Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/MOzq-NYdKJnTuHwNYdAsFo1Gmi4.roa
File: MOzq-NYdKJnTuHwNYdAsFo1Gmi4.roa (raw, json)
Hash identifier: z0+kegXU+JUQxfSASCG4KZ1iWH/lsrixwwJpZV75uFc=
Subject key identifier: 30:EC:EA:F8:D6:1D:28:99:D3:B8:7C:0D:61:D0:2C:16:8D:46:9A:2E
Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Certificate serial: 01983BF43B4B6A07BD3753AF7B27542876A7
Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/MOzq-NYdKJnTuHwNYdAsFo1Gmi4.roa
Signing time: Thu 24 Jul 2025 10:21:58 +0000
ROA not before: Thu 24 Jul 2025 10:21:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 401835
IP address blocks: 2a14:c380:320::/48 maxlen: 48
2a14:c380:321::/48 maxlen: 48
2a14:c380:322::/48 maxlen: 48
2a14:c380:323::/48 maxlen: 48
2a14:c380:324::/48 maxlen: 48
2a14:c380:325::/48 maxlen: 48
2a14:c380:326::/48 maxlen: 48
2a14:c380:327::/48 maxlen: 48
2a14:c380:328::/48 maxlen: 48
2a14:c380:329::/48 maxlen: 48
2a14:c380:32a::/48 maxlen: 48
2a14:c380:32b::/48 maxlen: 48
2a14:c380:32c::/48 maxlen: 48
2a14:c380:32d::/48 maxlen: 48
2a14:c380:32e::/48 maxlen: 48
2a14:c380:32f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 06:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:3b:f4:3b:4b:6a:07:bd:37:53:af:7b:27:54:28:76:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Validity
Not Before: Jul 24 10:21:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30eceaf8d61d2899d3b87c0d61d02c168d469a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ea:d4:4b:ff:dc:26:6b:06:49:ee:f5:c8:36:
ab:00:63:94:34:5c:da:be:cc:2a:5e:ea:19:69:ab:
85:84:b9:1d:a3:d3:74:2f:7f:ba:cc:55:a0:ee:63:
47:ed:78:ca:85:f8:f6:0d:f9:54:42:55:34:8e:da:
e6:3a:1b:2f:83:35:60:e4:fa:31:d8:6f:69:16:5f:
43:3e:b6:a9:72:50:47:70:cb:d9:b9:d4:b8:91:6f:
bd:ca:1b:ad:97:6a:f2:8f:1a:2f:83:dc:ff:8e:3a:
c8:58:e4:a2:36:c6:10:0f:cd:72:e8:11:bf:6a:8e:
9b:eb:6c:d8:e3:8d:18:bb:37:26:b4:af:fe:a7:90:
40:65:03:cb:08:f1:2a:aa:f2:4b:6e:52:0f:c2:75:
2f:a9:ff:07:32:0b:17:57:1d:08:97:ba:77:b2:98:
06:8c:b0:c3:51:d8:bb:90:49:72:69:ea:8d:46:77:
86:ad:2c:eb:74:ae:11:b4:7b:0f:b8:c2:ae:97:07:
78:b0:ee:53:7c:61:c2:47:74:6a:b5:f6:57:5a:6a:
e1:78:00:05:c8:98:00:89:21:44:ab:d4:01:69:f9:
cc:72:8f:f6:a0:7f:d8:56:ff:f1:17:6f:fe:e8:3a:
79:b0:c3:f9:2a:ba:1e:56:43:c0:bf:dc:18:50:87:
a9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EC:EA:F8:D6:1D:28:99:D3:B8:7C:0D:61:D0:2C:16:8D:46:9A:2E
X509v3 Authority Key Identifier:
keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/MOzq-NYdKJnTuHwNYdAsFo1Gmi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c380:320::/44
Signature Algorithm: sha256WithRSAEncryption
75:5b:4f:81:96:cf:eb:a4:f9:b4:88:77:bf:23:35:0f:15:af:
cd:71:f6:1b:dd:7f:8e:7e:33:7d:f9:92:47:f4:4c:6f:77:f1:
31:94:b3:ba:e0:43:3c:f6:aa:b3:bb:f1:9d:14:ce:c6:3a:c1:
f8:f0:a1:39:e6:a9:de:8f:e3:3e:55:50:96:aa:9f:99:af:39:
2e:6f:65:5b:ba:53:9a:81:23:44:d5:c2:d9:bc:dc:0d:a9:94:
0e:b5:b2:c6:a7:f9:7a:ea:7b:fc:56:1f:86:05:6f:0c:66:15:
63:ad:e0:d8:08:42:dc:dc:12:d3:e8:d6:e3:f4:ef:cb:85:62:
e4:01:66:31:6e:37:e9:b6:69:ba:92:00:7a:5c:67:f9:12:7c:
d6:0d:62:32:f3:85:bb:66:e1:27:40:ed:39:88:27:63:30:e1:
51:53:c8:5a:6d:8c:d5:9f:90:9b:34:79:ce:c5:a5:8e:c0:3a:
6b:cb:08:6b:1a:63:6a:d1:b9:b9:ac:82:90:63:d7:69:75:a2:
41:2b:45:b4:63:80:0f:a6:92:53:ba:af:2c:4a:d2:19:3f:1f:
c4:4b:26:d3:7b:e9:02:f0:a0:e3:be:55:fe:8d:ee:00:4a:2f:
d6:3c:05:a9:c0:48:81:49:58:ad:69:56:b9:af:1d:2c:7e:91:
34:f0:92:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 15:55:39 2025 by rpki-client