Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/gC44VWnXdqeRgBq7XFfpWF95Q6M.roa
File: gC44VWnXdqeRgBq7XFfpWF95Q6M.roa (raw, json)
Hash identifier: ZlFvQ0FdcQWc6LDQd+RgeJur3FpyWFSWGQsV0siREzk=
Subject key identifier: 80:2E:38:55:69:D7:76:A7:91:80:1A:BB:5C:57:E9:58:5F:79:43:A3
Certificate issuer: /CN=53bbbbaa3ee24c7ad9b2c60432e14eda3849b5e2
Certificate serial: 019A10DBAB43147445109445DB5EF26E4FE8
Authority key identifier: 53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/gC44VWnXdqeRgBq7XFfpWF95Q6M.roa
Signing time: Thu 23 Oct 2025 11:37:02 +0000
ROA not before: Thu 23 Oct 2025 11:37:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44066
IP address blocks: 212.79.212.0/22 maxlen: 22
212.79.216.0/22 maxlen: 22
212.79.220.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 08:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:10:db:ab:43:14:74:45:10:94:45:db:5e:f2:6e:4f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bbbbaa3ee24c7ad9b2c60432e14eda3849b5e2
Validity
Not Before: Oct 23 11:37:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=802e385569d776a791801abb5c57e9585f7943a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4f:32:90:1f:c2:82:a4:95:eb:0e:55:64:98:
4c:ca:8b:3e:dd:18:db:92:c2:95:c9:95:4f:b7:b7:
98:6a:36:24:1e:41:b9:18:11:d3:f9:e9:96:72:c6:
02:12:54:20:6c:90:f0:b9:d8:c5:0f:6f:47:06:0c:
71:da:2b:c6:ae:80:8b:53:29:75:22:39:ce:b5:f9:
78:91:2c:40:99:a7:6b:0c:fe:53:ba:91:42:be:29:
79:25:48:a4:73:73:a9:5e:bc:21:10:59:c7:78:94:
a6:4c:96:a2:d5:f5:89:a8:62:ca:b2:9c:64:1c:d1:
0a:65:f2:e6:d7:b4:03:77:73:5d:a6:6b:bd:7a:5a:
b1:c8:85:28:f0:cc:93:d7:fe:f9:b8:1f:78:9c:08:
02:35:d4:61:ba:a6:65:cc:fb:be:a4:aa:e4:4b:5f:
c9:bb:d4:20:d6:c6:27:ee:5b:8e:2b:82:b0:6a:da:
eb:fd:dd:ab:65:3a:20:5d:aa:5e:aa:9d:be:e4:5d:
fd:9f:68:62:c3:33:f6:16:91:d8:8e:28:81:d9:ff:
f6:bf:0f:6b:e4:d7:50:c5:bb:14:75:b7:9e:52:36:
dd:92:af:59:a6:23:ea:39:93:a2:f9:a2:19:ef:5e:
70:ba:2b:df:1f:86:f9:7a:8c:18:5e:77:50:23:4c:
6c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:2E:38:55:69:D7:76:A7:91:80:1A:BB:5C:57:E9:58:5F:79:43:A3
X509v3 Authority Key Identifier:
keyid:53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/gC44VWnXdqeRgBq7XFfpWF95Q6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.79.212.0-212.79.223.255
Signature Algorithm: sha256WithRSAEncryption
9d:92:46:a5:a1:41:e8:30:d4:c3:07:15:88:75:ba:f0:be:fa:
70:72:3e:8b:50:5e:bf:cc:76:b2:56:78:9f:f8:3d:59:95:18:
6d:0f:13:75:be:b0:51:c9:9f:20:23:0e:c4:2f:ef:54:85:56:
3d:e5:16:f3:b1:81:ad:e0:93:60:be:5b:78:18:a3:eb:4d:b7:
9b:54:42:53:43:7d:d7:f9:5b:29:a2:e2:0e:b9:ec:2b:c6:e4:
89:10:f2:12:b4:7e:fc:4c:2c:c0:9f:6d:7a:87:4b:0a:ce:1d:
5a:e0:7c:e7:eb:81:fd:d5:8d:aa:1a:0b:cd:8b:33:2c:da:8f:
b8:f7:e8:66:c1:c2:80:03:41:bc:45:8a:89:03:08:49:54:c7:
05:0b:27:15:4e:f1:49:f3:e8:d6:f0:f5:67:e9:a3:e6:ad:7f:
15:b3:78:0c:41:49:78:87:45:5f:42:d0:49:20:df:7e:b9:be:
ab:29:38:dc:88:0c:2f:12:43:f9:e5:34:eb:0b:1e:84:47:57:
4a:28:3a:8a:66:a8:58:41:ea:0b:b5:ae:80:19:4e:5b:c4:bb:
e2:7c:d1:ae:d9:27:1e:07:ba:d3:57:80:5d:d2:31:24:2c:68:
01:3b:79:24:8e:77:cb:e8:ea:77:fb:ef:51:83:70:5b:62:72:
f0:03:41:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 14:58:04 2025 by rpki-client