Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FSkJwpoLTVWtgRJAWs25Ok4gthU.roa
File: FSkJwpoLTVWtgRJAWs25Ok4gthU.roa (raw, json)
Hash identifier: AW6JDq0yqBCEHM7sg7NFYCC7tmqsRrXsw9ype//R0NQ=
Subject key identifier: 15:29:09:C2:9A:0B:4D:55:AD:81:12:40:5A:CD:B9:3A:4E:20:B6:15
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019A6E0FC1B129614038B88033654B5E73AB
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FSkJwpoLTVWtgRJAWs25Ok4gthU.roa
Signing time: Mon 10 Nov 2025 13:58:37 +0000
ROA not before: Mon 10 Nov 2025 13:58:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28753
IP address blocks: 2a04:9f40::/29 maxlen: 29
2a05:b900::/29 maxlen: 29
2a06:1184:101::/48 maxlen: 48
2a06:3bc0::/29 maxlen: 29
2a07:8a40::/29 maxlen: 29
2a09:7b00::/29 maxlen: 29
2a09:b700::/29 maxlen: 29
2a0a:2d06:102::/48 maxlen: 48
2a0a:2d06:103::/48 maxlen: 48
2a0a:7d00::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0c:7886:99::/48 maxlen: 48
2a0c:7886:100::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0f:17c0::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:2500::/29 maxlen: 29
2a0f:27c0::/29 maxlen: 29
2a0f:3640::/29 maxlen: 29
2a0f:7f00::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:d200::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0f:db40::/29 maxlen: 29
2a10:34c0::/29 maxlen: 29
2a10:36c0::/29 maxlen: 29
2a10:6b00::/29 maxlen: 29
2a10:7f00::/29 maxlen: 29
2a11:8880::/29 maxlen: 29
2a12:4ac0::/29 maxlen: 29
2a12:ac43:1312::/48 maxlen: 48
2a12:ecc0:158::/48 maxlen: 48
2a12:ecc6:1312::/48 maxlen: 48
2a13:200::/29 maxlen: 29
2a13:1380::/29 maxlen: 29
2a13:18c6:66::/48 maxlen: 48
2a13:18c6:88::/48 maxlen: 48
2a13:2cc0::/29 maxlen: 29
2a13:2d40::/29 maxlen: 29
2a13:2dc0::/29 maxlen: 29
2a13:2e40::/29 maxlen: 29
2a13:3040::/29 maxlen: 29
2a13:3380::/29 maxlen: 29
2a13:4900::/29 maxlen: 29
2a13:5b80::/29 maxlen: 29
2a13:7900::/29 maxlen: 29
2a13:7d80::/29 maxlen: 29
2a13:8200::/29 maxlen: 29
2a13:9080::/29 maxlen: 29
2a13:9180::/29 maxlen: 29
2a13:9480::/29 maxlen: 29
2a13:9680::/29 maxlen: 29
2a13:d100::/29 maxlen: 29
2a13:d700::/29 maxlen: 29
2a13:d900::/29 maxlen: 29
2a13:f900::/29 maxlen: 29
2a13:fb00::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Nov 2025 15:37:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:6e:0f:c1:b1:29:61:40:38:b8:80:33:65:4b:5e:73:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 10 13:58:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=152909c29a0b4d55ad8112405acdb93a4e20b615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:68:34:79:7e:6a:f9:bb:df:2f:fe:3f:cf:64:
16:9e:4f:7f:e7:4d:78:24:0d:2c:c1:f1:39:1a:a0:
f3:b6:7e:99:9e:ec:e3:b6:ee:d3:55:cc:0c:bf:3b:
