Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/doz6pIZLFsQi2mYQNJFMwi6P3-w.roa
File: doz6pIZLFsQi2mYQNJFMwi6P3-w.roa (raw, json)
Hash identifier: cmXkx2OZFz2XattOJlW1YfABpPcx3f/r/UMGYZNOMGI=
Subject key identifier: 76:8C:FA:A4:86:4B:16:C4:22:DA:66:10:34:91:4C:C2:2E:8F:DF:EC
Certificate issuer: /CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Certificate serial: 0197E4D040C0EBC72B9B4F3E79F901F0A568
Authority key identifier: FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/doz6pIZLFsQi2mYQNJFMwi6P3-w.roa
Signing time: Mon 07 Jul 2025 12:15:42 +0000
ROA not before: Mon 07 Jul 2025 12:15:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200865
IP address blocks: 212.126.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e4:d0:40:c0:eb:c7:2b:9b:4f:3e:79:f9:01:f0:a5:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Validity
Not Before: Jul 7 12:15:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=768cfaa4864b16c422da661034914cc22e8fdfec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ab:b2:36:6c:b1:35:e4:77:eb:17:af:f0:74:
5b:16:c6:77:04:27:06:a1:c5:9b:ac:6c:80:b2:14:
9b:7d:a8:3f:f3:07:29:7d:b2:df:17:f5:d9:8d:8d:
c3:33:38:4d:0e:ba:2d:0b:fc:71:ed:4d:b0:77:b8:
10:08:4d:c2:2b:6b:9f:96:bc:9f:4a:96:87:3a:45:
df:fe:eb:a9:0a:fb:95:fe:2f:bf:39:84:e6:12:61:
cf:a2:b4:fe:c7:d9:09:b5:e6:56:bc:df:5e:23:03:
cc:57:da:a1:a5:1b:59:49:de:d4:d5:27:28:f5:a1:
14:dc:22:e1:a7:2c:dc:81:47:44:f0:31:75:cc:40:
42:b1:ab:a4:49:89:aa:ce:cd:de:2e:52:60:64:fd:
c4:d4:5f:e2:fc:54:bd:4f:a1:bc:a0:e8:b7:fa:f1:
59:b7:6f:9b:ac:20:57:ef:09:1b:a4:82:66:0a:aa:
a9:5e:4f:cb:cb:51:68:95:39:b7:95:49:cf:e4:cb:
82:4b:7c:9d:2f:45:65:dc:6d:72:8c:63:32:56:43:
4d:3e:93:b2:41:36:a1:e2:cb:cc:ff:fa:77:95:d0:
08:5a:13:77:15:be:b9:e2:5b:7e:20:b3:d3:b9:3e:
86:51:9b:69:67:3c:0d:89:41:7c:99:23:4a:36:e3:
d8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8C:FA:A4:86:4B:16:C4:22:DA:66:10:34:91:4C:C2:2E:8F:DF:EC
X509v3 Authority Key Identifier:
keyid:FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/doz6pIZLFsQi2mYQNJFMwi6P3-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.126.100.0/24
Signature Algorithm: sha256WithRSAEncryption
84:ab:89:af:4d:62:54:25:75:7d:55:c1:47:c5:54:4e:34:a1:
e7:96:c8:74:cc:a4:6f:e3:4f:2e:b6:21:02:75:e6:dc:b1:21:
68:a6:c2:65:86:24:6a:8c:4a:8c:6e:5c:23:05:cd:f8:88:50:
