Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/06Lo3TEshbdLYbOiItMhIrRRP7Y.roa
File: 06Lo3TEshbdLYbOiItMhIrRRP7Y.roa (raw, json)
Hash identifier: UneRobUa0HOEvhDKQSJldaXTwM77pPlsoKNgn+2tT6w=
Subject key identifier: D3:A2:E8:DD:31:2C:85:B7:4B:61:B3:A2:22:D3:21:22:B4:51:3F:B6
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 019802E9BC5420883BC2459E90BDFA245E71
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/06Lo3TEshbdLYbOiItMhIrRRP7Y.roa
Signing time: Sun 13 Jul 2025 08:32:08 +0000
ROA not before: Sun 13 Jul 2025 08:32:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48147
IP address blocks: 2a05:9080:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 06:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:02:e9:bc:54:20:88:3b:c2:45:9e:90:bd:fa:24:5e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Jul 13 08:32:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d3a2e8dd312c85b74b61b3a222d32122b4513fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4f:75:82:6f:9b:57:d4:82:91:6a:a2:85:f6:
a1:5e:3a:ec:3f:c7:b9:94:7d:93:2d:5b:a4:aa:9f:
20:8f:11:d5:95:ea:3e:0a:d6:70:57:b7:54:77:e6:
e4:a5:5f:9f:48:43:10:01:59:e3:37:44:07:e3:4b:
54:0f:e0:fc:07:ec:79:ae:f6:32:ac:32:e6:80:12:
f4:72:a0:ea:f9:c6:93:db:60:3e:2f:36:db:f9:10:
16:96:9b:85:eb:c5:e7:60:c2:c2:96:cb:6a:3a:59:
16:9f:e0:83:15:72:2d:58:cb:61:d2:fa:c5:99:e8:
88:ec:dd:76:16:cd:0f:65:b1:b8:3a:e8:9a:3c:ff:
98:9a:8a:44:a1:2c:4b:9d:63:ff:2d:13:20:c1:c9:
be:58:90:06:80:a4:57:1f:11:d4:7c:b1:a0:d9:0f:
90:91:5e:e1:0d:c1:90:33:9e:5e:bd:23:f9:8c:75:
b5:88:70:d5:4e:63:3c:ab:4a:3b:d9:c4:94:75:65:
99:58:9c:5c:2f:51:6a:48:25:86:0f:43:27:17:cd:
46:08:77:ac:31:e3:9d:c0:4d:76:6c:8c:de:be:9c:
13:a0:8c:70:99:fc:bc:23:b5:3e:2a:e4:7b:c6:a7:
21:9d:5f:e4:84:8b:82:b2:fd:6b:6f:d8:04:2a:7e:
f1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A2:E8:DD:31:2C:85:B7:4B:61:B3:A2:22:D3:21:22:B4:51:3F:B6
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/06Lo3TEshbdLYbOiItMhIrRRP7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9080:8::/48
Signature Algorithm: sha256WithRSAEncryption
5c:09:8a:6d:1d:54:33:1e:3b:de:ac:24:b0:f3:d2:9c:02:05:
4a:62:ad:d9:30:6c:93:42:2a:11:73:3c:5a:4b:76:2b:78:da:
ca:14:68:4d:49:80:21:d1:9e:d4:fe:48:0e:ac:63:ef:74:0a:
ce:b4:62:2d:f9:c0:85:89:3e:03:ae:12:cd:06:40:be:3b:5d:
a4:84:1a:d3:d9:c7:e3:73:42:2b:b1:9d:36:48:4f:f8:da:bf:
fb:9b:c3:a8:50:7e:eb:86:56:8a:c9:44:6b:22:94:ab:d8:39:
5f:d8:3c:0d:aa:eb:85:09:db:1a:82:e1:c0:a8:e4:4f:6a:78:
30:9a:de:b4:14:f6:3d:31:d8:87:60:0a:08:a1:ea:b8:3b:c9:
37:23:b1:2e:81:a0:12:5c:e2:1d:c9:5c:ab:46:f7:1d:e5:1e:
14:1c:48:83:3a:ea:28:3d:2c:18:06:de:5b:a1:9d:58:57:c3:
ba:e5:d3:07:9d:e4:5a:d4:5c:02:c1:40:33:f8:0b:4f:d8:9a:
3a:72:71:f0:f4:c6:3d:52:36:2b:c7:12:37:52:f8:63:8d:71:
d0:9b:97:9b:0a:5c:8f:9c:62:b2:ae:5a:65:5e:0b:e4:dc:49:
88:59:66:4b:9f:d5:18:dc:6b:a8:b5:aa:22:f2:d0:26:9b:d9:
59:d6:dd:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 14:55:37 2025 by rpki-client