Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1vzmlXTUF1rUoOk2DS-RZGbtZpI.roa
File: 1vzmlXTUF1rUoOk2DS-RZGbtZpI.roa (raw, json)
Hash identifier: AOrzrs1wVMMb+f7N3W93+5pgyEcqlv+os/0laQ8Hmsk=
Subject key identifier: D6:FC:E6:95:74:D4:17:5A:D4:A0:E9:36:0D:2F:91:64:66:ED:66:92
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0199C4E57DD597E4307B5E05F9A30372DA87
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1vzmlXTUF1rUoOk2DS-RZGbtZpI.roa
Signing time: Wed 08 Oct 2025 17:36:38 +0000
ROA not before: Wed 08 Oct 2025 17:36:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 835
IP address blocks: 2a06:1180:1c5::/48 maxlen: 48
2a06:1181:100::/48 maxlen: 48
2a06:1183:9999::/48 maxlen: 48
2a06:1184:99::/48 maxlen: 48
2a06:a600::/29 maxlen: 32
2a06:bf40::/29 maxlen: 32
2a07:95c0::/29 maxlen: 32
2a09:17c1:ad::/48 maxlen: 48
2a0a:2d06:acab::/48 maxlen: 48
2a0a:2d07:cc::/48 maxlen: 48
2a0c:7886:7b8a::/48 maxlen: 48
2a0c:d380::/29 maxlen: 32
2a0d:8f80::/29 maxlen: 32
2a0e:15c0:100::/48 maxlen: 48
2a0e:15c7:e8::/48 maxlen: 48
2a0e:2440::/29 maxlen: 32
2a0e:f601:bf89::/48 maxlen: 48
2a0e:f603:11::/48 maxlen: 48
2a0f:1206:1312::/48 maxlen: 48
2a0f:1584:1312::/48 maxlen: 48
2a0f:1e80:100::/48 maxlen: 48
2a0f:3d80:acab::/48 maxlen: 48
2a0f:3d86:101::/48 maxlen: 48
2a0f:7d04:2::/48 maxlen: 48
2a0f:7d06:11::/48 maxlen: 48
2a0f:e1c7:99::/48 maxlen: 48
2a0f:e200:5641::/48 maxlen: 48
2a0f:e202:44::/48 maxlen: 48
2a0f:e6c6:101::/48 maxlen: 48
2a0f:e7c6:55::/48 maxlen: 48
2a0f:e7c7:189::/48 maxlen: 48
2a0f:e844:8642::/48 maxlen: 48
2a0f:ee00::/29 maxlen: 32
2a10:3140::/29 maxlen: 32
2a11:4e80::/29 maxlen: 32
2a12:ac44:b5a9::/48 maxlen: 48
2a12:d100::/29 maxlen: 32
2a12:ecc0:316::/48 maxlen: 48
2a12:ecc3:acab::/48 maxlen: 48
2a13:2bc0::/29 maxlen: 32
2a13:8f00::/29 maxlen: 32
2a13:c900:9876::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 Oct 2025 11:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c4:e5:7d:d5:97:e4:30:7b:5e:05:f9:a3:03:72:da:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 8 17:36:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d6fce69574d4175ad4a0e9360d2f916466ed6692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:aa:b2:7d:ff:83:43:45:98:d3:15:50:45:40:
ce:b0:a4:30:87:e0:6b:be:12:f0:ca:d9:7f:b8:2f:
3e:e7:ea:a5:0a:7e:6b:78:33:37:42:7c:77:e5:bc:
55:bb:0b:d5:68:1b:00:bb:c1:e6:b6:a7:ab:51:70:
07:88:ae:f7:56:22:f5:3a:53:e4:93:bd:0f:37:8e:
