Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/tlIT9EE8YpMp8nWSniI3miatB10.roa
File: tlIT9EE8YpMp8nWSniI3miatB10.roa (raw, json)
Hash identifier: hMUJkDEHVtxIORugCsH16m3DT06lYDeH6qg/65YvGew=
Subject key identifier: B6:52:13:F4:41:3C:62:93:29:F2:75:92:9E:22:37:9A:26:AD:07:5D
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01978710047E25E32555A1A0786640F9B1E5
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/tlIT9EE8YpMp8nWSniI3miatB10.roa
Signing time: Thu 19 Jun 2025 07:21:03 +0000
ROA not before: Thu 19 Jun 2025 07:21:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60223
IP address blocks: 2a12:6f40::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.mft
rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Jul 2025 07:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:87:10:04:7e:25:e3:25:55:a1:a0:78:66:40:f9:b1:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 19 07:21:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b65213f4413c629329f275929e22379a26ad075d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e6:72:8b:c1:01:1a:e4:ca:b3:fa:1c:2d:2c:
c6:64:45:a1:08:e4:a4:13:cd:30:b5:58:5e:92:23:
9c:17:16:3a:2b:d4:dc:61:be:92:d0:3e:fb:e5:ec:
ac:65:42:ac:37:84:eb:16:13:a7:2c:c9:ad:bc:68:
9b:7e:57:69:04:44:d4:aa:7d:2f:8c:1a:b1:e6:74:
8d:a5:3d:a1:45:59:c6:a7:c6:06:12:c1:43:be:95:
35:ec:0b:54:b9:fe:d3:27:f0:56:9e:c9:3f:5f:a4:
84:dd:81:0b:9a:00:22:8c:88:df:5e:a8:f1:c5:07:
ae:6b:3d:af:12:37:ad:71:5d:82:e6:6c:00:34:14:
c1:6e:49:d1:d3:69:4c:ad:7a:a9:0d:b8:6b:4c:5e:
b7:8a:c3:83:76:49:49:c1:8c:42:15:55:42:d9:a2:
22:6b:f5:d5:71:66:dd:f8:34:fd:0b:41:98:e9:f6:
ed:55:cc:26:c1:a4:2f:fe:08:6a:ec:d0:b8:06:57:
29:0a:d4:4a:4b:69:28:2b:6e:9a:96:99:28:f2:60:
ae:8c:8c:e0:3a:e5:7c:ee:18:11:c6:49:e0:23:08:
30:f9:0b:9b:7e:be:a6:a5:cf:64:a2:16:9e:ab:5b:
aa:89:34:4b:c7:b3:a6:5b:72:ea:13:d5:46:cd:9a:
48:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:52:13:F4:41:3C:62:93:29:F2:75:92:9E:22:37:9A:26:AD:07:5D
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/tlIT9EE8YpMp8nWSniI3miatB10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6f40::/29
Signature Algorithm: sha256WithRSAEncryption
5d:69:25:3d:6c:28:3b:01:30:32:9e:b3:e7:0d:59:59:cf:7c:
f2:81:ed:dd:5a:b9:6d:0b:a0:0b:c0:b0:45:b1:67:01:00:7e:
0e:28:16:91:c5:77:f3:95:af:13:1b:48:62:e4:bd:d8:2a:03:
d8:d6:e8:43:78:dd:0c:55:da:8b:ed:da:44:c7:2c:35:9e:a8:
15:ed:84:d1:19:d3:7c:1d:8b:5f:06:6f:ef:6f:fe:51:38:c7:
35:70:fb:47:9c:e8:18:55:89:93:36:dd:53:86:0a:2c:11:07:
cf:3c:94:af:82:0f:cb:38:7b:7a:50:ff:e8:e1:b4:37:80:cb:
74:a2:8b:0e:60:c3:cc:bf:02:c8:67:03:79:65:7c:97:b5:fc:
56:55:fe:98:74:73:8a:1e:86:1c:67:f5:b4:fe:89:03:69:0c:
4b:8a:5f:d6:db:fa:7b:76:75:a9:19:d4:41:d1:56:df:bc:b2:
a5:52:4e:34:89:a0:ff:e8:cb:60:1d:8f:cd:0a:bd:73:f4:c7:
69:9f:eb:6e:1f:f2:24:9a:4b:bd:17:92:8e:d0:35:c7:6d:ba:
54:7b:1d:65:c6:07:56:ec:d3:f0:82:b5:f4:57:16:59:4c:cf:
99:8d:65:19:88:e9:dd:b3:d1:ef:63:2b:86:48:66:9c:82:b4:
78:48:13:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 6 15:25:33 2025 by rpki-client