Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/LO3Dmh76o3yUP4OdafCd70xCYL4.roa
File: LO3Dmh76o3yUP4OdafCd70xCYL4.roa (raw, json)
Hash identifier: 2kNEWUMSLr9EsTWZSZq6yn8Fzkq0/lSxUPtBhfFtAkQ=
Subject key identifier: 2C:ED:C3:9A:1E:FA:A3:7C:94:3F:83:9D:69:F0:9D:EF:4C:42:60:BE
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 0198C0ED75BE35DF1942A2DE5081B7718A12
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/LO3Dmh76o3yUP4OdafCd70xCYL4.roa
Signing time: Tue 19 Aug 2025 06:04:04 +0000
ROA not before: Tue 19 Aug 2025 06:04:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 77.246.212.0/22 maxlen: 22
88.80.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c0:ed:75:be:35:df:19:42:a2:de:50:81:b7:71:8a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Aug 19 06:04:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2cedc39a1efaa37c943f839d69f09def4c4260be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:09:d6:da:53:06:25:85:de:35:64:f9:02:6b:
2c:69:4b:76:bc:92:78:7d:cd:c3:fb:c4:48:7e:46:
74:1b:cf:23:b2:4e:e1:c3:2b:1b:0a:58:7a:3b:c9:
c0:2f:87:01:8a:46:e4:36:3c:98:66:d9:ac:62:f9:
f5:43:09:b5:7c:0c:60:89:eb:9e:08:ad:1c:2c:a7:
ed:bc:86:87:01:67:37:60:c1:02:67:17:65:2c:d7:
06:5d:03:ed:75:fe:a1:10:e1:43:79:bc:48:13:14:
ce:ff:d8:ff:14:ac:6c:4e:97:13:4e:f4:02:e0:d1:
98:52:16:4a:d7:78:ba:ce:e5:e8:35:95:d0:41:25:
ed:98:d6:04:49:4c:13:07:b6:eb:8c:ff:35:9d:5b:
85:36:0c:3f:fa:10:3f:f0:4b:75:7d:f9:26:ad:4e:
71:17:eb:89:02:30:fb:96:c7:8e:07:d0:ae:3c:f9:
dd:4d:cb:a5:de:96:06:50:47:1e:41:2a:bf:60:d1:
98:98:2f:2d:e8:93:6e:73:e5:3c:8d:17:d2:0c:a7:
91:92:82:8b:8d:40:00:65:46:07:6a:f4:9a:29:90:
ee:68:3e:0c:b4:4b:83:3c:a0:15:94:9f:a3:0e:66:
4c:a9:3f:14:27:93:00:fd:55:5a:ff:91:fc:c5:81:
a3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:ED:C3:9A:1E:FA:A3:7C:94:3F:83:9D:69:F0:9D:EF:4C:42:60:BE
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/LO3Dmh76o3yUP4OdafCd70xCYL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.212.0/22
88.80.141.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:83:de:f4:7c:ad:4e:d0:38:e9:3b:fb:9a:dd:0f:ed:87:63:
b4:e3:b1:10:ef:76:e1:bd:35:26:d4:81:6b:6e:a3:0d:63:59:
1c:9c:aa:e7:e0:9d:71:5f:88:e9:79:de:91:95:b6:8a:94:8b:
f8:c5:51:b3:0c:84:62:6d:04:5e:1e:b2:de:39:9b:62:83:59:
3b:21:56:b0:27:7d:90:10:be:df:5d:02:03:86:27:43:26:16:
db:a3:73:06:f4:b4:f7:e2:46:57:4a:5e:77:7f:17:db:21:38:
2f:9e:5a:a0:66:58:22:31:e8:76:d2:9d:bf:88:81:25:9e:69:
fa:a7:64:40:46:5e:fb:f3:7e:f5:ed:7f:71:6e:ed:f2:7c:29:
b5:d5:f3:2f:9e:b0:73:58:fa:f8:73:48:45:a3:ce:dc:28:3a:
cd:7d:4e:e3:35:fb:e5:4d:c0:bf:fa:71:7c:76:e7:c2:86:ff:
20:e8:c1:e0:16:c7:32:83:66:f9:41:65:27:cb:3e:c0:a3:34:
81:1a:5e:95:d3:00:3e:0a:d5:66:b1:22:67:6f:e2:a1:5c:59:
e3:e9:7b:56:7c:a6:0c:18:5e:95:e7:6f:89:35:62:4d:49:e3:
c6:3f:2f:9d:73:06:84:b0:e5:b5:92:05:db:ff:da:f1:e3:76:
55:c4:c1:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 18:53:41 2025 by rpki-client