Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/219c6f-e30f-4a9e-acc0-e0d576d5577a/1/3uavFejgiYtPvHU28rvkzS-PRoM.roa
File: 3uavFejgiYtPvHU28rvkzS-PRoM.roa (raw, json)
Hash identifier: adHlXrZvrLicIOOrKQ1qwcmYjjUJDcMR41QWoJ5Tzq8=
Subject key identifier: DE:E6:AF:15:E8:E0:89:8B:4F:BC:75:36:F2:BB:E4:CD:2F:8F:46:83
Certificate issuer: /CN=2450ca4aab2a3f8abc6c973aa7c0fa13f2571081
Certificate serial: 019962058EA4E0E3A1B27C970F87EBF2CA0A
Authority key identifier: 24:50:CA:4A:AB:2A:3F:8A:BC:6C:97:3A:A7:C0:FA:13:F2:57:10:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFDKSqsqP4q8bJc6p8D6E_JXEIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/219c6f-e30f-4a9e-acc0-e0d576d5577a/1/3uavFejgiYtPvHU28rvkzS-PRoM.roa
Signing time: Fri 19 Sep 2025 12:49:15 +0000
ROA not before: Fri 19 Sep 2025 12:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16190
IP address blocks: 91.195.254.0/23 maxlen: 24
91.195.255.0/24 maxlen: 24
91.198.108.0/23 maxlen: 23
91.198.108.0/24 maxlen: 24
91.198.109.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/219c6f-e30f-4a9e-acc0-e0d576d5577a/1/JFDKSqsqP4q8bJc6p8D6E_JXEIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/219c6f-e30f-4a9e-acc0-e0d576d5577a/1/JFDKSqsqP4q8bJc6p8D6E_JXEIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/JFDKSqsqP4q8bJc6p8D6E_JXEIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 21:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:62:05:8e:a4:e0:e3:a1:b2:7c:97:0f:87:eb:f2:ca:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2450ca4aab2a3f8abc6c973aa7c0fa13f2571081
Validity
Not Before: Sep 19 12:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dee6af15e8e0898b4fbc7536f2bbe4cd2f8f4683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d5:94:9d:1a:46:23:99:ca:ee:fc:e2:c3:ca:
c8:c6:c2:b6:4d:51:7b:19:80:35:d9:05:9e:da:b8:
24:7d:cc:7e:de:09:bf:bd:00:56:ed:e4:af:e6:99:
f6:ba:ff:0d:93:8d:ff:94:5b:ab:89:59:7b:3f:b2:
7c:35:9b:d7:90:52:97:77:dd:44:1d:85:2b:67:7e:
10:78:14:78:f1:0e:13:de:60:8f:9d:be:8a:b9:1f:
b9:48:1f:1d:72:48:1d:e9:aa:df:6e:44:86:b2:0c:
4f:30:2f:4a:4f:28:e5:0c:e2:dc:4b:03:6d:11:d9:
24:c7:ed:d5:6c:0c:7d:32:ec:b5:18:2a:58:aa:29:
6d:a7:c4:bf:91:b4:52:72:cf:4c:de:bd:f4:97:fa:
a3:4f:3a:b6:c0:d0:a4:e8:82:b0:93:4a:de:43:62:
03:c9:56:5b:12:f6:4f:f2:fa:4f:e5:61:ce:74:c8:
3e:c4:4b:4d:0f:d2:ad:77:3c:77:90:e0:96:c2:e1:
50:7c:ca:11:6e:9e:dd:0e:e2:3b:e7:ae:6b:76:30:
53:08:cd:ba:75:55:b4:58:08:d9:b6:68:de:83:21:
5b:5b:75:80:f9:bf:7b:df:d4:17:7b:fb:89:72:6b:
10:31:51:24:8c:78:4d:6a:7f:66:b9:5a:8e:86:16:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E6:AF:15:E8:E0:89:8B:4F:BC:75:36:F2:BB:E4:CD:2F:8F:46:83
X509v3 Authority Key Identifier:
