Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/jrev2CCg204y6thtVMgx8NoOHvc.roa
File: jrev2CCg204y6thtVMgx8NoOHvc.roa (raw, json)
Hash identifier: XInUBJm/rNM3kh1KQHkzlYycOkqI3p4/VV8cWm6nGSY=
Subject key identifier: 8E:B7:AF:D8:20:A0:DB:4E:32:EA:D8:6D:54:C8:31:F0:DA:0E:1E:F7
Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Certificate serial: 0196B99EBDFEC71DD424629361BF50F67682
Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/jrev2CCg204y6thtVMgx8NoOHvc.roa
Signing time: Sat 10 May 2025 09:55:10 +0000
ROA not before: Sat 10 May 2025 09:55:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208754
IP address blocks: 2a14:67c1:a110::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:9e:bd:fe:c7:1d:d4:24:62:93:61:bf:50:f6:76:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Validity
Not Before: May 10 09:55:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8eb7afd820a0db4e32ead86d54c831f0da0e1ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:63:be:cb:0b:d8:d4:4a:58:fd:f3:28:f5:6b:
36:fc:9b:1e:fe:e5:f0:5f:84:6c:7e:31:ca:8e:1e:
c8:96:4e:4d:b4:2f:59:97:47:15:2a:3b:ed:50:cc:
cd:ff:3b:f6:7e:b1:4f:48:9a:5a:70:96:6b:28:8b:
16:59:b2:f9:cf:dc:ff:b2:58:1f:4e:a4:54:5d:22:
f5:ed:0d:76:e6:73:3f:d8:5d:2c:b0:f7:33:fb:dd:
e3:c3:be:a0:8e:e8:ca:42:1c:08:ef:14:64:b3:e6:
86:44:db:dc:78:2f:0a:bb:7b:fe:69:33:8c:5c:17:
cb:07:ef:76:99:80:65:9f:c2:92:c7:8b:4a:dc:a0:
2f:94:96:f9:28:9f:2c:a4:00:ed:5c:ad:09:f5:4c:
b4:f5:31:a0:68:6f:c9:f6:d9:71:84:5c:f7:a8:7a:
c7:12:d8:fd:d6:b5:94:13:a6:9a:42:46:b5:f6:fb:
69:b9:d4:6f:e4:06:38:0c:51:15:fa:5c:3d:67:89:
89:50:4a:c1:f7:3e:f2:a4:0c:e2:e4:61:77:e6:78:
ad:9d:66:a8:ee:29:3e:94:80:52:37:e1:5c:07:82:
99:f0:be:3b:35:27:e4:87:ca:42:bb:59:9b:2f:00:
6c:f7:b6:0c:71:7d:8f:81:75:02:25:50:ec:13:95:
40:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B7:AF:D8:20:A0:DB:4E:32:EA:D8:6D:54:C8:31:F0:DA:0E:1E:F7
X509v3 Authority Key Identifier:
keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/jrev2CCg204y6thtVMgx8NoOHvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:67c1:a110::/44
Signature Algorithm: sha256WithRSAEncryption
83:06:f1:ff:09:45:f3:9e:28:35:93:c3:77:fe:7e:92:10:b7:
d1:45:08:39:83:6c:1a:1c:25:23:fc:1b:a6:14:5a:0a:67:78:
91:85:ad:85:61:42:6f:48:2c:0d:3a:66:2f:3e:e8:77:8a:d7:
b7:a6:3b:b5:ed:85:c2:8c:5e:a4:4d:9e:40:ba:ff:86:c6:0b:
6f:1d:11:58:8c:ba:97:da:00:bd:24:cd:58:55:c0:9b:8f:e3:
5a:1a:2c:9c:31:8e:a5:8b:52:40:69:a4:50:cc:2c:a9:1a:99:
98:6c:bc:ea:19:7f:31:2d:4a:87:61:80:6c:9c:ff:53:83:42:
80:36:07:14:56:05:c3:5d:1e:a4:62:60:a7:8c:2a:c3:1d:7b:
02:43:cb:ba:a3:1b:08:3e:0e:d9:71:21:45:23:b4:f9:10:bd:
dc:c8:7c:d7:e6:92:49:fa:a2:01:bc:6b:be:89:4e:98:47:f8:
ee:31:85:d6:5a:65:2f:fb:af:b5:6b:ec:05:02:ab:d8:6f:52:
da:ca:b0:e3:3f:c3:b0:65:2d:14:81:6a:24:cd:9b:57:6d:70:
9f:fe:b3:d1:07:ff:a5:8a:53:c4:01:0e:af:05:2e:27:c4:4c:
29:c0:63:2e:79:30:39:c9:3c:9e:5d:b2:38:96:5c:e0:38:90:
5d:68:75:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:34:13 2025 by rpki-client