Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/yMOpAmqxqg0a6EDYQWzT4EavBvw.roa
File: yMOpAmqxqg0a6EDYQWzT4EavBvw.roa (raw, json)
Hash identifier: yicZ1paw2jc8xl9euKIWprR6Ij78FDs/LCEhj1EOd9g=
Subject key identifier: C8:C3:A9:02:6A:B1:AA:0D:1A:E8:40:D8:41:6C:D3:E0:46:AF:06:FC
Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Certificate serial: 01942748156E036A1EABCE4AD66A2C6C64AE
Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/yMOpAmqxqg0a6EDYQWzT4EavBvw.roa
Signing time: Thu 02 Jan 2025 13:50:23 +0000
ROA not before: Thu 02 Jan 2025 13:50:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207142
IP address blocks: 2a13:b483::/32 maxlen: 48
2a13:b484::/31 maxlen: 48
2a13:b486::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:15:6e:03:6a:1e:ab:ce:4a:d6:6a:2c:6c:64:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Validity
Not Before: Jan 2 13:50:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8c3a9026ab1aa0d1ae840d8416cd3e046af06fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6b:fb:8a:26:7b:c0:d0:f8:42:ab:6b:da:8a:
d7:32:b1:67:63:7e:b0:c1:a6:32:87:be:8c:44:a7:
34:ae:14:4c:93:95:88:4e:6a:36:f5:ae:08:54:b3:
9a:2f:84:e9:94:14:17:31:5f:4d:db:52:53:41:09:
c6:71:ba:68:40:e3:59:70:b1:f3:3c:6b:f5:0a:f0:
14:ba:32:f8:ce:96:70:f1:27:0d:17:60:48:e5:82:
ad:29:db:ac:02:aa:e1:24:46:54:c4:62:9c:84:18:
59:cd:b5:fa:5a:b9:6e:a1:83:3e:b7:83:46:51:28:
b1:5e:63:fa:ad:c5:1b:0a:db:ce:5d:6d:77:8d:89:
0f:d7:c0:05:21:52:26:a0:8c:05:42:75:f9:e1:72:
37:81:6e:8e:37:cb:7a:8d:c2:7a:cd:bf:eb:9b:b7:
26:88:1c:1f:15:89:47:1d:0d:af:04:b5:39:53:b6:
47:09:2f:b0:f7:e0:49:78:85:63:18:f7:8c:79:f7:
5a:cf:42:d3:5f:24:c4:dd:37:fc:4c:57:b5:f7:8b:
84:a5:06:9f:20:fe:fe:0a:a3:05:fb:27:9a:35:83:
da:db:56:f0:23:61:b8:5b:98:16:d5:d5:6f:26:e0:
b2:3f:d4:d4:c1:32:d8:66:80:dc:59:d0:f6:c2:f6:
1a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C3:A9:02:6A:B1:AA:0D:1A:E8:40:D8:41:6C:D3:E0:46:AF:06:FC
X509v3 Authority Key Identifier:
keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/yMOpAmqxqg0a6EDYQWzT4EavBvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b483::-2a13:b486:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
46:82:ac:54:44:c3:0a:a6:44:c1:b5:dd:b4:d1:35:3d:ec:ba:
cd:28:25:eb:c0:07:5d:9a:21:c3:ff:fd:70:7f:b2:41:9d:6f:
55:8f:2b:38:c5:b7:93:68:0b:91:70:dc:59:8a:90:52:bd:49:
7d:07:e3:f4:d9:e7:38:bf:f5:06:1e:1f:0d:42:77:e4:be:9b:
eb:04:b8:d5:b2:2d:f7:84:99:7c:9c:7f:7c:09:46:9d:bb:fc:
e7:30:64:86:c1:61:45:39:b2:7e:86:97:64:2c:de:da:64:c6:
da:4f:da:8e:a6:a2:c7:e0:05:42:2a:45:44:4e:55:24:92:eb:
a5:d1:ac:30:af:a9:4b:9a:3d:bc:e3:51:43:2c:73:81:8b:c6:
a0:1d:a3:2e:dc:5f:a5:bb:05:6b:c6:a0:21:9a:de:bc:08:09:
34:8e:33:ea:7d:99:b8:1f:b2:75:4d:00:9d:28:34:ac:77:d6:
c6:aa:02:6e:89:dd:78:d3:02:32:ac:b5:58:aa:f9:02:93:97:
4f:46:93:d0:13:3d:dd:e6:3f:71:c0:92:ca:4b:89:04:2b:fd:
da:ec:98:50:b7:80:36:3d:fe:87:bd:a6:50:e3:80:68:33:c1:
44:a9:90:fe:20:9c:c5:44:23:13:35:e0:b4:39:d3:82:38:9e:
6c:38:c2:2e
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgISAZQnSBVuA2oeq85K1mosbGSuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYTk3N2Y4NTRjNjNkYzlmOTdhMThiZTdiMTMwMDIxMjFh
NWQzODQwHhcNMjUwMTAyMTM1MDIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOGMzYTkwMjZhYjFhYTBkMWFlODQwZDg0MTZjZDNlMDQ2YWYwNmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWv7iiZ7wND4Qqtr2orXMrFnY36w
waYyh76MRKc0rhRMk5WITmo29a4IVLOaL4TplBQXMV9N21JTQQnGcbpoQONZcLHz
PGv1CvAUujL4zpZw8ScNF2BI5YKtKdusAqrhJEZUxGKchBhZzbX6WrluoYM+t4NG
USixXmP6rcUbCtvOXW13jYkP18AFIVImoIwFQnX54XI3gW6ON8t6jcJ6zb/rm7cm
iBwfFYlHHQ2vBLU5U7ZHCS+w9+BJeIVjGPeMefdaz0LTXyTE3Tf8TFe194uEpQaf
IP7+CqMF+yeaNYPa21bwI2G4W5gW1dVvJuCyP9TUwTLYZoDcWdD2wvYa8wIDAQAB
o4ICEzCCAg8wHQYDVR0OBBYEFMjDqQJqsaoNGuhA2EFs0+BGrwb8MB8GA1UdIwQY
MBaAFGypd/hUxj3J+XoYvnsTACEhpdOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQt
ZDZhNTk1MGNhZGYyLzEveU1PcEFtcXhxZzBhNkVEWVFXelQ0RWF2QnZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQtZDZhNTk1MGNhZGYy
LzEvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQMA4DBQAqE7SD
AwUAKhO0hjANBgkqhkiG9w0BAQsFAAOCAQEARoKsVETDCqZEwbXdtNE1Pey6zSgl
68AHXZohw//9cH+yQZ1vVY8rOMW3k2gLkXDcWYqQUr1JfQfj9NnnOL/1Bh4fDUJ3
5L6b6wS41bIt94SZfJx/fAlGnbv85zBkhsFhRTmyfoaXZCze2mTG2k/ajqaix+AF
QipFRE5VJJLrpdGsMK+pS5o9vONRQyxzgYvGoB2jLtxfpbsFa8agIZrevAgJNI4z
6n2ZuB+ydU0AnSg0rHfWxqoCbondeNMCMqy1WKr5ApOXT0aT0BM93eY/ccCSykuJ
BCv92uyYULeANj3+h72mUOOAaDPBRKmQ/iCcxUQjEzXgtDnTgjiebDjCLg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:24:27 2025 by rpki-client