Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/46yoWon9BJluKw4BIGUn-2moK7E.roa
File: 46yoWon9BJluKw4BIGUn-2moK7E.roa (raw, json)
Hash identifier: +29r08m9ifMEKK4mtKfGHBoBjGPbXI+UTkQE/LGHxaY=
Subject key identifier: E3:AC:A8:5A:89:FD:04:99:6E:2B:0E:01:20:65:27:FB:69:A8:2B:B1
Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Certificate serial: 01995173ECD476370A880AE5DC047014FB03
Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/46yoWon9BJluKw4BIGUn-2moK7E.roa
Signing time: Tue 16 Sep 2025 07:36:15 +0000
ROA not before: Tue 16 Sep 2025 07:36:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214967
IP address blocks: 2a14:c380:11::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 00:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:51:73:ec:d4:76:37:0a:88:0a:e5:dc:04:70:14:fb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Validity
Not Before: Sep 16 07:36:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e3aca85a89fd04996e2b0e01206527fb69a82bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:8c:87:5c:ae:34:9b:2b:94:65:e4:c4:e8:
ff:df:1e:5a:58:b1:b2:33:87:90:ee:54:31:71:95:
c3:28:c6:fb:71:6e:ab:ed:c0:2a:2b:52:07:43:96:
03:2d:53:88:77:22:04:2c:8d:bc:09:06:04:cd:3c:
13:6f:46:4b:88:b0:3f:8e:a6:6c:e7:d4:c8:49:93:
62:44:51:b0:0d:de:0f:c6:eb:6e:bb:d5:c1:b8:fa:
22:da:1e:54:27:cb:f8:85:76:ca:3a:e1:54:fd:bd:
73:65:61:e9:4c:a4:6a:64:60:4c:a0:cc:02:8d:59:
09:07:43:f9:04:58:de:6d:99:84:8c:c7:ae:9f:d7:
66:32:4c:55:40:a1:92:22:c7:dc:41:35:cf:40:b6:
7d:d3:78:da:8f:94:51:af:4b:4b:97:f0:5a:e4:04:
5d:65:fa:31:a4:4e:a5:21:3f:9d:a6:37:6a:08:53:
09:28:dd:0a:27:84:c2:7d:18:e4:6d:87:1c:3d:56:
1b:55:57:fa:8f:d3:87:d4:2f:e5:4d:e4:e8:bb:9a:
46:bd:ea:98:d5:5b:15:5b:2e:f6:78:1e:79:9f:d2:
a8:68:56:0a:81:43:a2:6f:f6:eb:8c:53:55:66:21:
79:12:bd:7e:75:c5:a6:02:07:2e:7f:36:5a:57:9f:
38:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AC:A8:5A:89:FD:04:99:6E:2B:0E:01:20:65:27:FB:69:A8:2B:B1
X509v3 Authority Key Identifier:
keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/46yoWon9BJluKw4BIGUn-2moK7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c380:11::/48
Signature Algorithm: sha256WithRSAEncryption
29:1d:65:32:ff:c6:d4:25:4f:27:2b:ad:ae:87:37:bb:d6:6d:
ea:ad:6d:44:2d:6a:8e:85:56:75:e1:3b:ac:d5:0a:97:7e:5f:
95:9c:bd:a4:3e:2c:b9:2d:20:1c:c3:76:26:57:ca:06:21:18:
18:f2:1d:bd:28:b0:12:6a:38:d2:2a:21:ab:1e:bd:1a:c3:ce:
a4:e6:c7:30:53:14:ae:f1:0e:4d:be:cd:9c:6f:06:ce:6c:07:
be:e1:ff:83:39:0e:f7:38:a0:36:f3:09:e8:26:48:93:c3:fd:
fe:83:77:ae:03:33:c2:08:10:63:8e:63:f5:17:37:fa:ee:85:
7b:91:ae:ac:08:28:a8:1c:97:21:66:a4:f3:85:3a:7c:1f:c0:
9c:fb:05:e1:18:e6:2c:01:49:22:27:bd:e4:f8:c9:ed:c0:d1:
a8:9a:7e:a8:4b:a8:eb:75:39:64:85:00:55:a5:46:88:91:e8:
98:20:e1:97:10:d0:a3:01:bf:df:46:55:eb:86:07:78:7b:77:
3e:34:56:5d:0e:28:04:6f:cf:ea:cf:29:3f:2d:0c:a4:b8:7e:
c4:1d:aa:2f:5f:b9:ba:02:67:91:90:fa:7e:ae:20:fb:37:c5:
90:5f:2e:fa:ed:0f:19:9a:a5:64:fc:ac:05:03:bd:fd:41:7c:
98:d4:e7:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 07:34:54 2025 by rpki-client