Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/KffqQYj4gMaNvn0q5SyjiNhf6Vo.roa
File: KffqQYj4gMaNvn0q5SyjiNhf6Vo.roa (raw, json)
Hash identifier: 9crEtv8/iEFdMiq2HyzvvG51KyitSfa/U/shMlHv5/k=
Subject key identifier: 29:F7:EA:41:88:F8:80:C6:8D:BE:7D:2A:E5:2C:A3:88:D8:5F:E9:5A
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 019812022BD75C61471073A1AAB4AD042030
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/KffqQYj4gMaNvn0q5SyjiNhf6Vo.roa
Signing time: Wed 16 Jul 2025 06:53:08 +0000
ROA not before: Wed 16 Jul 2025 06:53:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216473
IP address blocks: 80.66.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 14:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:12:02:2b:d7:5c:61:47:10:73:a1:aa:b4:ad:04:20:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jul 16 06:53:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=29f7ea4188f880c68dbe7d2ae52ca388d85fe95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7f:f6:5d:df:ba:61:ef:82:2c:4c:40:1b:88:
75:6e:a5:53:d8:3c:88:0c:26:66:e0:4d:0c:f8:5c:
c5:d7:33:24:85:dc:2a:6d:13:ee:c6:77:d8:67:05:
d5:2d:45:4e:aa:0b:cb:34:2d:d2:7f:cb:13:e2:80:
8e:13:4b:54:bf:aa:4b:fa:4b:0b:07:0f:1b:44:39:
7a:99:42:e0:b5:18:92:b1:e2:bd:f2:50:f0:f4:fa:
58:a4:41:9c:8c:21:91:82:9f:ee:70:5d:f2:4c:bc:
b5:4e:41:3e:07:8c:33:82:b1:d9:49:3c:a6:4f:18:
d1:3c:b6:6c:84:46:a6:9b:5f:5d:6b:ce:c6:f2:01:
35:f2:b0:0c:2a:dc:87:ff:22:c5:81:3d:ae:d2:17:
ce:aa:9f:df:34:49:70:1f:c5:f3:18:a8:6b:01:c8:
f0:2d:28:46:3a:98:7a:68:46:df:73:c9:14:ee:4c:
f3:0f:15:6c:95:dc:19:c7:ee:7d:b1:3c:18:b0:d2:
44:96:cf:27:9a:11:94:a0:17:8d:73:82:13:4d:f1:
aa:9c:d0:25:1f:c7:49:6f:2f:ea:bd:3c:8d:f0:f5:
4c:d2:b6:1c:00:d8:99:c6:ed:f5:99:c1:a1:80:d7:
94:a3:5a:7a:86:ed:b6:8c:6d:1e:67:e2:ad:f6:6f:
e0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F7:EA:41:88:F8:80:C6:8D:BE:7D:2A:E5:2C:A3:88:D8:5F:E9:5A
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/KffqQYj4gMaNvn0q5SyjiNhf6Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.83.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4e:fd:12:ca:4c:1c:6c:3f:5b:9b:28:5e:b4:45:df:b2:6f:
46:9f:eb:7e:3e:ec:ee:c5:3d:ea:30:2a:50:23:d0:75:7a:a9:
33:82:0b:5d:92:2b:0d:59:c3:1e:d7:2e:81:f5:f7:b5:a0:19:
f4:5d:a4:36:2a:05:82:10:d4:04:c7:b3:08:63:71:d6:44:53:
ea:37:25:ec:dd:f9:57:0c:38:08:ff:c6:a2:7d:54:49:2c:b7:
03:6b:a8:58:7d:a3:2a:08:8c:d1:4f:d7:4c:bc:ce:ae:80:33:
17:2f:29:e6:5f:57:e3:b7:5b:00:3e:f2:d1:0e:6b:29:99:f4:
67:9f:04:34:1f:98:28:7f:98:d4:2c:fd:b1:26:65:39:fd:ac:
25:76:59:ed:10:9a:f3:14:d6:0d:ef:f8:b1:1f:88:fb:29:cf:
6c:c9:11:0f:62:58:8f:8d:5a:ab:39:e2:48:99:fb:76:e7:dc:
a0:37:a0:19:ab:c2:34:c1:8d:be:6e:68:44:bb:c0:3f:7a:79:
ea:7d:ea:55:4f:c4:6a:a1:74:2a:18:5a:85:53:b6:10:7b:6d:
a4:f0:ce:0c:7b:01:87:06:ed:e7:82:6a:c5:7d:3c:0a:16:37:
a0:13:f3:0b:20:23:37:b8:5b:1c:30:16:54:dd:8b:c2:90:f6:
9f:25:0a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 23:21:18 2025 by rpki-client