Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/TLJiRRlOwtTTUz20TZKNV_ibyho.roa
File: TLJiRRlOwtTTUz20TZKNV_ibyho.roa (raw, json)
Hash identifier: nl+gTrTAcZwj7M8TY8eq7Uo7CmcdFRJEseyL47O4t3o=
Subject key identifier: 4C:B2:62:45:19:4E:C2:D4:D3:53:3D:B4:4D:92:8D:57:F8:9B:CA:1A
Certificate issuer: /CN=01bfe882d13e803fc194373ea40d8a5a9e69f304
Certificate serial: 0197E9179EB493597D2E76BD07C4D2557073
Authority key identifier: 01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/TLJiRRlOwtTTUz20TZKNV_ibyho.roa
Signing time: Tue 08 Jul 2025 08:12:08 +0000
ROA not before: Tue 08 Jul 2025 08:12:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200647
IP address blocks: 185.67.196.0/22 maxlen: 22
2a05:1280::/29 maxlen: 29
2a05:1280::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 14:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e9:17:9e:b4:93:59:7d:2e:76:bd:07:c4:d2:55:70:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01bfe882d13e803fc194373ea40d8a5a9e69f304
Validity
Not Before: Jul 8 08:12:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4cb26245194ec2d4d3533db44d928d57f89bca1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:91:8a:f4:f2:e8:59:b3:24:71:b2:76:66:
5f:3b:65:00:9d:64:2d:d6:d5:73:eb:0b:50:d9:20:
b9:64:3b:8f:fe:89:4a:06:05:39:bb:90:f5:61:09:
3f:4f:96:09:55:40:3e:25:9b:c8:f9:c6:e5:b9:27:
01:cf:6e:5b:d7:c1:58:01:d0:82:62:15:23:0c:d0:
c5:d1:73:cf:20:db:55:1e:5d:49:b2:ca:75:89:9d:
3b:b9:f2:ee:6a:73:e1:f0:2d:69:d3:22:35:51:ee:
6b:5f:e0:ff:8e:44:8c:68:6d:6f:85:2e:ff:a4:d8:
05:f0:47:ae:3a:1d:fb:d3:da:ed:02:11:f1:e0:b6:
f4:ef:e9:d8:41:4f:bb:b1:5e:32:bc:8f:22:02:f5:
d3:08:9e:77:53:89:a6:39:93:42:f9:48:1b:a8:21:
a9:06:06:cc:10:1d:2a:c1:e4:48:22:20:2b:4a:f5:
26:2c:24:35:ff:97:3a:44:e9:5f:7b:65:44:a4:62:
2d:80:ab:c7:6d:2e:ad:02:fc:23:fa:14:7a:d4:ce:
4d:f4:aa:16:80:dd:20:ab:24:a6:46:8a:16:a6:5e:
ed:44:dd:f5:aa:53:bd:8f:44:ab:74:94:87:ca:4f:
b4:ba:09:a7:23:e2:b1:55:7a:50:23:67:ad:bf:b2:
0b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B2:62:45:19:4E:C2:D4:D3:53:3D:B4:4D:92:8D:57:F8:9B:CA:1A
X509v3 Authority Key Identifier:
keyid:01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/TLJiRRlOwtTTUz20TZKNV_ibyho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.196.0/22
IPv6:
2a05:1280::/29
Signature Algorithm: sha256WithRSAEncryption
32:4f:d7:18:ef:45:c2:37:c8:bf:e9:b1:ce:54:79:fc:72:af:
17:f9:a4:dd:d7:31:5c:a0:1d:f6:2d:ca:91:38:02:d8:13:18:
