Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/YmJQTVDgl6pT6ifoZvYr6OgSo-4.roa
File: YmJQTVDgl6pT6ifoZvYr6OgSo-4.roa (raw, json)
Hash identifier: IEA1sge5kazioWkKzPv9VfD2BEf9Xg5te8xiJRghijI=
Subject key identifier: 62:62:50:4D:50:E0:97:AA:53:EA:27:E8:66:F6:2B:E8:E8:12:A3:EE
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 019A0BD6457C388824BFCBE12C2AB213A16D
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/YmJQTVDgl6pT6ifoZvYr6OgSo-4.roa
Signing time: Wed 22 Oct 2025 12:13:03 +0000
ROA not before: Wed 22 Oct 2025 12:13:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215096
IP address blocks: 212.22.80.0/24 maxlen: 24
212.22.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0b:d6:45:7c:38:88:24:bf:cb:e1:2c:2a:b2:13:a1:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Oct 22 12:13:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6262504d50e097aa53ea27e866f62be8e812a3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5d:00:fe:e0:06:8b:b2:8f:65:64:51:6e:80:
bc:ca:fb:98:b0:33:bf:4e:2a:f9:72:19:99:cc:f3:
49:58:d2:35:8d:ab:3d:bf:bb:65:75:39:f4:3f:69:
98:6c:e4:c1:87:5b:42:82:9c:2f:59:09:ab:30:b1:
eb:50:d4:e5:f2:bf:88:12:ec:cc:1f:d3:13:e8:c9:
b2:51:c9:93:90:47:be:5c:ba:32:a6:00:86:9a:70:
14:c9:a2:00:f8:c8:f4:16:72:62:b5:28:34:d4:20:
2f:c2:c2:9a:73:9c:59:cb:88:06:85:ee:85:0a:0a:
67:ee:d1:0b:1c:29:67:f1:36:1a:60:d5:bb:a4:2d:
dc:30:42:bd:0f:2d:11:2d:89:f1:14:74:2a:c5:9b:
fc:f0:88:6f:ba:75:31:e8:88:14:08:ad:60:16:26:
20:20:89:30:83:28:d5:99:90:7d:ee:89:5d:37:cc:
a5:ec:5d:dd:d6:05:69:17:c9:c9:60:94:7b:7d:f3:
75:c5:d2:c3:f1:0e:de:ef:a6:82:ad:10:64:4b:c2:
fd:14:b4:f4:be:b7:78:96:d4:c3:37:51:54:03:0d:
52:cb:be:c2:73:4b:57:63:08:de:ae:13:02:e3:37:
50:78:50:48:19:b6:6b:83:58:fd:80:4d:73:66:24:
e0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:62:50:4D:50:E0:97:AA:53:EA:27:E8:66:F6:2B:E8:E8:12:A3:EE
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/YmJQTVDgl6pT6ifoZvYr6OgSo-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.80.0/24
212.22.86.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:af:ed:5e:5d:5e:1d:fa:40:12:16:fb:38:36:0b:57:91:70:
13:8b:95:b9:33:03:a5:08:fd:1d:33:e6:8d:17:1c:58:60:d5:
d3:ff:d2:1b:2e:9c:80:6b:63:c6:a6:34:dc:e6:2d:69:2e:73:
cb:03:29:d1:20:6b:29:c8:db:2c:08:27:1b:18:48:5d:cd:1d:
98:9e:78:80:b8:15:e6:d3:b6:98:0a:c7:26:6d:b1:ef:96:08:
de:23:e4:b3:ae:bf:e6:fa:ad:a5:f1:6e:f6:5d:ee:91:9e:05:
78:d9:23:df:9f:1e:78:49:c0:66:df:e1:3a:46:9d:21:b8:73:
18:bd:08:14:8b:34:b7:1c:72:cd:f0:de:fa:43:c3:9a:28:49:
25:bd:84:40:d1:d3:9e:13:78:66:c2:9e:2e:44:3e:a6:90:37:
a4:df:46:23:6a:e8:03:0f:da:0e:a0:b2:79:48:50:da:b7:50:
b2:f0:26:8e:3d:fd:69:1b:5c:87:9f:bd:1c:23:a9:fb:33:6e:
6e:8e:4a:81:81:2b:a6:c1:8e:ca:9f:75:06:d5:16:d6:00:69:
be:ce:0d:a9:17:f9:4e:22:6b:f3:c4:fc:11:8b:fc:11:35:82:
00:24:c8:1a:15:0c:4a:6a:49:7b:06:f9:1d:98:a5:7b:ef:74:
af:05:46:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 00:00:44 2025 by rpki-client