Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/vTsV43c6iLSrTEE_Qbj03ccqdeg.roa
File: vTsV43c6iLSrTEE_Qbj03ccqdeg.roa (raw, json)
Hash identifier: 0epFIRNjZUqW0bkd/LA5GI9/eBBUO8Zaqj2aGiIwYro=
Subject key identifier: BD:3B:15:E3:77:3A:88:B4:AB:4C:41:3F:41:B8:F4:DD:C7:2A:75:E8
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01990542ED9559F705E0F3A29480339EA0EA
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/vTsV43c6iLSrTEE_Qbj03ccqdeg.roa
Signing time: Mon 01 Sep 2025 12:31:36 +0000
ROA not before: Mon 01 Sep 2025 12:31:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52041
IP address blocks: 176.116.34.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft
rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:05:42:ed:95:59:f7:05:e0:f3:a2:94:80:33:9e:a0:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Sep 1 12:31:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd3b15e3773a88b4ab4c413f41b8f4ddc72a75e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ea:b6:40:93:e4:8a:59:af:27:90:e9:d5:d5:
fe:40:97:9a:00:30:05:ed:2b:83:ef:98:37:6d:b0:
6e:22:1b:0d:37:96:3e:bd:b1:6e:48:24:57:db:aa:
4f:af:35:fd:d0:19:fa:4d:1c:30:fb:76:ec:ed:a6:
75:c2:c9:42:d2:91:ff:8b:51:ce:41:ef:f3:5c:8d:
e9:ae:c6:d3:5f:8e:88:ab:de:31:0a:a4:9a:7a:6f:
d0:d3:bf:e4:46:54:2d:46:c7:7b:a7:2d:47:38:e7:
f7:e0:8b:dc:d0:58:eb:fb:40:d7:11:48:91:b7:63:
0b:43:b1:f3:b6:30:5e:4b:8c:72:79:3d:59:b0:de:
59:19:16:9c:64:ef:5b:10:8d:5d:f3:56:c4:8d:c4:
84:c0:48:3d:21:4e:80:c7:9f:f4:77:f2:aa:dc:40:
aa:b0:9d:11:23:cd:d4:7b:f4:19:eb:b7:6a:29:12:
4f:59:ab:60:2a:dd:e0:a0:85:49:31:b9:e7:d4:1b:
f3:b1:70:3c:ab:8b:63:b1:cf:23:42:86:43:50:2c:
62:19:0a:96:d4:d2:19:6d:2e:b6:62:9c:c8:a9:e4:
70:a6:55:bb:6a:fe:27:ec:a7:c0:4a:92:f1:75:17:
af:1f:ad:22:30:54:38:e4:52:20:66:4f:22:79:ee:
99:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:3B:15:E3:77:3A:88:B4:AB:4C:41:3F:41:B8:F4:DD:C7:2A:75:E8
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/vTsV43c6iLSrTEE_Qbj03ccqdeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.34.0/23
Signature Algorithm: sha256WithRSAEncryption
71:e7:69:69:1f:23:d2:8d:3b:81:0d:1a:cb:70:ca:ac:58:4b:
2d:c0:5e:f9:d9:81:29:10:92:ee:1f:f3:b1:c5:2e:52:79:f0:
2a:4c:30:c3:99:ce:fa:22:b2:4d:3f:62:f3:76:a1:76:0e:ea:
4f:8a:de:04:12:9f:af:14:41:65:e0:ab:59:e0:cf:16:dd:a6:
2d:25:d6:1e:4e:e0:fc:ac:ea:d6:d3:04:37:8d:ab:12:d9:53:
dc:a8:8b:83:9a:cc:ef:87:f8:e0:65:da:08:5c:33:76:66:ff:
e2:5b:74:cb:28:50:d1:12:43:12:53:a4:3c:e6:69:f2:62:15:
61:92:ae:f9:e2:ad:8f:cb:dc:90:44:cb:50:8c:cd:96:3e:4c:
85:98:57:63:5a:7e:33:00:ff:28:6a:eb:1f:a0:7b:2c:a4:da:
b2:a3:2e:5c:96:98:2e:13:42:5c:12:a4:eb:86:c5:84:50:d0:
24:54:c8:7a:18:d7:30:07:56:bf:49:b4:ee:4c:94:66:78:39:
a3:09:af:5b:f1:e7:a0:67:33:6c:29:2a:44:52:c1:72:a2:c7:
95:02:c6:80:91:92:3a:3b:6b:04:11:2d:4d:75:62:92:6a:35:
6f:a4:94:61:e1:20:ca:fb:b5:6b:e1:cf:f4:f5:e0:eb:99:a1:
d3:f6:e2:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZkFQu2VWfcF4POilIAznqDqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjUwOTAxMTIzMTM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDNiMTVlMzc3M2E4OGI0YWI0YzQxM2Y0MWI4ZjRkZGM3MmE3NWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeq2QJPkilmvJ5Dp1dX+QJeaADAF
7SuD75g3bbBuIhsNN5Y+vbFuSCRX26pPrzX90Bn6TRww+3bs7aZ1wslC0pH/i1HO
Qe/zXI3prsbTX46Iq94xCqSaem/Q07/kRlQtRsd7py1HOOf34Ivc0Fjr+0DXEUiR
t2MLQ7HztjBeS4xyeT1ZsN5ZGRacZO9bEI1d81bEjcSEwEg9IU6Ax5/0d/Kq3ECq
sJ0RI83Ue/QZ67dqKRJPWatgKt3goIVJMbnn1BvzsXA8q4tjsc8jQoZDUCxiGQqW
1NIZbS62YpzIqeRwplW7av4n7KfASpLxdRevH60iMFQ45FIgZk8iee6ZFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL07FeN3Ooi0q0xBP0G49N3HKnXoMB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvdlRzVjQzYzZpTFNyVEVFX1FiajAzY2NxZGVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBsHQiMA0G
CSqGSIb3DQEBCwUAA4IBAQBx52lpHyPSjTuBDRrLcMqsWEstwF752YEpEJLuH/Ox
xS5SefAqTDDDmc76IrJNP2LzdqF2DupPit4EEp+vFEFl4KtZ4M8W3aYtJdYeTuD8
rOrW0wQ3jasS2VPcqIuDmszvh/jgZdoIXDN2Zv/iW3TLKFDREkMSU6Q85mnyYhVh
kq754q2Py9yQRMtQjM2WPkyFmFdjWn4zAP8oausfoHsspNqyoy5clpguE0JcEqTr
hsWEUNAkVMh6GNcwB1a/SbTuTJRmeDmjCa9b8eegZzNsKSpEUsFyoseVAsaAkZI6
O2sEES1NdWKSajVvpJRh4SDK+7Vr4c/09eDrmaHT9uI2
-----END CERTIFICATE-----
Generated at Sat Sep 6 10:43:23 2025 by rpki-client