Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/yxisVf5RbQd_iyu5bjOm2uTCJqY.roa
File: yxisVf5RbQd_iyu5bjOm2uTCJqY.roa (raw, json)
Hash identifier: TlTPbndQ3fvJ6HctsZUhUZG2cQbNIxMU2U4IlG98W/0=
Subject key identifier: CB:18:AC:55:FE:51:6D:07:7F:8B:2B:B9:6E:33:A6:DA:E4:C2:26:A6
Certificate issuer: /CN=edb04a943332768017266f4e5f56c006d98ebbb4
Certificate serial: 0196E98B8A18276163864D74BAB84FD9EBB7
Authority key identifier: ED:B0:4A:94:33:32:76:80:17:26:6F:4E:5F:56:C0:06:D9:8E:BB:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bBKlDMydoAXJm9OX1bABtmOu7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/yxisVf5RbQd_iyu5bjOm2uTCJqY.roa
Signing time: Mon 19 May 2025 17:15:58 +0000
ROA not before: Mon 19 May 2025 17:15:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396253
IP address blocks: 2a03:b8c0:15::/48 maxlen: 48
2a03:b8c0:19::/48 maxlen: 48
2a03:b8c0:1a::/48 maxlen: 48
2a03:b8c0:1b::/48 maxlen: 48
2a03:b8c0:1c::/48 maxlen: 48
2a03:b8c0:1d::/48 maxlen: 48
2a03:b8c0:1e::/48 maxlen: 48
2a03:b8c0:20::/48 maxlen: 48
2a03:b8c0:21::/48 maxlen: 48
2a03:b8c0:22::/48 maxlen: 48
2a03:b8c0:23::/48 maxlen: 48
2a03:b8c0:24::/48 maxlen: 48
2a03:b8c0:25::/48 maxlen: 48
2a03:b8c0:28::/48 maxlen: 48
2a03:b8c0:29::/48 maxlen: 48
2a03:b8c0:2a::/48 maxlen: 48
2a03:b8c0:2b::/48 maxlen: 48
2a03:b8c0:2c::/48 maxlen: 48
2a03:b8c0:2d::/48 maxlen: 48
2a03:b8c0:2e::/48 maxlen: 48
2a03:b8c0:2f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/7bBKlDMydoAXJm9OX1bABtmOu7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/7bBKlDMydoAXJm9OX1bABtmOu7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/7bBKlDMydoAXJm9OX1bABtmOu7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e9:8b:8a:18:27:61:63:86:4d:74:ba:b8:4f:d9:eb:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb04a943332768017266f4e5f56c006d98ebbb4
Validity
Not Before: May 19 17:15:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb18ac55fe516d077f8b2bb96e33a6dae4c226a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d6:cd:c9:7e:a3:57:5b:3b:ac:bf:99:4e:12:
14:7a:ae:c5:54:98:32:1e:10:95:9f:22:51:22:af:
a1:e3:9a:e2:b8:2f:5b:f6:d0:0b:26:44:86:5f:c9:
11:ff:8e:e4:24:3c:b6:b6:a6:9a:3d:f4:85:a6:59:
b8:6a:e1:8d:b0:70:c7:58:ae:1d:9b:ab:ee:59:90:
49:b2:05:aa:8c:52:f9:bc:fd:40:66:ce:29:da:b5:
ca:e0:8c:22:3a:6b:8d:3d:b6:77:fe:28:e6:53:59:
ee:54:f8:cf:d0:46:1b:28:fe:22:1b:3a:9e:a5:f7:
1f:c6:0e:9b:4c:51:82:5b:57:e3:15:78:13:f0:c2:
60:34:d2:ca:bf:18:1b:27:7f:20:8e:35:78:dc:34:
03:7e:c5:21:b3:2a:82:aa:7a:1e:25:c5:de:05:29:
83:87:db:ab:50:5f:91:cb:eb:10:07:9a:a4:dd:a1:
9a:97:b9:bf:b6:9b:36:b8:ed:4f:14:c1:ae:70:fe:
f4:26:37:d8:4a:72:25:1f:b9:93:1b:00:d3:b3:c6:
11:3c:23:f3:9e:df:fb:36:79:3f:d6:d5:8a:43:14:
7e:ac:b6:f9:83:7d:0a:e9:b6:f9:51:c0:b7:91:81:
a1:07:64:81:54:7e:bc:59:cf:16:e4:45:a8:90:2d:
0e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:18:AC:55:FE:51:6D:07:7F:8B:2B:B9:6E:33:A6:DA:E4:C2:26:A6
X509v3 Authority Key Identifier:
keyid:ED:B0:4A:94:33:32:76:80:17:26:6F:4E:5F:56:C0:06:D9:8E:BB:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bBKlDMydoAXJm9OX1bABtmOu7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/yxisVf5RbQd_iyu5bjOm2uTCJqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/50a4c4-91d1-4311-b67b-e45fa64d4d2d/1/7bBKlDMydoAXJm9OX1bABtmOu7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:b8c0:15::/48
2a03:b8c0:19::-2a03:b8c0:1e:ffff:ffff:ffff:ffff:ffff
2a03:b8c0:20::-2a03:b8c0:25:ffff:ffff:ffff:ffff:ffff
2a03:b8c0:28::/45
Signature Algorithm: sha256WithRSAEncryption
2d:85:67:0b:00:35:35:c2:07:5c:1d:e2:e5:9b:82:f5:51:12:
89:3f:a4:77:80:c0:da:3b:6a:bd:8e:bd:47:35:c2:d8:45:49:
c6:9e:6b:b8:34:47:99:dd:ed:a6:5f:89:c7:43:5f:0a:69:6b:
9e:f5:63:c7:08:07:d4:e3:bf:63:8a:17:29:d4:99:31:a1:8e:
ef:1c:c5:10:3a:d6:90:82:db:23:1c:ae:ed:0a:6b:5c:f1:41:
30:fa:2c:a5:da:ae:07:a6:ad:ba:bb:e2:30:af:e8:cd:fd:0a:
db:2f:33:97:0c:9b:fc:b0:15:71:d9:28:d3:81:27:6b:fb:35:
5a:59:bd:29:8c:ff:40:1a:b5:f2:e6:7a:39:45:99:18:57:b1:
ad:0c:c3:b4:73:5b:50:2b:5b:81:c1:3a:b8:3b:68:df:0f:e2:
9d:62:16:28:06:b8:48:d8:0e:45:56:f5:1f:6d:b6:55:4d:26:
14:39:1f:56:74:ab:fe:cf:31:47:92:a7:fa:f4:9d:92:d5:4f:
3e:d9:f1:99:08:59:a7:ef:5f:a0:78:cf:ac:79:9c:87:f1:f0:
14:c0:0d:da:c9:eb:32:e6:47:03:8d:6e:4a:50:1c:97:af:f4:
9f:a2:7e:d0:3c:77:22:d2:fd:e9:cb:56:ce:82:8c:cf:96:b2:
f2:75:de:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:15:25 2025 by rpki-client