Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/6cG7apJZWTaCYJhEQ2AxuGdOU6Y.roa
File: 6cG7apJZWTaCYJhEQ2AxuGdOU6Y.roa (raw, json)
Hash identifier: JJCXT/6UNi9mEIWqA8v8nCsjcSMSSRjcc/zrEHMqmj0=
Subject key identifier: E9:C1:BB:6A:92:59:59:36:82:60:98:44:43:60:31:B8:67:4E:53:A6
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 01971845684FFEA227A4607F27CE5251E757
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/6cG7apJZWTaCYJhEQ2AxuGdOU6Y.roa
Signing time: Wed 28 May 2025 19:01:31 +0000
ROA not before: Wed 28 May 2025 19:01:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 132892
IP address blocks: 141.101.88.0/24 maxlen: 24
141.101.89.0/24 maxlen: 24
2a06:98c0:3600::/48 maxlen: 48
2a06:98c0:3601::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3608::/48 maxlen: 48
2a06:98c0:3609::/48 maxlen: 48
2a06:98c0:360a::/48 maxlen: 48
2a06:98c0:360b::/48 maxlen: 48
2a06:98c0:360c::/48 maxlen: 48
2a06:98c0:360d::/48 maxlen: 48
2a06:98c0:360f::/48 maxlen: 48
2a06:98c0:3610::/48 maxlen: 48
2a06:98c0:3611::/48 maxlen: 48
2a06:98c0:3613::/48 maxlen: 48
2a06:98c0:3614::/48 maxlen: 48
2a06:98c0:3615::/48 maxlen: 48
2a06:98c0:3617::/48 maxlen: 48
2a06:98c0:361c::/48 maxlen: 48
2a06:98c0:361d::/48 maxlen: 48
2a06:98c0:361f::/48 maxlen: 48
2a06:98c0:3620::/48 maxlen: 48
2a06:98c0:3621::/48 maxlen: 48
2a06:98c0:3622::/48 maxlen: 48
2a06:98c0:3623::/48 maxlen: 48
2a06:98c0:3624::/48 maxlen: 48
2a06:98c0:3625::/48 maxlen: 48
2a06:98c0:3628::/48 maxlen: 48
2a06:98c0:3629::/48 maxlen: 48
2a06:98c0:362a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.mft
rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:18:45:68:4f:fe:a2:27:a4:60:7f:27:ce:52:51:e7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: May 28 19:01:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9c1bb6a9259593682609844436031b8674e53a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e6:de:bd:42:72:5a:2f:a4:d1:85:e9:a8:db:
cc:ed:a0:b7:43:88:28:07:a3:da:c1:ed:58:e5:4c:
bc:73:bb:be:a3:0f:99:96:ba:3e:52:55:a6:67:db:
74:49:04:ed:cd:fc:d8:e6:19:5c:ef:f5:b5:6a:16:
5d:d6:62:67:82:9c:56:42:b2:8b:95:6c:62:f6:ec:
31:ad:8d:6e:4b:31:04:d0:dc:a7:1f:be:c0:8d:ec:
db:9d:13:9f:45:9f:97:3c:0a:9c:13:e0:cf:d2:b5:
c6:62:25:8d:64:69:79:17:5f:62:16:3d:eb:6b:e3:
bd:44:a5:62:5b:49:e2:34:3b:e2:8b:c5:bf:3d:63:
56:4a:a8:97:b2:36:5b:d9:dc:76:40:ab:82:c8:cb:
17:b6:b8:5d:d9:84:f3:62:4b:a3:1a:51:04:08:5c:
c2:cb:82:8a:02:59:d3:27:1a:87:75:8f:d7:ad:fa:
7d:47:26:9c:7b:07:44:f1:96:90:2a:6b:3e:70:97:
fa:3f:4b:70:9b:80:ac:03:e2:eb:5e:14:9b:cd:5f:
b0:0e:27:7a:39:13:bb:6b:d0:e7:bf:36:55:d6:0c:
26:39:67:b8:b3:32:4a:c0:22:a4:d8:92:c1:bd:a4:
4f:35:22:ff:19:6a:77:3a:cc:a5:82:be:b6:19:52:
02:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C1:BB:6A:92:59:59:36:82:60:98:44:43:60:31:B8:67:4E:53:A6
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/6cG7apJZWTaCYJhEQ2AxuGdOU6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.88.0/23
IPv6:
2a06:98c0:3600::-2a06:98c0:360d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360f::-2a06:98c0:3611:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3613::-2a06:98c0:3615:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3617::/48
2a06:98c0:361c::/47
2a06:98c0:361f::-2a06:98c0:3625:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3628::-2a06:98c0:362a:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
13:54:79:8d:6c:b4:47:55:b4:dd:b4:ee:6e:71:c3:b2:3e:6c:
d0:d1:02:4b:b3:ce:d1:5b:38:4e:15:e0:29:53:85:3a:cc:7e:
36:d8:2a:28:c2:ac:b7:b1:7f:ba:ff:d4:d4:3a:65:a9:d5:7c:
72:4c:08:f6:e1:dd:74:98:00:7d:f0:fc:07:18:8d:0d:48:7e:
2e:28:8e:a1:21:c7:6c:22:1b:23:ad:95:0e:35:f3:42:da:24:
a8:f8:95:fc:0e:d2:b2:60:13:6a:cc:f7:52:ad:22:f0:e1:75:
8f:9c:f1:e9:3b:5e:59:3d:71:f1:9b:8f:24:30:f9:1a:7b:62:
c7:7a:e1:ac:85:32:97:e2:c0:22:01:d2:c5:eb:98:b1:3d:11:
7a:27:7f:3b:de:bf:a0:bb:b7:23:47:ae:d4:ce:c2:ed:57:37:
cb:53:c6:9d:73:54:37:20:1a:38:b3:44:e8:37:9b:e5:ef:9a:
1e:d2:0b:06:40:44:de:64:71:3c:5b:96:21:49:55:8b:57:55:
22:72:48:c3:0f:ad:04:fa:17:95:4d:2d:b0:d4:32:38:2d:c6:
c5:6f:3d:da:57:ab:ff:97:7d:b4:53:fc:b8:cb:23:1d:8f:81:
7d:23:d8:6c:09:3b:ac:bf:60:01:12:0e:17:77:48:86:39:05:
2c:54:e6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:50:52 2025 by rpki-client