Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/J9Bpev_Y5vGj_8kiIukuwgRMBjY.roa
File: J9Bpev_Y5vGj_8kiIukuwgRMBjY.roa (raw, json)
Hash identifier: 3vSvZEcT9f/cHeJWrMbjmT4TMpfqGkzVbdBf+Y81z9c=
Subject key identifier: 27:D0:69:7A:FF:D8:E6:F1:A3:FF:C9:22:22:E9:2E:C2:04:4C:06:36
Certificate issuer: /CN=1627573c68929ab2a4590e92a51abc40ea9e5817
Certificate serial: 019904F7DA998A61A935D2AA385E9E238F3C
Authority key identifier: 16:27:57:3C:68:92:9A:B2:A4:59:0E:92:A5:1A:BC:40:EA:9E:58:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FidXPGiSmrKkWQ6SpRq8QOqeWBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/J9Bpev_Y5vGj_8kiIukuwgRMBjY.roa
Signing time: Mon 01 Sep 2025 11:09:36 +0000
ROA not before: Mon 01 Sep 2025 11:09:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48854
IP address blocks: 185.175.96.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/FidXPGiSmrKkWQ6SpRq8QOqeWBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/FidXPGiSmrKkWQ6SpRq8QOqeWBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FidXPGiSmrKkWQ6SpRq8QOqeWBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:04:f7:da:99:8a:61:a9:35:d2:aa:38:5e:9e:23:8f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1627573c68929ab2a4590e92a51abc40ea9e5817
Validity
Not Before: Sep 1 11:09:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27d0697affd8e6f1a3ffc92222e92ec2044c0636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8a:26:08:0c:e2:b9:5c:b2:07:68:16:6f:c6:
e8:69:01:7b:9f:3d:94:2b:6d:bc:2c:31:ff:15:73:
8b:d6:26:41:e6:fd:f6:26:88:49:29:3d:d1:f2:ed:
ff:d3:24:4a:09:3f:58:f8:f8:ed:18:7e:8c:36:8a:
2e:a0:78:5a:32:bd:8d:95:57:60:db:78:4f:49:95:
ac:f7:8d:ed:db:7e:d5:46:5e:51:c4:d3:55:b5:fd:
30:98:7c:19:75:91:16:ac:d3:7e:27:54:ed:de:7d:
3d:97:55:e1:83:c1:3d:77:32:1a:25:3e:ca:4c:fd:
1b:46:e1:d6:5b:93:6b:cd:17:c7:03:13:ca:5e:a0:
83:eb:96:85:bd:01:3d:2b:68:d6:96:dd:5d:55:56:
95:81:f5:0c:ed:4b:e0:6c:dd:a2:30:78:2d:cb:f8:
e7:42:3d:55:2b:6b:94:58:f2:7d:28:3f:c4:e9:31:
5d:b4:89:88:3b:5e:b3:9a:74:f8:4d:33:87:4e:e5:
0f:61:1b:b7:9c:c0:6b:72:29:f9:d3:55:7b:72:82:
4c:75:31:79:e2:4f:b0:02:3e:cb:ad:b8:f2:da:9c:
ce:e7:4d:22:84:52:c5:82:93:73:82:5e:14:eb:e5:
68:dd:44:32:7c:55:aa:76:f7:65:1f:af:22:89:d8:
11:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D0:69:7A:FF:D8:E6:F1:A3:FF:C9:22:22:E9:2E:C2:04:4C:06:36
X509v3 Authority Key Identifier:
keyid:16:27:57:3C:68:92:9A:B2:A4:59:0E:92:A5:1A:BC:40:EA:9E:58:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FidXPGiSmrKkWQ6SpRq8QOqeWBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/J9Bpev_Y5vGj_8kiIukuwgRMBjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e0c90-717f-40ea-b17e-e6f9db74139d/1/FidXPGiSmrKkWQ6SpRq8QOqeWBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.96.0/22
Signature Algorithm: sha256WithRSAEncryption
29:86:f5:ab:3f:b1:a4:22:cc:0e:29:9a:ba:ec:8f:f9:09:a6:
0b:26:09:31:e8:44:e7:2b:2c:30:7b:f8:d2:87:35:59:30:b2:
56:3a:57:e9:82:27:b9:ec:9b:0d:50:0b:a6:a7:a6:19:59:45:
47:63:61:b8:34:f7:cc:53:61:e9:83:8a:96:c0:dd:f2:20:e1:
d6:84:b6:78:fe:76:89:25:42:c4:0a:e9:64:46:4f:35:dc:6a:
27:09:a3:84:47:9a:16:57:89:00:03:6f:73:ed:84:86:d5:b2:
79:dc:d0:de:5e:2a:0a:f9:30:98:1f:fc:83:ee:a9:e4:3b:30:
70:ee:aa:13:d7:db:65:09:1b:78:2f:da:99:4d:08:c5:4d:70:
3f:7e:8c:a1:f2:2f:26:c1:be:7d:a8:30:81:63:e3:36:92:f1:
ee:24:26:c3:1b:cb:e8:06:b1:cd:2d:b1:a8:da:58:0e:e4:b5:
b3:11:da:a1:3f:89:c9:ae:f5:e1:02:da:ef:c4:b7:85:0d:18:
20:b5:46:6c:20:a3:e9:95:cf:b3:48:16:53:ee:f0:e4:8a:d5:
72:c9:ba:70:ed:99:36:76:ed:ae:49:9e:7b:9d:79:5e:e2:60:
ad:f4:fd:a2:53:44:8c:5e:ce:d5:60:29:ec:5c:71:73:2f:8e:
29:7c:be:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 17:59:30 2025 by rpki-client