Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/niNmST2SmytSoAJTruNS-tHKdu4.roa
File: niNmST2SmytSoAJTruNS-tHKdu4.roa (raw, json)
Hash identifier: Z1vFFSTX+BL3qZQrL+37hd524y47cDNsow6wUX0pz+w=
Subject key identifier: 9E:23:66:49:3D:92:9B:2B:52:A0:02:53:AE:E3:52:FA:D1:CA:76:EE
Certificate issuer: /CN=3ee770f47fd903925d80ac58e05e076f3baa110b
Certificate serial: 0199138E1BAC2B15D50338E1F3CF06370FCE
Authority key identifier: 3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/niNmST2SmytSoAJTruNS-tHKdu4.roa
Signing time: Thu 04 Sep 2025 07:08:24 +0000
ROA not before: Thu 04 Sep 2025 07:08:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.38.26.0/24 maxlen: 24
194.31.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:13:8e:1b:ac:2b:15:d5:03:38:e1:f3:cf:06:37:0f:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee770f47fd903925d80ac58e05e076f3baa110b
Validity
Not Before: Sep 4 07:08:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9e2366493d929b2b52a00253aee352fad1ca76ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:58:2a:db:1b:7c:04:74:59:83:60:64:64:bf:
a0:a1:da:e1:37:b6:13:8d:38:57:7d:c9:aa:c5:5e:
d5:87:15:cc:44:7b:be:e6:69:df:76:a6:a7:c3:b8:
79:d2:63:bf:bb:d4:ea:bd:20:2f:8b:ad:92:2c:44:
96:28:a4:a7:09:2c:7d:07:f5:05:af:0f:d7:4d:67:
d6:16:c3:0f:b8:49:d7:42:00:8c:76:3d:9c:cb:3a:
cb:fa:f0:38:a4:72:47:92:a0:d5:64:0a:a2:61:fb:
10:0d:34:0f:be:89:89:2c:b6:a1:0a:67:82:1e:94:
9c:b9:c3:d7:d1:75:a7:16:b1:e2:8f:b6:bd:82:8f:
8b:3e:48:1e:1c:c6:05:fe:0a:2d:29:66:f3:06:c6:
b4:89:f3:01:6a:61:64:09:5e:2f:a6:08:db:8d:e1:
f1:15:6a:6e:a5:5b:7a:df:56:88:4e:6c:1b:67:49:
18:95:15:3a:98:db:f5:83:dc:38:dc:70:ac:2f:f0:
26:d4:9b:d7:b1:67:14:da:ec:f6:48:a9:f1:35:13:
7c:98:4b:12:9e:28:6f:7a:9d:82:28:9e:b3:6a:e2:
dd:a5:2f:29:2e:b9:dd:e5:d2:15:0c:54:e1:c4:bb:
07:7e:a6:0a:d9:ff:49:62:36:75:92:d2:d1:d3:43:
ac:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:23:66:49:3D:92:9B:2B:52:A0:02:53:AE:E3:52:FA:D1:CA:76:EE
X509v3 Authority Key Identifier:
keyid:3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/niNmST2SmytSoAJTruNS-tHKdu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.26.0/24
194.31.165.0/24
Signature Algorithm: sha256WithRSAEncryption
28:07:3f:a1:a8:da:48:ff:3e:2d:32:7a:76:98:94:30:d9:d7:
83:b7:00:d7:91:b4:8e:b5:03:4d:40:8f:be:78:38:b5:05:93:
f2:a8:d4:1a:57:03:2c:2a:af:74:49:2c:66:48:94:35:8c:9d:
36:f3:93:0d:21:83:d9:42:23:3a:ad:bc:23:3d:14:64:54:11:
e8:04:06:90:37:16:66:bb:6d:a7:fe:83:c5:07:13:dd:43:13:
e1:78:5e:00:25:7a:2f:ac:ac:ab:ce:c1:97:5e:85:1b:39:24:
fd:8e:2c:51:88:3d:df:76:91:b5:d7:54:5f:1f:13:b0:ac:cd:
68:93:6b:14:fd:ca:70:f4:c1:41:68:cd:d0:30:10:f5:f8:2e:
ec:c7:51:27:f8:aa:0a:da:22:35:d3:41:3e:c9:8f:21:b2:8e:
2f:ff:cb:65:7f:80:0a:b1:b9:f3:c1:33:40:ad:4d:8b:85:11:
ae:1f:05:e7:4f:61:08:b8:54:a0:f3:a8:11:07:0c:46:d4:02:
a8:35:aa:28:85:7e:d3:5e:14:e6:10:bc:dd:c4:9f:f0:24:54:
5c:77:78:f3:c7:ff:c1:92:5b:6f:de:d1:28:3f:5e:bd:6d:64:
1c:2b:da:b2:cd:d3:2f:de:f0:9e:20:5a:82:27:49:f6:42:f4:
42:b4:79:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 00:40:23 2025 by rpki-client