Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/C6-YTlrCM1gie4Fio5ZDAzjrAsw.roa
File: C6-YTlrCM1gie4Fio5ZDAzjrAsw.roa (raw, json)
Hash identifier: wPQWprVQswwSy5xTXeYKqV2fnuyS8659zgMoKY2VdDA=
Subject key identifier: 0B:AF:98:4E:5A:C2:33:58:22:7B:81:62:A3:96:43:03:38:EB:02:CC
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0199144360AE3587B24D0BC2A85C6FFC51ED
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/C6-YTlrCM1gie4Fio5ZDAzjrAsw.roa
Signing time: Thu 04 Sep 2025 10:26:23 +0000
ROA not before: Thu 04 Sep 2025 10:26:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214504
IP address blocks: 213.182.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:14:43:60:ae:35:87:b2:4d:0b:c2:a8:5c:6f:fc:51:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Sep 4 10:26:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0baf984e5ac23358227b8162a396430338eb02cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8a:6a:44:6a:fa:aa:4d:e7:3c:fc:98:21:1a:
5f:b1:ad:e6:fa:2f:37:39:e9:fc:d2:71:e2:fd:c5:
9e:e5:b4:d7:02:dd:ef:05:fe:c1:0e:31:36:07:00:
11:0f:06:82:ef:fc:ed:a3:17:01:75:0e:6b:da:f3:
33:14:86:bd:d9:df:ae:be:fe:75:90:f6:ab:a0:1b:
9d:c7:17:f3:82:b5:a8:c3:21:d2:c7:02:2f:f0:f2:
1e:aa:95:62:5e:dc:38:ec:4b:76:4c:d1:c2:5c:b5:
8c:63:0a:8f:0e:50:b0:2b:5e:a4:ee:9c:3d:c3:aa:
54:67:c3:f4:3c:01:c7:12:2c:3a:52:61:b8:ef:42:
13:d1:fd:29:f1:b4:de:73:70:96:f5:80:c2:6a:74:
01:d6:2a:a6:b4:af:55:46:ea:e7:ae:ba:6d:a9:0f:
b8:7c:59:df:9f:e0:fd:4d:04:f6:4c:37:1a:df:80:
99:d9:ed:68:19:ba:34:cb:1d:46:13:88:58:03:60:
b2:70:3e:55:a2:5d:26:04:3f:8b:73:4b:87:b8:9b:
78:5b:58:d5:34:7a:81:18:f4:cc:42:f9:56:0a:ac:
19:bc:ec:5e:54:77:c3:a2:c7:6b:97:81:11:c7:3a:
05:a5:f4:37:56:61:3a:d8:2f:18:d6:d0:24:70:00:
44:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AF:98:4E:5A:C2:33:58:22:7B:81:62:A3:96:43:03:38:EB:02:CC
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/C6-YTlrCM1gie4Fio5ZDAzjrAsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.212.0/24
Signature Algorithm: sha256WithRSAEncryption
36:03:45:86:06:51:75:4d:64:08:40:48:06:89:0b:66:22:5e:
dd:cd:b7:a6:68:d0:cf:3f:26:5a:d7:e6:fb:59:a5:db:b9:a2:
b0:d3:57:fd:83:38:d8:a6:19:a0:d8:6d:f2:ee:5c:c4:e7:c8:
9d:cb:4a:db:57:06:eb:89:41:0c:c6:17:1b:a1:80:48:05:86:
3c:ab:d7:ee:9b:24:64:1a:12:65:51:f8:5b:52:d4:78:db:53:
5d:b5:80:7f:06:b4:32:21:db:1a:05:ba:8d:c7:73:88:49:96:
34:8d:f0:46:9b:da:16:aa:99:96:c4:d7:83:1c:77:d1:f6:f6:
6c:58:0b:ec:83:b0:f8:5c:1a:b7:53:4d:e6:06:7c:1c:0f:59:
6d:06:ba:e5:27:15:11:d3:21:9a:ff:6b:ba:f4:7f:7a:66:97:
7c:88:49:ae:dd:cc:8e:2c:c8:93:8c:92:a0:9b:52:b2:d3:3a:
f6:fb:39:6f:dc:ff:52:1d:bf:71:7b:f9:e2:5f:d4:36:0c:a0:
e2:7c:da:ab:23:8e:3d:8d:43:30:36:d3:c4:2b:88:56:77:7c:
18:e3:dd:34:56:b9:c6:9b:34:16:ba:b5:b3:70:73:35:f6:ff:
27:c9:1d:6d:7b:50:7f:ad:bf:12:6d:f8:4f:1f:c3:dc:58:e4:
1d:33:08:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:47:13 2025 by rpki-client