Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UC77hDg_ZZPCl8O04xpDKViL-ao.roa
File: UC77hDg_ZZPCl8O04xpDKViL-ao.roa (raw, json)
Hash identifier: r702XnhoZPlc2NT4eyqc/PjwWdRp0MgwZWPUvdKqf2o=
Subject key identifier: 50:2E:FB:84:38:3F:65:93:C2:97:C3:B4:E3:1A:43:29:58:8B:F9:AA
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01990023E638C6BEFB77EAC50725D5928A08
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UC77hDg_ZZPCl8O04xpDKViL-ao.roa
Signing time: Sun 31 Aug 2025 12:39:36 +0000
ROA not before: Sun 31 Aug 2025 12:39:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7029
IP address blocks: 2a06:1181:2::/48 maxlen: 48
2a09:17c0:22::/48 maxlen: 48
2a09:17c7:10::/48 maxlen: 48
2a0a:2940::/29 maxlen: 32
2a0a:2d07:9a::/48 maxlen: 48
2a0c:7886:22::/48 maxlen: 48
2a0e:15c0:4::/48 maxlen: 48
2a0e:15c6::/32 maxlen: 32
2a0e:1a80:1::/48 maxlen: 48
2a0e:1a80:1312::/48 maxlen: 48
2a0e:2240::/29 maxlen: 32
2a0e:c785:1::/48 maxlen: 48
2a0e:c785:273::/48 maxlen: 48
2a0e:f200::/48 maxlen: 48
2a0e:f604:10::/48 maxlen: 48
2a0f:1200:2::/48 maxlen: 48
2a0f:1587:100::/48 maxlen: 48
2a0f:1e80:d9a8::/48 maxlen: 48
2a0f:1e84:3f::/48 maxlen: 48
2a0f:1e86:100::/48 maxlen: 48
2a0f:3047:fc1d::/48 maxlen: 48
2a0f:3d80:bac::/48 maxlen: 48
2a0f:3d86:77::/48 maxlen: 48
2a0f:7d06:102::/48 maxlen: 48
2a0f:7d06:9c8a::/48 maxlen: 48
2a0f:bc00:100::/48 maxlen: 48
2a0f:df45:fc78::/48 maxlen: 48
2a0f:df47:200::/48 maxlen: 48
2a0f:e202:55::/48 maxlen: 48
2a0f:e6c6:5532::/48 maxlen: 48
2a0f:e7c5:f8f9::/48 maxlen: 48
2a0f:e847:77::/48 maxlen: 48
2a0f:e847:acab::/48 maxlen: 48
2a10:5c00::/29 maxlen: 32
2a10:67c2:3::/48 maxlen: 48
2a11:b200::/29 maxlen: 32
2a12:ac43:1::/48 maxlen: 48
2a12:ac44:1312::/48 maxlen: 48
2a12:ecc3:2::/48 maxlen: 48
2a13:18c0:2::/48 maxlen: 48
2a13:18c0:22::/48 maxlen: 48
2a13:8c82:1::/48 maxlen: 48
2a13:9281:100::/48 maxlen: 48
2a13:c900:fd1a::/48 maxlen: 48
2a13:e107:99::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:00:23:e6:38:c6:be:fb:77:ea:c5:07:25:d5:92:8a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 31 12:39:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=502efb84383f6593c297c3b4e31a4329588bf9aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0a:61:86:57:f9:72:73:93:d1:03:ff:07:e2:
a7:4e:1d:a6:fe:f8:4c:df:1a:8e:16:48:23:58:b6:
91:5b:42:ca:ab:dd:81:3e:33:b9:c4:d7:40:33:38:
95:7b:2a:2a:b6:9a:17:2c:28:52:77:27:3c:9b:2b:
b3:8c:ed:96:d4:3c:46:c3:ae:d7:d3:8d:00:7e:82:
a1:81:8e:ae:4d:e0:ad:38:e2:51:9d:8a:cd:4e:dd:
