Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/VV7E4-bWPf5-x3iAH2pLpIbUZB4.roa
File: VV7E4-bWPf5-x3iAH2pLpIbUZB4.roa (raw, json)
Hash identifier: /pFUfHYcehAVWxHsWClvJPSZ555ki0qehIn71rh1DjU=
Subject key identifier: 55:5E:C4:E3:E6:D6:3D:FE:7E:C7:78:80:1F:6A:4B:A4:86:D4:64:1E
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0197FA9DB41A50EFBE2405C4539690FE4C1A
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/VV7E4-bWPf5-x3iAH2pLpIbUZB4.roa
Signing time: Fri 11 Jul 2025 17:52:08 +0000
ROA not before: Fri 11 Jul 2025 17:52:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213861
IP address blocks: 2a06:b440::/29 maxlen: 32
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft
rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 18:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:fa:9d:b4:1a:50:ef:be:24:05:c4:53:96:90:fe:4c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 11 17:52:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=555ec4e3e6d63dfe7ec778801f6a4ba486d4641e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a8:9c:5c:38:5a:1f:21:4d:f0:8f:f6:06:f8:
12:4d:c3:ef:8c:08:d5:61:55:08:21:13:5a:ba:f6:
bd:ce:83:cf:43:36:d8:36:76:81:33:90:4a:29:b4:
a1:cc:23:46:c9:ac:df:b4:0e:56:6b:29:36:cc:4e:
b3:01:83:39:61:6a:b6:00:1f:70:c9:2e:ac:23:e8:
25:9d:a1:04:c7:07:8c:d3:e7:c8:91:f2:34:80:33:
39:11:75:8c:27:f3:6c:30:82:03:09:ef:26:51:8f:
fd:8d:e4:10:3c:a6:db:92:75:86:f8:66:fe:dd:9a:
d7:bf:c2:db:99:f6:c2:ef:84:b4:ff:17:27:91:3e:
51:9b:2b:bc:04:b2:1a:b7:40:5d:02:9e:a3:a1:64:
c9:c8:2b:dc:d4:99:89:52:02:b7:49:c8:2a:55:68:
07:16:05:30:fe:7b:ad:8f:d4:5a:c1:ed:83:02:2a:
ba:aa:82:7b:73:43:60:22:04:79:85:93:58:e5:ff:
63:e6:3b:80:8b:ab:bc:4d:d3:65:52:4c:ba:6f:48:
36:a1:e2:3e:c5:e5:5c:56:4e:a9:e2:8a:f1:6d:ad:
82:82:f8:0a:ac:ba:a3:37:0d:ec:fe:ca:1b:cf:6e:
9f:a8:55:c8:70:6b:28:94:32:a4:36:ff:83:6f:c6:
fd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5E:C4:E3:E6:D6:3D:FE:7E:C7:78:80:1F:6A:4B:A4:86:D4:64:1E
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/VV7E4-bWPf5-x3iAH2pLpIbUZB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b440::/29
2a0e:7780::/29
2a0f:d480::/29
2a11:dcc0::/29
2a12:440::/29
2a12:6640::/29
2a12:6b80::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
Signature Algorithm: sha256WithRSAEncryption
05:90:5f:72:32:a3:80:4a:a2:f0:3e:5d:ef:49:1f:b4:0d:d5:
5e:bd:20:c1:62:2e:89:fe:f8:77:87:bf:f5:ae:85:ce:f2:47:
f3:78:97:dd:03:bc:e0:ba:e8:50:db:ca:bf:52:95:fa:e1:85:
5b:c3:99:45:77:2f:b9:b4:61:d0:3b:e5:d3:84:c8:ac:19:0f:
2f:aa:4f:95:0a:7f:4e:8f:4b:7e:af:94:ce:a9:31:7d:b0:45:
9c:1b:6a:74:bf:09:e8:ac:43:f8:da:40:47:39:ef:41:f1:95:
07:fb:46:7b:a0:a3:15:ab:46:fa:ec:61:5e:70:d2:d7:ee:36:
5d:37:2b:33:06:eb:7f:d1:5d:53:cd:08:89:78:d3:8d:38:6d:
be:fb:b6:ae:09:ce:25:f8:f5:af:5d:d6:3d:de:78:9d:ad:86:
20:9a:06:b1:f1:ec:d4:8d:bf:1c:8c:51:0a:96:02:ba:bf:39:
2f:32:ff:4d:88:51:af:6c:f0:91:0b:d5:e7:10:5c:88:c6:be:
90:93:4f:50:ea:79:b0:5c:ec:6a:97:bb:cc:bf:1f:e2:a2:dc:
4c:94:63:b3:e4:fa:c9:33:2f:e0:a5:8d:4d:55:c0:eb:b1:c5:
45:90:94:88:46:b2:c2:e7:a7:53:8c:a9:23:4b:32:04:20:f1:
a8:82:39:d1
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAZf6nbQaUO++JAXEU5aQ/kwaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjUwNzExMTc1MjA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTVlYzRlM2U2ZDYzZGZlN2VjNzc4ODAxZjZhNGJhNDg2ZDQ2NDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6icXDhaHyFN8I/2BvgSTcPvjAjV
YVUIIRNauva9zoPPQzbYNnaBM5BKKbShzCNGyazftA5Wayk2zE6zAYM5YWq2AB9w
yS6sI+glnaEExweM0+fIkfI0gDM5EXWMJ/NsMIIDCe8mUY/9jeQQPKbbknWG+Gb+
3ZrXv8LbmfbC74S0/xcnkT5Rmyu8BLIat0BdAp6joWTJyCvc1JmJUgK3ScgqVWgH
FgUw/nutj9Rawe2DAiq6qoJ7c0NgIgR5hZNY5f9j5juAi6u8TdNlUky6b0g2oeI+
xeVcVk6p4orxba2CgvgKrLqjNw3s/sobz26fqFXIcGsolDKkNv+Db8b9wwIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFFVexOPm1j3+fsd4gB9qS6SG1GQeMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvVlY3RTQtYldQZjUteDNpQUgycExwSWJVWkI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAAjBiAwUDKga0QAMF
AyoOd4ADBQMqD9SAAwUDKhHcwAMFAyoSBEADBQMqEmZAAwUDKhJrgAMFAyoS8MAD
BQMqE7oAAwUDKhPawAMFAyoUAMADBQMqFAHAAwUDKhQIAAMFAyoUD0AwDQYJKoZI
hvcNAQELBQADggEBAAWQX3Iyo4BKovA+Xe9JH7QN1V69IMFiLon++HeHv/Wuhc7y
R/N4l90DvOC66FDbyr9SlfrhhVvDmUV3L7m0YdA75dOEyKwZDy+qT5UKf06PS36v
lM6pMX2wRZwbanS/CeisQ/jaQEc570HxlQf7RnugoxWrRvrsYV5w0tfuNl03KzMG
63/RXVPNCIl40404bb77tq4JziX49a9d1j3eeJ2thiCaBrHx7NSNvxyMUQqWArq/
OS8y/02IUa9s8JEL1ecQXIjGvpCTT1DqebBc7GqXu8y/H+Ki3EyUY7Pk+skzL+Cl
jU1VwOuxxUWQlIhGssLnp1OMqSNLMgQg8aiCOdE=
-----END CERTIFICATE-----
Generated at Thu Jul 24 02:42:11 2025 by rpki-client