b6:ad:25:be:88:7d:c1:ec:91:68:ed:17:66:64:af:
48:16:c2:02:98:97:e3:c2:d1:8e:d2:01:3d:40:ab:
cb:ee:8e:35:2f:9a:67:7f:e4:52:71:1a:5e:3b:b1:
3e:6c:23:d1:a3:f2:86:a1:ed:56:c1:76:4f:f9:22:
ae:76:dd:53:b2:e4:79:ce:1d:ae:2c:df:01:1c:84:
13:ef:0b:e2:d6:3a:83:f3:ae:ae:c8:3a:2e:6a:8d:
ca:dc:56:72:1e:60:50:36:44:2a:5f:31:d9:03:a1:
97:62:6b:76:88:de:aa:94:be:7e:b5:da:67:32:99:
9c:32:82:3a:a0:cb:f9:72:2d:f1:02:b2:fb:7e:f4:
1c:fe:b4:67:d4:a8:28:32:91:4c:7a:de:78:9a:ad:
9c:ed:51:93:f5:db:5f:df:69:e1:69:24:89:81:cd:
6f:12:19:bd:34:2d:a2:9e:d0:0a:2f:d2:34:9a:bc:
21:02:24:78:64:68:f2:d3:54:19:4f:43:c8:59:79:
d5:bf:16:96:fe:07:03:c5:0d:2e:c7:45:f4:82:88:
76:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:29:09:C2:9A:0B:4D:55:AD:81:12:40:5A:CD:B9:3A:4E:20:B6:15
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FSkJwpoLTVWtgRJAWs25Ok4gthU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9f40::/29
2a05:b900::/29
2a06:1184:101::/48
2a06:3bc0::/29
2a07:8a40::/29
2a09:7b00::/29
2a09:b700::/29
2a0a:2d06:102::/47
2a0a:7d00::/29
2a0c:4880::/29
2a0c:7886:99::/48
2a0c:7886:100::/48
2a0e:15c7:99::/48
2a0f:17c0::/29
2a0f:1f80::/29
2a0f:2500::/29
2a0f:27c0::/29
2a0f:3640::/29
2a0f:7f00::/29
2a0f:a200::/29
2a0f:d200::/29
2a0f:dac0::/29
2a0f:db40::/29
2a10:34c0::/29
2a10:36c0::/29
2a10:6b00::/29
2a10:7f00::/29
2a11:8880::/29
2a12:4ac0::/29
2a12:ac43:1312::/48
2a12:ecc0:158::/48
2a12:ecc6:1312::/48
2a13:200::/29
2a13:1380::/29
2a13:18c6:66::/48
2a13:18c6:88::/48
2a13:2cc0::/29
2a13:2d40::/29
2a13:2dc0::/29
2a13:2e40::/29
2a13:3040::/29
2a13:3380::/29
2a13:4900::/29
2a13:5b80::/29
2a13:7900::/29
2a13:7d80::/29
2a13:8200::/29
2a13:9080::/29
2a13:9180::/29
2a13:9480::/29
2a13:9680::/29
2a13:d100::/29
2a13:d700::/29
2a13:d900::/29
2a13:f900::/29
2a13:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
9a:8b:74:07:ef:22:e5:44:1b:24:a0:40:f3:dd:d2:f1:f4:e7:
0e:cf:34:18:83:72:87:d4:d8:4e:50:19:7b:24:9d:53:c3:dd:
06:87:24:15:06:20:61:ae:f3:7a:2a:29:32:fc:3e:26:56:15:
4d:f2:40:0c:bb:cb:39:72:0c:4e:e4:6e:78:7d:dd:a9:d0:8d:
fb:b4:f9:fc:62:30:69:0e:3d:56:42:79:16:e8:88:a9:0b:48:
e6:a1:08:c7:a1:cd:02:d3:2b:43:c0:46:23:d1:63:74:8a:80:
bc:0d:b0:48:7a:ae:fb:25:55:61:69:83:7c:b7:43:42:1d:22:
ac:97:66:0b:0a:71:4e:6b:dc:a5:46:76:a5:97:8a:0f:cc:3d:
f8:30:93:e3:ab:a7:9f:93:dc:d2:47:fc:61:f2:a2:62:54:6b:
82:61:a3:38:8d:d1:11:72:6b:81:64:50:82:5a:24:51:1a:9e:
80:c1:f6:59:d3:e4:72:c2:47:1d:2f:b9:fc:e4:0c:01:00:f1:
d1:07:8f:7d:07:91:55:7c:3d:e3:02:b8:f7:5d:42:2e:4c:8e:
19:6f:4c:4b:d6:f9:07:06:10:ee:21:03:5a:7b:9c:89:2a:40:
b7:9e:a3:06:af:4f:b4:fa:3b:11:53:53:ce:d1:6a:f2:5b:95:
a2:00:3e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 15 23:20:21 2025 by rpki-client