Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/fi7u_8aaxqQqH2QeccD8KGKx3hM.roa
File: fi7u_8aaxqQqH2QeccD8KGKx3hM.roa (raw, json)
Hash identifier: 0Mmbiog2iLNRJeesgr68dLzWfBwYCoI0LBsDE3h2PiQ=
Subject key identifier: 7E:2E:EE:FF:C6:9A:C6:A4:2A:1F:64:1E:71:C0:FC:28:62:B1:DE:13
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0197D0F45403BEF832FC95949BCCA1220229
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/fi7u_8aaxqQqH2QeccD8KGKx3hM.roa
Signing time: Thu 03 Jul 2025 15:42:42 +0000
ROA not before: Thu 03 Jul 2025 15:42:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209874
IP address blocks: 2a11:7e06::/32 maxlen: 32
2a14:3085::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 14:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d0:f4:54:03:be:f8:32:fc:95:94:9b:cc:a1:22:02:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jul 3 15:42:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e2eeeffc69ac6a42a1f641e71c0fc2862b1de13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:da:03:df:a8:dc:f5:14:78:a4:13:48:87:72:
8d:9e:f4:2c:8a:8d:3d:27:17:2b:77:0f:77:11:66:
2b:52:00:27:08:29:2f:b3:d6:61:87:8b:81:d5:76:
ec:63:61:87:39:cb:bb:21:77:67:07:76:eb:13:12:
d9:d1:3f:6c:71:c8:e1:6f:80:4f:d9:bd:cf:12:e4:
32:18:15:c3:32:b2:63:b5:6e:83:a7:b6:54:fe:4e:
38:c8:00:bf:94:1f:f4:4b:43:87:09:83:07:6e:c3:
01:5a:c4:f7:7a:bb:2e:95:14:84:21:ae:5a:8e:ec:
a8:df:6d:24:4e:87:76:7e:c7:64:34:57:6a:5e:0c:
d6:df:f9:52:25:c5:71:77:ec:df:5f:a1:83:61:1b:
de:cb:1e:5b:18:34:2a:24:8d:47:ca:a1:29:80:e0:
4c:a4:03:dc:c2:e1:49:98:35:96:af:35:06:42:24:
27:c3:c7:7d:52:38:2f:94:ae:b5:9e:9a:21:c7:a7:
56:74:de:be:02:f5:b6:08:04:48:75:6f:44:8b:b5:
c9:aa:c3:0e:9a:6c:8e:60:67:d7:e9:e4:0b:5a:d8:
7b:5f:40:e2:82:c9:64:69:a4:f1:47:9a:92:96:13:
0a:cd:0f:1e:a3:05:9e:9e:66:71:32:c4:a4:08:83:
7b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:2E:EE:FF:C6:9A:C6:A4:2A:1F:64:1E:71:C0:FC:28:62:B1:DE:13
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/fi7u_8aaxqQqH2QeccD8KGKx3hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:7e06::/32
2a14:3085::/32
Signature Algorithm: sha256WithRSAEncryption
2f:24:23:75:20:27:53:13:ca:66:c6:7a:81:74:15:5f:dc:2f:
7e:d2:c2:aa:2e:86:df:2c:eb:23:94:ef:cc:85:5b:a0:08:c1:
6c:7d:c6:6b:de:60:9e:6f:79:34:a8:9a:23:7d:88:c4:89:df:
97:05:8e:57:6c:19:ad:78:39:37:69:ef:40:e7:a3:b0:57:63:
c3:46:1b:26:72:a3:fe:97:b2:33:0b:7e:2f:53:e8:c8:7a:bb:
60:84:f2:f7:87:a2:89:1d:f8:93:51:6b:c7:20:f6:84:31:84:
70:f3:57:45:e2:e7:4e:3a:9c:f3:5d:77:33:f3:69:6a:a1:4d:
b6:4a:1d:cf:2f:d5:14:6e:8e:e9:b4:d7:8f:f5:92:d9:d3:66:
60:fc:e0:76:6d:4a:93:50:b7:88:7e:d9:93:72:5d:14:d3:d3:
5a:1a:2d:de:af:af:bb:23:52:a9:4a:bf:7b:86:9a:e5:44:22:
e8:3f:cc:ab:ad:2d:ef:47:05:75:6f:dd:6b:ec:27:d8:a3:b4:
17:46:ab:7a:8a:d4:1b:70:55:b7:1b:60:40:7a:b7:16:00:bc:
5e:99:7a:4c:24:78:ce:ef:e7:2c:cb:0b:e7:6e:a4:a3:21:9d:
b9:a9:42:9b:e7:da:1e:95:16:a3:71:b4:72:66:ec:da:9d:49:
a0:51:51:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 22:50:56 2025 by rpki-client