Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/yyVRyBJgldYD_0KPsp4aXejOC6Q.roa
File: yyVRyBJgldYD_0KPsp4aXejOC6Q.roa (raw, json)
Hash identifier: J3OCXPtfb2Oal2ij0BA2gth4XCpBrJrWCvoLdVkcqaY=
Subject key identifier: CB:25:51:C8:12:60:95:D6:03:FF:42:8F:B2:9E:1A:5D:E8:CE:0B:A4
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01979D506E64471929ADACA6661A0FCE37F8
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/yyVRyBJgldYD_0KPsp4aXejOC6Q.roa
Signing time: Mon 23 Jun 2025 15:03:03 +0000
ROA not before: Mon 23 Jun 2025 15:03:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212314
IP address blocks: 80.64.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:9d:50:6e:64:47:19:29:ad:ac:a6:66:1a:0f:ce:37:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jun 23 15:03:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb2551c8126095d603ff428fb29e1a5de8ce0ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:5c:0c:6e:52:85:1f:8e:67:e2:e1:97:60:23:
f6:42:a5:f4:dc:65:2b:76:34:d7:73:95:54:ee:5a:
6d:69:c1:a5:17:c6:a5:c6:4e:5a:7c:a2:08:67:ca:
b2:7f:d4:14:3f:2e:17:86:3c:72:9c:db:c6:cd:33:
d8:a3:fe:c8:33:ab:ab:ea:0d:76:7f:4e:73:e5:a3:
99:62:94:75:99:ec:39:1f:b8:5f:4e:6c:21:b0:30:
d1:9d:fb:6b:7a:f9:08:43:43:a1:8e:1c:ff:86:ef:
30:e9:5e:47:94:94:94:9a:f9:e4:88:58:06:60:a5:
2b:e0:e3:f0:27:5c:95:0f:8c:6c:60:2b:51:63:27:
ed:ff:c5:c6:b5:83:4a:4c:06:25:f3:5a:5c:5b:fd:
83:e6:6e:c4:7a:46:c5:88:b5:f9:f5:ce:80:8a:40:
5f:40:ad:54:e6:1b:d1:d1:96:03:be:4a:b9:e5:aa:
3c:a4:af:0b:3a:39:99:b2:9c:c9:63:9b:6e:e2:87:
86:7d:99:6f:98:cb:87:13:32:f3:51:76:ed:54:3e:
e1:c5:79:f3:86:29:0b:15:fa:02:07:c6:c3:47:cd:
cd:23:a6:59:88:5e:e4:6b:77:a2:19:45:d6:33:94:
65:10:08:9a:3c:f7:05:9d:08:2e:1c:c6:6b:3f:d2:
f9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:25:51:C8:12:60:95:D6:03:FF:42:8F:B2:9E:1A:5D:E8:CE:0B:A4
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/yyVRyBJgldYD_0KPsp4aXejOC6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.16.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ac:38:d0:18:92:1c:e9:17:f7:a2:f5:9f:69:10:93:4c:b3:
23:76:c2:d1:23:e2:ba:ba:c9:20:90:fc:48:2f:8e:18:8e:78:
e7:0e:28:65:ec:f0:1b:83:ab:ed:35:c8:02:78:db:90:2e:df:
c4:5d:f3:3c:aa:82:89:5b:4c:2b:a9:33:b9:96:01:34:d2:c0:
91:57:61:7a:11:ef:ad:4b:b5:53:72:16:3b:db:a1:4b:ef:d2:
2a:f0:7f:a0:cf:ea:32:b7:3e:ba:aa:f9:e0:bb:01:86:76:76:
c5:d0:7e:38:75:ac:11:32:8c:8f:19:4d:72:23:65:10:33:2a:
36:86:dc:94:b2:f7:b2:b5:b5:2b:33:e5:1a:60:9c:62:54:c7:
c5:66:21:54:b1:f5:2f:39:8e:19:f0:e7:a5:16:b5:45:80:02:
99:30:08:39:57:a3:be:d1:5c:13:05:26:46:fd:4d:d4:42:f8:
ec:d4:7f:00:78:6a:5d:44:10:75:e5:67:31:b1:ba:c8:a9:1d:
82:47:a7:d9:6e:1b:57:a7:af:2d:3e:8a:3b:08:c1:50:3f:ae:
01:60:cd:03:f6:10:48:11:62:37:b3:f9:4b:bf:a2:95:e0:2f:
5a:96:86:4c:81:49:72:9e:db:67:f0:5e:eb:cb:84:8e:fe:30:
1d:89:e6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 21:23:08 2025 by rpki-client