keyid:24:50:CA:4A:AB:2A:3F:8A:BC:6C:97:3A:A7:C0:FA:13:F2:57:10:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFDKSqsqP4q8bJc6p8D6E_JXEIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/219c6f-e30f-4a9e-acc0-e0d576d5577a/1/3uavFejgiYtPvHU28rvkzS-PRoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/219c6f-e30f-4a9e-acc0-e0d576d5577a/1/JFDKSqsqP4q8bJc6p8D6E_JXEIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.254.0/23
91.198.108.0/23
Signature Algorithm: sha256WithRSAEncryption
78:fd:9a:12:a6:f7:ac:90:cf:35:c4:59:a1:9f:bd:83:a7:82:
a1:5c:c2:09:69:be:c7:86:26:c8:5a:0c:78:e1:2f:cf:af:03:
a0:44:56:42:19:e5:8e:56:9a:11:ef:53:6e:3c:3a:07:75:e9:
d6:a7:5d:bc:a6:b4:a1:e0:07:a0:07:06:c6:f8:7b:b8:df:b0:
b2:97:15:57:4e:7f:d8:28:c9:14:4a:45:cb:4b:75:2c:d0:5e:
ce:dc:6a:27:09:c4:53:6f:f0:e0:e5:92:fc:fa:da:7c:01:5c:
fd:86:b4:e8:74:8f:54:c6:ff:4c:0e:1c:9f:0b:07:f2:0b:42:
36:09:7f:ee:86:09:7c:f4:52:3d:ea:0b:74:63:bc:4c:83:46:
b5:b9:a7:ea:a2:b7:d3:eb:6c:44:53:4f:74:1c:8b:a9:fb:5f:
c3:8a:18:43:f9:9a:ea:3f:33:f9:df:84:47:40:8e:28:3c:79:
6b:57:86:5f:b9:83:0c:4c:b6:72:89:1c:50:72:04:50:78:36:
3d:52:68:2f:8e:ee:52:83:59:78:b1:36:d1:2a:76:61:75:85:
ff:43:f4:1e:f4:a0:99:1e:e4:15:7a:3d:f2:d4:b1:ea:b4:35:
36:59:54:d8:14:28:c9:6a:ef:2e:39:9d:b1:67:8d:87:01:f5:
f8:45:5f:8a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZliBY6k4OOhsnyXD4fr8soKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0NTBjYTRhYWIyYTNmOGFiYzZjOTczYWE3YzBmYTEzZjI1
NzEwODEwHhcNMjUwOTE5MTI0OTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZWU2YWYxNWU4ZTA4OThiNGZiYzc1MzZmMmJiZTRjZDJmOGY0NjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNWUnRpGI5nK7vziw8rIxsK2TVF7
GYA12QWe2rgkfcx+3gm/vQBW7eSv5pn2uv8Nk43/lFuriVl7P7J8NZvXkFKXd91E
HYUrZ34QeBR48Q4T3mCPnb6KuR+5SB8dckgd6arfbkSGsgxPMC9KTyjlDOLcSwNt
Edkkx+3VbAx9Muy1GCpYqiltp8S/kbRScs9M3r30l/qjTzq2wNCk6IKwk0reQ2ID
yVZbEvZP8vpP5WHOdMg+xEtND9Ktdzx3kOCWwuFQfMoRbp7dDuI7565rdjBTCM26
dVW0WAjZtmjegyFbW3WA+b9739QXe/uJcmsQMVEkjHhNan9muVqOhhZ17QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFN7mrxXo4ImLT7x1NvK75M0vj0aDMB8GA1UdIwQY
MBaAFCRQykqrKj+KvGyXOqfA+hPyVxCBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkZES1Nxc3FQNHE4YkpjNnA4RDZFX0pYRUlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yMTljNmYtZTMwZi00YTllLWFjYzAt
ZTBkNTc2ZDU1NzdhLzEvM3VhdkZlamdpWXRQdkhVMjhydmt6Uy1QUm9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8yMTljNmYtZTMwZi00YTllLWFjYzAtZTBkNTc2ZDU1Nzdh
LzEvSkZES1Nxc3FQNHE4YkpjNnA4RDZFX0pYRUlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW8P+AwQB
W8ZsMA0GCSqGSIb3DQEBCwUAA4IBAQB4/ZoSpveskM81xFmhn72Dp4KhXMIJab7H
hibIWgx44S/PrwOgRFZCGeWOVpoR71NuPDoHdenWp128prSh4AegBwbG+Hu437Cy
lxVXTn/YKMkUSkXLS3Us0F7O3GonCcRTb/Dg5ZL8+tp8AVz9hrTodI9Uxv9MDhyf
CwfyC0I2CX/uhgl89FI96gt0Y7xMg0a1uafqorfT62xEU090HIup+1/DihhD+Zrq
PzP534RHQI4oPHlrV4ZfuYMMTLZyiRxQcgRQeDY9Umgvju5Sg1l4sTbRKnZhdYX/
Q/Qe9KCZHuQVej3y1LHqtDU2WVTYFCjJau8uOZ2xZ42HAfX4RV+K
-----END CERTIFICATE-----
Generated at Sat Sep 20 05:41:13 2025 by rpki-client