Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/n_ERAGslTk3vQyjUYN5Y-K_UqXk.roa
File: n_ERAGslTk3vQyjUYN5Y-K_UqXk.roa (raw, json)
Hash identifier: 8P793j/53ZScruOSOWiU0UBEL/rR3GoLLeExoTt6Gqk=
Subject key identifier: 9F:F1:11:00:6B:25:4E:4D:EF:43:28:D4:60:DE:58:F8:AF:D4:A9:79
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0196DD820F6F68BAAFB093DDCA031A6C2E23
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/n_ERAGslTk3vQyjUYN5Y-K_UqXk.roa
Signing time: Sat 17 May 2025 09:10:10 +0000
ROA not before: Sat 17 May 2025 09:10:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213775
IP address blocks: 81.12.98.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:dd:82:0f:6f:68:ba:af:b0:93:dd:ca:03:1a:6c:2e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 17 09:10:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ff111006b254e4def4328d460de58f8afd4a979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:96:f9:a2:75:af:55:0a:64:31:07:d7:30:cc:
90:09:5b:d0:45:1c:d7:fe:86:6a:5f:20:a1:b9:3f:
df:9b:ea:fe:4d:aa:a0:67:e5:f9:14:85:7d:8b:29:
45:27:05:00:e3:9b:af:1d:c6:b5:c8:f6:58:d4:bc:
bc:48:7d:28:5d:57:a8:7b:23:09:fa:cf:13:94:ad:
d8:14:a1:8a:14:2c:9e:2b:9d:c4:bc:87:5e:49:d3:
e8:d9:70:47:e9:be:8e:dc:2f:fb:5a:76:ac:cd:b7:
11:05:e5:a9:91:d7:32:c1:06:4c:d4:f9:4a:ac:69:
b7:3a:65:a7:aa:c2:14:4e:8c:0a:fe:69:de:4a:c1:
73:b1:cf:5a:0c:ab:a4:b9:ae:59:1c:b3:e9:0a:8d:
1e:85:03:c4:fc:a1:cc:d2:d9:31:f5:34:5c:01:65:
fc:fc:a1:22:2b:cf:00:2e:bb:31:d5:b4:8f:01:ac:
3f:c0:a6:cf:f0:19:ca:48:f0:75:39:43:b9:ff:a0:
e7:84:f6:35:44:ba:22:6d:60:82:55:d0:f0:29:ad:
d6:e4:60:75:b1:5f:5d:ba:43:d3:db:65:c4:8d:17:
e4:ef:dd:af:5c:25:d7:61:08:74:0f:0f:eb:5d:f3:
50:01:a3:cc:39:1a:b0:62:72:16:6a:bb:51:98:b7:
5a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F1:11:00:6B:25:4E:4D:EF:43:28:D4:60:DE:58:F8:AF:D4:A9:79
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/n_ERAGslTk3vQyjUYN5Y-K_UqXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.98.0/23
Signature Algorithm: sha256WithRSAEncryption
36:f0:e5:9c:37:d7:ef:bb:b1:a4:8b:34:58:7a:76:83:57:d6:
70:ee:3e:52:67:21:b7:f1:ce:9b:c6:2e:e8:e0:e8:99:38:1a:
ba:39:c6:12:d4:2c:28:40:fe:72:a7:9c:ba:81:9b:49:37:23:
5a:78:2f:d3:43:be:0f:93:1d:2a:b7:09:63:76:67:6a:3c:25:
0b:4f:b8:a8:1f:86:c3:d3:91:02:fd:d1:88:35:f5:be:2b:f4:
17:8f:8c:49:31:c5:95:26:0f:30:d4:7e:d7:2b:9e:c1:12:17:
28:bd:1a:f4:d3:0c:c6:18:a6:d9:c0:ec:15:4b:9a:1a:61:d2:
3c:5d:c0:09:66:8c:c8:ad:34:1f:00:a5:35:6e:4d:b0:46:df:
87:6b:50:25:33:98:a9:aa:bf:24:a5:bf:78:b9:3f:c9:89:fe:
22:26:33:6d:4c:5c:45:8d:3a:49:62:64:91:56:a5:e7:42:52:
92:f4:2f:a9:4b:da:94:c1:8c:b7:e5:c9:14:3d:25:bf:6d:48:
d4:0b:78:36:bc:b6:82:79:fb:28:fd:d5:b5:41:a3:15:30:4d:
26:1a:64:31:a4:92:fc:b9:04:f4:c8:17:0b:6f:55:47:77:0e:
87:64:f7:71:27:cd:f4:b3:93:99:b4:eb:58:a5:00:58:e4:1d:
d7:b1:08:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:22:25 2025 by rpki-client