83:fd:d3:00:b8:e2:3d:62:86:ba:20:e7:04:60:73:d6:7a:1d:
ac:8b:47:af:db:38:69:5e:55:06:61:e8:b3:34:2c:b6:9c:5e:
20:6d:ab:11:e2:31:e7:d7:73:2e:0e:01:48:ea:86:21:74:d4:
f9:c0:1f:30:42:90:4c:d7:5e:9f:49:f9:a5:34:15:7b:19:78:
88:31:61:c1:9a:6d:3f:1a:36:f8:07:54:1a:d4:3d:be:31:40:
07:6d:4a:b1:1c:15:73:7e:af:29:11:e6:61:dd:73:55:f5:20:
4f:84:c2:5c:2a:87:43:bb:97:18:2d:3c:65:f3:f6:f4:c4:21:
fe:f0:be:5f:c5:11:29:75:da:8f:89:92:bd:02:a6:1a:eb:fe:
9e:15:35:18:a5:45:a2:02:cd:88:c5:60:13:b5:7c:e2:1c:6f:
ca:f2:f9:3b:7b:50:9c:7b:03:24:72:83:f1:c7:b1:1c:0e:38:
63:60:4c:5b:31:ae:e8:78:81:21:1d:f8:fe:e4:26:f7:f0:42:
e2:2e:0c:f1:66:d0:5c:1c:b1:7a:a8:24:66:92:d4:6d:f4:5f:
ec:bd:7f:ef
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZfpF560k1l9Lna9B8TSVXBzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxYmZlODgyZDEzZTgwM2ZjMTk0MzczZWE0MGQ4YTVhOWU2
OWYzMDQwHhcNMjUwNzA4MDgxMjA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2IyNjI0NTE5NGVjMmQ0ZDM1MzNkYjQ0ZDkyOGQ1N2Y4OWJjYTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVyRivTy6FmzJHGydmZfO2UAnWQt
1tVz6wtQ2SC5ZDuP/olKBgU5u5D1YQk/T5YJVUA+JZvI+cbluScBz25b18FYAdCC
YhUjDNDF0XPPINtVHl1Jssp1iZ07ufLuanPh8C1p0yI1Ue5rX+D/jkSMaG1vhS7/
pNgF8EeuOh3709rtAhHx4Lb07+nYQU+7sV4yvI8iAvXTCJ53U4mmOZNC+UgbqCGp
BgbMEB0qweRIIiArSvUmLCQ1/5c6ROlfe2VEpGItgKvHbS6tAvwj+hR61M5N9KoW
gN0gqySmRooWpl7tRN31qlO9j0SrdJSHyk+0ugmnI+KxVXpQI2etv7ILGQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEyyYkUZTsLU01M9tE2SjVf4m8oaMB8GA1UdIwQY
MBaAFAG/6ILRPoA/wZQ3PqQNilqeafMEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWJfb2d0RS1nRF9CbERjLXBBMktXcDVwOHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy82NmMwOGEtZWU1OS00NzcxLWE4ZjIt
MmE1NTM5OWE4MGIwLzEvVExKaVJSbE93dFRUVXoyMFRaS05WX2lieWhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy82NmMwOGEtZWU1OS00NzcxLWE4ZjItMmE1NTM5OWE4MGIw
LzEvQWJfb2d0RS1nRF9CbERjLXBBMktXcDVwOHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUPEMA0E
AgACMAcDBQMqBRKAMA0GCSqGSIb3DQEBCwUAA4IBAQAyT9cY70XCN8i/6bHOVHn8
cq8X+aTd1zFcoB32LcqROALYExiD/dMAuOI9Yoa6IOcEYHPWeh2si0ev2zhpXlUG
YeizNCy2nF4gbasR4jHn13MuDgFI6oYhdNT5wB8wQpBM116fSfmlNBV7GXiIMWHB
mm0/Gjb4B1Qa1D2+MUAHbUqxHBVzfq8pEeZh3XNV9SBPhMJcKodDu5cYLTxl8/b0
xCH+8L5fxREpddqPiZK9AqYa6/6eFTUYpUWiAs2IxWATtXziHG/K8vk7e1CcewMk
coPxx7EcDjhjYExbMa7oeIEhHfj+5Cb38ELiLgzxZtBcHLF6qCRmktRt9F/svX/v
-----END CERTIFICATE-----
Generated at Tue Jul 29 18:08:34 2025 by rpki-client