Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/Cc8D3FNvS9_w1_AnBsov0DIHFps.roa
File: Cc8D3FNvS9_w1_AnBsov0DIHFps.roa (raw, json)
Hash identifier: FcBox7J9LdOqUTDJpR7zwFkU/i3Ls08rv2OCV+0VaIA=
Subject key identifier: 09:CF:03:DC:53:6F:4B:DF:F0:D7:F0:27:06:CA:2F:D0:32:07:16:9B
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 01995715E098678E2C20961DCEC4ABF8B5EA
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/Cc8D3FNvS9_w1_AnBsov0DIHFps.roa
Signing time: Wed 17 Sep 2025 09:51:15 +0000
ROA not before: Wed 17 Sep 2025 09:51:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 212.100.168.0/24 maxlen: 24
212.100.172.0/22 maxlen: 22
212.100.184.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 03:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:57:15:e0:98:67:8e:2c:20:96:1d:ce:c4:ab:f8:b5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Sep 17 09:51:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09cf03dc536f4bdff0d7f02706ca2fd03207169b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:74:89:f0:45:b0:97:3f:18:e3:87:97:bb:73:
c8:d5:d4:72:e3:a9:9a:38:e9:85:e8:70:0c:fc:48:
38:63:d9:8f:e8:6b:f0:a0:4a:f1:42:1c:d8:74:a7:
90:c8:19:51:2c:2d:ab:d7:0e:90:c7:6b:e3:32:18:
8e:5b:a2:81:50:80:79:8c:73:90:89:90:22:0b:bd:
8c:22:35:7b:c7:e3:50:f5:9f:d6:75:f1:4f:ee:e8:
c6:68:17:b1:f4:08:d2:a5:41:fb:15:c9:15:13:5f:
c6:13:fe:84:57:2d:34:4a:ea:8b:60:79:f4:a8:49:
ae:82:63:da:aa:66:8a:58:97:c5:d7:c9:91:1d:64:
29:6b:d4:6c:58:9c:7b:99:1d:b9:ca:88:be:72:c9:
0c:41:7a:2b:35:16:4b:a2:f0:a5:e5:89:ff:6d:af:
5e:a7:03:7c:3c:15:2c:d1:3e:9c:17:fd:16:43:0e:
df:07:ed:95:f4:72:17:50:97:42:54:f4:65:ad:c5:
3b:58:38:7e:1f:32:92:5a:54:8c:06:af:5d:8b:38:
71:70:be:f7:3c:13:90:44:8d:50:d3:cf:54:ee:0c:
ca:c5:0c:ca:01:b2:01:76:b7:14:9c:74:80:56:6f:
5a:96:ba:de:3a:80:c6:8b:62:65:02:ca:12:43:83:
c5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CF:03:DC:53:6F:4B:DF:F0:D7:F0:27:06:CA:2F:D0:32:07:16:9B
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/Cc8D3FNvS9_w1_AnBsov0DIHFps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.100.168.0/24
212.100.172.0/22
212.100.184.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:4d:8a:b6:cc:72:c2:a1:35:06:7c:13:ea:cb:84:88:91:4b:
0d:0c:3c:e2:96:a2:47:03:f2:3c:27:18:e9:19:45:4f:d8:a2:
fa:d3:d9:52:37:00:51:6a:2e:b2:96:72:d2:24:66:7a:5c:06:
93:c5:a5:01:2e:b2:18:ae:45:0e:68:51:a2:4e:7e:e0:d7:e2:
e0:9b:c3:2e:5a:6a:09:b4:c2:5e:3d:01:81:24:d4:9a:e6:54:
db:63:01:f2:41:35:dc:05:3a:04:fd:b2:c3:56:e4:ee:2d:ff:
69:68:0b:2d:1e:db:3c:0d:29:2b:ce:bb:96:ca:af:b3:42:72:
80:ef:74:d8:d5:1b:22:c0:8e:fd:8d:ff:06:b5:dd:64:92:aa:
69:1b:b3:ba:25:f2:5d:d8:84:61:fe:5b:dd:40:11:a0:51:0b:
4c:07:96:f2:1a:ac:d0:f3:c9:b0:d1:3f:a3:bf:70:1c:16:32:
ca:51:88:7a:23:e9:25:93:29:96:63:09:91:4e:50:8e:1c:6d:
dc:a4:47:52:3e:aa:52:ac:3f:e5:35:23:c1:a7:f7:36:63:8e:
b9:d8:0c:c6:93:54:23:b2:c7:96:04:41:2f:00:78:43:71:af:
8a:c5:b7:e7:68:67:5c:e6:82:0f:4f:1d:91:f7:23:20:08:71:
bf:9e:40:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 12:04:15 2025 by rpki-client