Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/yBwWyW48SPQ9QSmXQsXcfwjYIiA.roa
File: yBwWyW48SPQ9QSmXQsXcfwjYIiA.roa (raw, json)
Hash identifier: Ifr/qgG+hmQP+h/aITKVPFiP9MWRH8VkxGe5nsJvg2I=
Subject key identifier: C8:1C:16:C9:6E:3C:48:F4:3D:41:29:97:42:C5:DC:7F:08:D8:22:20
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0197418DD7129EC1B384427CAA60B845D67F
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/yBwWyW48SPQ9QSmXQsXcfwjYIiA.roa
Signing time: Thu 05 Jun 2025 19:25:03 +0000
ROA not before: Thu 05 Jun 2025 19:25:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206085
IP address blocks: 2001:3280::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:41:8d:d7:12:9e:c1:b3:84:42:7c:aa:60:b8:45:d6:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Jun 5 19:25:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c81c16c96e3c48f43d41299742c5dc7f08d82220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:09:03:fb:11:69:2e:fb:f2:30:16:e8:a9:
26:ae:74:44:27:6f:9f:09:8d:c9:1d:0a:cd:dd:25:
89:de:3e:bb:ae:a3:c1:0b:66:e8:46:39:3b:54:b2:
ed:ea:04:bb:20:4a:ed:de:d3:61:8f:65:a5:1e:f7:
99:15:07:0f:8c:b2:92:29:02:e3:4a:2f:fa:dc:2d:
da:e7:01:15:82:4d:ab:7b:fd:c7:0d:a4:2b:d4:1d:
7d:74:4e:60:9b:e7:fe:fb:50:db:13:8a:09:03:45:
b5:66:e7:b3:b9:1c:0f:72:25:74:1e:54:61:3b:eb:
d1:52:3f:1b:ec:c5:31:c7:82:0c:77:fc:8d:8a:33:
85:87:2b:4d:3f:7e:e0:c7:8a:10:fe:53:77:78:53:
ca:0a:a7:e9:eb:26:4e:92:cb:98:ca:85:bd:a2:93:
30:c3:f8:f2:fa:b2:c7:a2:c6:e5:58:12:15:20:9c:
f1:2f:8a:3e:a0:95:53:4e:6e:f1:88:20:1b:31:b7:
68:bd:f3:90:63:d2:02:87:0c:8e:ea:2f:0b:92:9d:
dd:70:ae:7f:b1:ae:7e:7c:09:9c:94:66:5f:4d:f7:
a8:4b:69:e8:c4:d9:81:f9:cc:8e:5b:ca:8b:9d:f7:
7a:74:1f:0b:3f:ea:3c:3e:4b:3a:24:d0:f3:03:99:
8e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1C:16:C9:6E:3C:48:F4:3D:41:29:97:42:C5:DC:7F:08:D8:22:20
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/yBwWyW48SPQ9QSmXQsXcfwjYIiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3280::/29
Signature Algorithm: sha256WithRSAEncryption
99:67:b1:9a:1b:ec:cc:bf:7c:3c:82:a1:2e:97:65:b7:64:d3:
47:06:07:4c:46:41:1a:89:94:ea:2a:d0:3c:49:59:7c:05:f6:
a7:9e:3d:af:1e:f9:35:b6:24:8d:e0:3a:65:7e:de:88:db:fe:
40:78:f2:bc:7c:8d:c9:60:8f:f2:f8:e7:1f:6c:71:2d:9e:6b:
b9:78:98:76:50:59:04:d3:3c:11:0f:1c:3f:c5:29:d7:ab:7c:
e7:7d:9e:4e:93:84:bf:46:42:52:5b:c2:df:ca:2e:54:1a:35:
9d:7e:de:df:6e:f8:c3:a2:70:e4:17:3a:70:cd:36:59:52:b1:
c4:e4:a3:a0:da:dc:c2:4f:bf:47:6e:9b:22:cf:a4:3d:23:48:
8b:5e:30:4d:a7:90:85:9e:05:a9:11:0f:92:4e:f6:cb:c7:56:
93:7f:30:ad:0a:b5:a8:96:47:21:71:38:be:57:53:48:8f:e7:
ad:2f:ed:18:c1:5f:72:c9:40:bb:73:12:61:02:1b:10:24:77:
75:89:68:a2:b8:02:c8:85:ee:1f:dc:c7:ef:9e:da:95:b5:69:
68:46:e0:11:aa:01:fe:4b:0a:72:24:ea:b7:7b:31:47:dc:1f:
6d:5d:45:f1:fd:0f:88:66:e8:7e:b6:51:69:9d:02:c3:fe:b5:
fb:e9:cf:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:50:18 2025 by rpki-client