Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/9rmctfL499xq_XdP3NUoaQL9dt8.roa
File: 9rmctfL499xq_XdP3NUoaQL9dt8.roa (raw, json)
Hash identifier: qmWMMe4np6q+yuy7dqi4TF4eBy7zv3FZoKf6q8wuZjY=
Subject key identifier: F6:B9:9C:B5:F2:F8:F7:DC:6A:FD:77:4F:DC:D5:28:69:02:FD:76:DF
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0197352441B1486D1FF73D3086B85A5AF819
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/9rmctfL499xq_XdP3NUoaQL9dt8.roa
Signing time: Tue 03 Jun 2025 09:34:17 +0000
ROA not before: Tue 03 Jun 2025 09:34:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.32.0/22 maxlen: 22
46.34.36.0/24 maxlen: 24
46.34.40.0/24 maxlen: 24
46.34.41.0/24 maxlen: 24
46.34.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.mft
rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:35:24:41:b1:48:6d:1f:f7:3d:30:86:b8:5a:5a:f8:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jun 3 09:34:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f6b99cb5f2f8f7dc6afd774fdcd5286902fd76df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4f:64:7b:27:f7:7e:0e:73:fa:a6:c9:19:86:
ed:66:dc:f7:2e:23:49:19:c7:c2:40:1e:97:0d:b0:
b4:e9:c8:26:6b:fd:8b:9b:72:90:5a:e8:ca:20:93:
9a:cf:21:55:cb:db:81:1c:77:98:81:2a:2c:9b:07:
50:6f:f8:c1:fa:5e:f4:ef:e2:1d:ab:f7:f1:61:10:
11:de:89:5f:a7:d8:cc:2c:ce:23:ce:78:5c:e5:f6:
3d:56:ac:92:de:61:7c:0e:83:cf:11:5e:93:54:03:
1f:e3:03:bf:f3:0d:d6:4b:9f:43:fd:65:47:07:20:
91:c4:5f:11:06:95:fb:b6:cf:f1:57:a8:82:f8:5c:
9c:5e:d0:bc:83:cc:c6:f3:ba:20:c6:d7:64:ff:a2:
89:84:1a:0d:65:fb:b4:0b:1b:c1:c7:19:cb:03:15:
f2:7f:4b:45:7b:59:13:80:67:c1:68:a4:f6:eb:ab:
bd:c8:99:6f:c0:07:7a:9d:b6:05:38:ec:8b:b3:83:
92:9c:08:49:75:ec:08:b6:ae:c1:ac:f1:cd:3c:e6:
95:72:2e:e6:90:29:04:ac:ae:23:01:e8:9e:a9:00:
19:77:ee:a9:83:02:cc:30:b2:ed:af:ff:ff:c0:5a:
6c:42:ec:fd:90:31:81:17:7c:d4:a1:f0:05:11:8a:
d0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B9:9C:B5:F2:F8:F7:DC:6A:FD:77:4F:DC:D5:28:69:02:FD:76:DF
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/9rmctfL499xq_XdP3NUoaQL9dt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.36.255
46.34.40.0/23
46.34.63.0/24
Signature Algorithm: sha256WithRSAEncryption
54:de:1e:47:ce:d5:07:1d:08:c3:b2:88:18:27:ab:39:5f:11:
64:97:30:5c:32:49:f9:bc:3e:06:6f:d0:31:54:08:8b:6c:27:
76:d9:ad:d4:39:37:aa:07:67:ce:e1:ff:0f:21:56:0c:87:f3:
35:81:0f:f5:d6:1a:92:4d:d8:2f:c4:2c:93:c3:30:42:3b:39:
6a:e8:65:e6:72:aa:a1:cb:13:8f:21:54:48:c9:d6:f4:97:62:
32:3c:33:e3:59:64:9e:a7:d9:80:1f:46:0d:c6:2e:a2:1e:90:
96:e5:dd:ac:fc:72:c9:47:72:bc:8f:f5:1f:e9:bb:6f:3d:20:
10:48:68:d5:e3:90:4b:b1:a0:50:5a:aa:e9:e3:e9:ba:19:1f:
b8:c7:69:23:c4:96:09:04:18:9e:bb:a0:d2:21:f4:e5:5b:9a:
1a:a4:22:0b:54:be:3e:37:65:5c:cb:cd:54:8d:39:9a:4d:05:
6d:12:08:47:a6:ff:f2:8a:6e:62:22:fc:7b:fe:19:24:0f:74:
f6:b1:dc:ed:ee:48:02:a6:f3:9b:6f:39:a7:77:48:89:0b:01:
93:e2:0d:b6:c8:08:09:26:84:0a:c8:ad:2a:03:35:5e:5a:66:
5f:e9:da:c0:ca:d8:51:95:97:7c:e3:d5:c9:a6:f9:9c:27:99:
e3:01:39:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 13:14:09 2025 by rpki-client