d7:3a:44:95:f3:6f:e6:15:91:ab:aa:8d:d5:6a:d9:
e0:66:12:c3:e9:e9:65:20:f1:04:cb:34:ff:5c:5f:
5b:f5:6c:05:a8:46:e8:5f:86:8c:1a:41:da:38:16:
d2:a2:d3:21:47:7e:fc:86:15:11:92:eb:26:1d:39:
a0:b5:6f:85:6e:7d:be:23:60:f5:88:c2:9f:1e:62:
ed:ee:15:e9:de:fc:ae:2d:6d:8d:30:39:ab:2f:9c:
87:95:95:85:12:a5:d5:4a:3c:77:65:cc:f2:07:17:
b9:6f:c1:3a:ce:b1:64:57:2d:15:65:07:81:2e:d7:
7d:60:9b:14:c8:ab:5d:3e:00:ef:84:7c:90:65:db:
72:13:54:7e:c3:37:e2:04:33:af:31:b9:e0:bb:b3:
66:4b:14:2b:8c:f1:44:0a:c8:3e:2e:4b:3b:9e:4e:
c9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2E:FB:84:38:3F:65:93:C2:97:C3:B4:E3:1A:43:29:58:8B:F9:AA
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/UC77hDg_ZZPCl8O04xpDKViL-ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1181:2::/48
2a09:17c0:22::/48
2a09:17c7:10::/48
2a0a:2940::/29
2a0a:2d07:9a::/48
2a0c:7886:22::/48
2a0e:15c0:4::/48
2a0e:15c6::/32
2a0e:1a80:1::/48
2a0e:1a80:1312::/48
2a0e:2240::/29
2a0e:c785:1::/48
2a0e:c785:273::/48
2a0e:f200::/48
2a0e:f604:10::/48
2a0f:1200:2::/48
2a0f:1587:100::/48
2a0f:1e80:d9a8::/48
2a0f:1e84:3f::/48
2a0f:1e86:100::/48
2a0f:3047:fc1d::/48
2a0f:3d80:bac::/48
2a0f:3d86:77::/48
2a0f:7d06:102::/48
2a0f:7d06:9c8a::/48
2a0f:bc00:100::/48
2a0f:df45:fc78::/48
2a0f:df47:200::/48
2a0f:e202:55::/48
2a0f:e6c6:5532::/48
2a0f:e7c5:f8f9::/48
2a0f:e847:77::/48
2a0f:e847:acab::/48
2a10:5c00::/29
2a10:67c2:3::/48
2a11:b200::/29
2a12:ac43:1::/48
2a12:ac44:1312::/48
2a12:ecc3:2::/48
2a13:18c0:2::/48
2a13:18c0:22::/48
2a13:8c82:1::/48
2a13:9281:100::/48
2a13:c900:fd1a::/48
2a13:e107:99::/48
Signature Algorithm: sha256WithRSAEncryption
b8:fe:50:ea:21:55:4c:31:8e:ff:68:5b:18:d6:fa:6e:cb:77:
0a:2f:3e:81:77:ed:c2:fb:65:38:dd:23:5a:b0:d9:fb:15:a7:
fd:6b:d2:ed:73:a3:db:50:20:f9:7c:c2:9d:b3:31:18:4f:11:
55:04:8c:aa:5c:2a:3c:0f:e1:44:cf:73:f9:3e:f3:c6:75:87:
22:82:dd:bc:22:af:5c:dd:77:a9:a7:29:1b:af:18:43:f5:03:
df:4c:52:79:b3:91:f0:e2:47:e6:99:64:f6:fc:21:cb:19:d8:
52:ae:99:61:f2:95:c2:e4:42:9f:e2:4e:81:bb:eb:ea:01:37:
be:ba:26:a3:83:b6:9f:a5:33:29:ae:af:e3:6c:b6:1e:39:a1:
83:1c:a6:15:f5:44:90:50:7a:25:3b:a7:da:7d:80:a1:f2:9a:
ea:34:59:1f:01:2d:ed:20:cd:55:f6:9b:f5:01:d8:34:fa:63:
db:8e:eb:0a:a2:0c:cd:21:db:a2:6a:3a:2a:b0:d8:44:6f:ee:
c9:94:48:a4:f5:75:64:7e:30:01:ee:ae:1d:44:02:f0:dc:b0:
d4:15:e8:66:46:9c:20:e1:c3:d9:d0:f4:b1:cb:0a:c3:b7:60:
af:42:3f:55:67:bd:c2:83:6f:6e:48:22:a5:4c:bd:6a:4c:cf:
67:57:78:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 08:36:48 2025 by rpki-client