Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/9V0V0TWla292WegpFbtNtEZx5Xw.roa
File: 9V0V0TWla292WegpFbtNtEZx5Xw.roa (raw, json)
Hash identifier: KNzulQ6NxvhYVAcXIZmNlXhjIn7bsEfG7NthGO37xGg=
Subject key identifier: F5:5D:15:D1:35:A5:6B:6F:76:59:E8:29:15:BB:4D:B4:46:71:E5:7C
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0197EF5F4A6D42E5A411BAC1409842425CE6
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/9V0V0TWla292WegpFbtNtEZx5Xw.roa
Signing time: Wed 09 Jul 2025 13:28:09 +0000
ROA not before: Wed 09 Jul 2025 13:28:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214546
IP address blocks: 151.242.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ef:5f:4a:6d:42:e5:a4:11:ba:c1:40:98:42:42:5c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jul 9 13:28:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f55d15d135a56b6f7659e82915bb4db44671e57c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0c:68:7c:dd:48:2f:59:2b:b2:24:21:bd:a9:
a6:ab:f7:bc:9c:4e:ba:31:68:b4:0e:89:76:b8:6c:
ea:34:39:87:dd:bb:83:83:e4:55:99:c5:50:ca:a9:
32:b8:4d:03:e8:aa:ae:32:80:2d:2e:9a:18:c9:c6:
ee:f3:9c:73:85:5c:5e:89:32:0c:b5:f6:4d:3e:b4:
a0:90:70:2b:2f:88:48:07:5f:c1:e9:3a:06:86:a1:
55:07:e5:f6:9f:6d:46:55:b4:94:10:98:45:a8:a8:
3f:a7:ff:b6:03:f9:5c:39:d8:13:e4:98:9c:24:5b:
9b:12:60:d0:4e:95:c5:f7:5c:10:69:e3:ed:e7:de:
e3:33:27:eb:74:0a:b4:45:2b:d9:7e:18:ef:46:cc:
aa:2c:0e:6f:6e:cf:0a:b2:5f:45:88:71:50:28:bc:
97:4e:47:c9:fd:91:2b:ff:24:bf:d3:1e:c3:ac:f0:
87:d7:a9:e7:d8:c9:9f:51:80:fd:b8:5f:9e:a2:3d:
8b:a7:38:8d:74:10:2d:0b:86:b0:8c:93:a1:c9:2e:
40:c9:ad:f2:c1:9b:21:df:51:f5:19:3c:00:d1:40:
c0:41:bd:2b:af:a0:8d:17:3b:b7:7e:5e:ba:0d:16:
05:a0:b5:e5:d4:4f:61:ba:4c:3a:ab:f9:dc:3a:c9:
92:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5D:15:D1:35:A5:6B:6F:76:59:E8:29:15:BB:4D:B4:46:71:E5:7C
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/9V0V0TWla292WegpFbtNtEZx5Xw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.103.0/24
Signature Algorithm: sha256WithRSAEncryption
77:b0:6b:2e:55:ea:66:dc:98:60:e7:90:fa:d8:92:6a:0a:6b:
33:95:da:b2:6d:4d:c9:3b:36:49:70:cd:1d:dc:ea:05:17:40:
8d:93:91:24:75:b4:85:d5:76:f6:10:f4:93:e3:41:69:38:57:
2d:bd:90:91:e7:ae:95:8c:bf:7a:fb:2c:d3:a6:26:f3:7e:e0:
11:d7:f8:5a:94:9d:b2:d8:d7:af:6e:09:ff:15:fe:8d:0f:ab:
82:62:76:10:39:13:1e:21:fd:ee:12:88:19:c8:06:ea:9d:2c:
6b:1f:ef:7b:8f:33:ca:ed:5c:63:e4:07:e8:d7:a4:a5:02:eb:
53:7e:d3:5c:48:4b:92:7a:a8:c3:05:20:ab:dc:23:e4:5c:0a:
ba:a2:66:31:28:61:d9:64:24:f1:54:7e:75:0f:f2:99:62:31:
a6:a5:08:45:ac:e6:46:ac:4e:1b:3e:ee:cc:66:47:80:a4:c3:
d6:95:dc:8e:28:00:77:54:28:6c:c0:2d:b1:14:cd:6b:99:e7:
1b:95:7c:6c:41:8f:1c:f6:e3:89:21:49:3a:e7:79:17:0e:a5:
ec:35:fb:3c:8b:64:19:3c:16:46:17:9d:47:6f:bf:12:7c:9a:
4e:93:4f:e5:52:68:14:d2:33:59:d1:32:e0:d5:86:11:0c:2a:
68:65:9b:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZfvX0ptQuWkEbrBQJhCQlzmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjUwNzA5MTMyODA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTVkMTVkMTM1YTU2YjZmNzY1OWU4MjkxNWJiNGRiNDQ2NzFlNTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQxofN1IL1krsiQhvammq/e8nE66
MWi0Dol2uGzqNDmH3buDg+RVmcVQyqkyuE0D6KquMoAtLpoYycbu85xzhVxeiTIM
tfZNPrSgkHArL4hIB1/B6ToGhqFVB+X2n21GVbSUEJhFqKg/p/+2A/lcOdgT5Jic
JFubEmDQTpXF91wQaePt597jMyfrdAq0RSvZfhjvRsyqLA5vbs8Ksl9FiHFQKLyX
TkfJ/ZEr/yS/0x7DrPCH16nn2MmfUYD9uF+eoj2LpziNdBAtC4awjJOhyS5Aya3y
wZsh31H1GTwA0UDAQb0rr6CNFzu3fl66DRYFoLXl1E9hukw6q/ncOsmSlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPVdFdE1pWtvdlnoKRW7TbRGceV8MB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvOVYwVjBUV2xhMjkyV2VncEZidE50RVp4NVh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/JnMA0G
CSqGSIb3DQEBCwUAA4IBAQB3sGsuVepm3Jhg55D62JJqCmszldqybU3JOzZJcM0d
3OoFF0CNk5EkdbSF1Xb2EPST40FpOFctvZCR566VjL96+yzTpibzfuAR1/halJ2y
2Nevbgn/Ff6ND6uCYnYQORMeIf3uEogZyAbqnSxrH+97jzPK7Vxj5Afo16SlAutT
ftNcSEuSeqjDBSCr3CPkXAq6omYxKGHZZCTxVH51D/KZYjGmpQhFrOZGrE4bPu7M
ZkeApMPWldyOKAB3VChswC2xFM1rmecblXxsQY8c9uOJIUk653kXDqXsNfs8i2QZ
PBZGF51Hb78SfJpOk0/lUmgU0jNZ0TLg1YYRDCpoZZvr
-----END CERTIFICATE-----
Generated at Sun Jul 20 19:00:15 2025 by rpki-client