:0d:73:7e:17:1f:e4:1d:4d:
78:a8:22:a6:24:1a:bb:56:cf:65:1e:59:72:ab:46:be:bc:9c:
47:fc:6b:6b:bd:9f:28:1f:5e:75:8d:5b:58:8d:41:73:71:42:
1d:d2:0c:c3:53:f4:9b:23:d1:cc:3f:b5:1b:76:df:b5:6f:26:
46:df:31:b4:a3:26:c5:26:f2:1d:0c:28:4e:22:21:66:4e:47:
a2:d1:e9:b7:11:5e:0a:33:e1:49:94:5f:13:65:b5:20:7d:06:
e3:f7:ac:72:d0:16:46:ce:f8:29:33:4f:bf:75:56:e4:31:85:
e4:d7:54:7f:53:85:2c:8f:c6:cb:1b:bc:4f:d6:d4:6f:03:6b:
ae:28:e3:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:46:17 2025 by rpki-client