26:1c:61:c2:5b:44:bd:82:72:8d:34:71:03:55:bc:23:72:4c:
92:44:71:d6:a1:5d:7b:7b:55:b5:b1:b0:6d:bf:aa:cc:cd:1a:
f1:34:27:aa:93:91:9e:bd:ce:f7:f2:66:f6:53:96:9e:00:31:
61:b2:22:31:2c:c1:02:9a:c0:78:b1:bb:ce:89:bb:2e:46:4a:
d1:e4:cd:a7:02:56:1d:94:21:8a:4f:0d:6a:1c:db:ec:2f:6a:
38:12:46:f8:a3:30:11:74:ec:4b:96:d4:47:21:5b:14:38:71:
b6:96:fd:69:fb:c9:75:7e:c8:e6:cf:93:d1:f9:c9:48:77:12:
c6:84:67:f8:fb:c2:fd:3a:84:9b:d8:e1:6e:af:d0:42:ff:10:
5b:2b:b6:be:15:5b:94:4e:bb:0e:b0:f8:52:0d:ea:11:c6:7f:
78:d9:4c:aa:a8:03:16:30:1a:9f:e1:7a:3e:82:c4:d0:16:71:
13:30:84:f8:3e:25:44:8c:90:ba:7e:d1:8c:29:3e:25:15:6b:
72:db:b9:c7
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZfk0EDA68crm08+efkB8KVoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhY2NiYjcyYWE5ODg0YTViZjhkMGU3NTc0MDRhMTdlNWUy
MzMyMmMwHhcNMjUwNzA3MTIxNTQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjhjZmFhNDg2NGIxNmM0MjJkYTY2MTAzNDkxNGNjMjJlOGZkZmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6uyNmyxNeR36xev8HRbFsZ3BCcG
ocWbrGyAshSbfag/8wcpfbLfF/XZjY3DMzhNDrotC/xx7U2wd7gQCE3CK2uflryf
SpaHOkXf/uupCvuV/i+/OYTmEmHPorT+x9kJteZWvN9eIwPMV9qhpRtZSd7U1Sco
9aEU3CLhpyzcgUdE8DF1zEBCsaukSYmqzs3eLlJgZP3E1F/i/FS9T6G8oOi3+vFZ
t2+brCBX7wkbpIJmCqqpXk/Ly1FolTm3lUnP5MuCS3ydL0Vl3G1yjGMyVkNNPpOy
QTah4svM//p3ldAIWhN3Fb654lt+ILPTuT6GUZtpZzwNiUF8mSNKNuPYEwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFHaM+qSGSxbEItpmEDSRTMIuj9/sMB8GA1UdIwQY
MBaAFPrMu3KqmISlv40OdXQEoX5eIzIsMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1zeTdjcXFZaEtXX2pRNTFkQVNoZmw0ak1pdy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvZThjYjQ0LWE5NTQtNDY3Mi1iOWE0
LWE0OWU1YzY2MzNiZC8xL2RvejZwSVpMRnNRaTJtWVFOSkZNd2k2UDMtdy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTMvZThjYjQ0LWE5NTQtNDY3Mi1iOWE0LWE0OWU1YzY2MzNi
ZC8xLzEtc3k3Y3FxWWhLV19qUTUxZEFTaGZsNGpNaXcuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADUfmQw
DQYJKoZIhvcNAQELBQADggEBAISria9NYlQldX1VwUfFVE40oeeWyHTMpG/jTy62
IQJ15tyxIWimwmWGJGqMSoxuXCMFzfiIUCYcYcJbRL2Cco00cQNVvCNyTJJEcdah
XXt7VbWxsG2/qszNGvE0J6qTkZ69zvfyZvZTlp4AMWGyIjEswQKawHixu86Juy5G
StHkzacCVh2UIYpPDWoc2+wvajgSRvijMBF07EuW1EchWxQ4cbaW/Wn7yXV+yObP
k9H5yUh3EsaEZ/j7wv06hJvY4W6v0EL/EFsrtr4VW5ROuw6w+FIN6hHGf3jZTKqo
AxYwGp/hej6CxNAWcRMwhPg+JUSMkLp+0YwpPiUVa3Lbucc=
-----END CERTIFICATE-----
Generated at Sun Jul 27 01:50:15 2025 by rpki-client