df:3e:2d:8e:93:b7:be:76:91:12:a1:6a:63:9b:75:
1c:d5:13:81:75:d6:b4:57:44:ba:03:e6:3a:9d:c7:
62:ba:d0:34:d1:59:0b:b2:36:38:f0:12:3f:58:da:
f7:4d:a7:23:2a:99:da:64:a1:f7:f1:45:07:b6:05:
76:f2:ec:aa:75:95:a9:7b:b5:69:2a:97:5c:a0:cb:
5a:c5:43:3d:d3:05:2d:a4:f1:28:87:69:af:6b:ce:
0f:1e:e8:23:2d:70:45:51:3b:72:44:f5:dd:9f:7c:
59:03:c8:2b:7c:a5:27:21:3b:90:4a:47:49:13:a1:
23:9b:c2:51:67:2f:79:86:8c:0e:af:49:40:43:c2:
6d:e1:e8:de:54:82:c3:71:97:5c:14:84:c9:f1:76:
db:01:fa:9f:85:e7:08:2d:76:ab:a0:3e:f8:07:f8:
f1:59:44:d4:84:4c:6d:a2:90:d5:06:30:f5:b9:8c:
91:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FC:E6:95:74:D4:17:5A:D4:A0:E9:36:0D:2F:91:64:66:ED:66:92
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1vzmlXTUF1rUoOk2DS-RZGbtZpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1180:1c5::/48
2a06:1181:100::/48
2a06:1183:9999::/48
2a06:1184:99::/48
2a06:a600::/29
2a06:bf40::/29
2a07:95c0::/29
2a09:17c1:ad::/48
2a0a:2d06:acab::/48
2a0a:2d07:cc::/48
2a0c:7886:7b8a::/48
2a0c:d380::/29
2a0d:8f80::/29
2a0e:15c0:100::/48
2a0e:15c7:e8::/48
2a0e:2440::/29
2a0e:f601:bf89::/48
2a0e:f603:11::/48
2a0f:1206:1312::/48
2a0f:1584:1312::/48
2a0f:1e80:100::/48
2a0f:3d80:acab::/48
2a0f:3d86:101::/48
2a0f:7d04:2::/48
2a0f:7d06:11::/48
2a0f:e1c7:99::/48
2a0f:e200:5641::/48
2a0f:e202:44::/48
2a0f:e6c6:101::/48
2a0f:e7c6:55::/48
2a0f:e7c7:189::/48
2a0f:e844:8642::/48
2a0f:ee00::/29
2a10:3140::/29
2a11:4e80::/29
2a12:ac44:b5a9::/48
2a12:d100::/29
2a12:ecc0:316::/48
2a12:ecc3:acab::/48
2a13:2bc0::/29
2a13:8f00::/29
2a13:c900:9876::/48
Signature Algorithm: sha256WithRSAEncryption
c0:18:69:c2:ca:ae:15:05:0a:2c:99:36:50:56:69:66:54:f5:
4b:01:d5:fc:49:65:eb:ca:ff:87:de:c0:5d:23:21:69:62:7c:
52:d2:e5:28:cd:4e:04:15:ae:94:06:fc:ae:4d:b4:d2:38:83:
17:85:36:f6:fc:a6:ad:fd:14:a1:44:a2:d7:f7:36:43:65:a2:
0c:3d:d4:a0:a8:d7:7d:43:84:cf:9b:97:e5:c5:02:24:ed:1c:
b4:7e:6a:4a:7b:96:e6:c3:8a:f2:52:d4:a1:30:21:bb:05:cb:
f8:e6:d5:6a:92:4f:8b:6f:15:06:7c:e4:f6:fa:92:0b:bb:a5:
e7:59:73:1f:d9:ee:f0:ea:91:3b:2b:dc:5a:69:f0:d7:b5:d2:
f2:0f:26:c4:bd:64:c5:39:a5:5c:58:29:fe:03:eb:dc:f7:d1:
c2:55:a5:61:32:77:85:16:4e:d2:0e:5a:5b:bf:d8:5f:4f:90:
17:60:14:64:a7:18:ca:fe:a2:2c:15:e3:57:dc:b2:15:9f:e6:
c9:a6:cc:bf:e0:ee:97:16:80:11:fe:57:d4:54:58:f5:fa:e4:
23:35:95:57:ce:38:17:13:44:81:3f:95:5f:c8:6d:9b:10:8b:
6c:e2:5a:1d:cf:a6:42:24:aa:2d:6e:51:3a:4c:96:2a:ef:10:
a0:fc:2e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 11 16:42:29 2025 by rpki-client