Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/3nKPvfyefhBBthk-LrRdD-jfvW0.roa
File: 3nKPvfyefhBBthk-LrRdD-jfvW0.roa (raw, json)
Hash identifier: 1vR7bznA03xVBTq7D8itXQ6xNZUvjtjklTS5nPcHTr0=
Subject key identifier: DE:72:8F:BD:FC:9E:7E:10:41:B6:19:3E:2E:B4:5D:0F:E8:DF:BD:6D
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 0198147FBDE3D49EB5F9CCAF2F59078BDB14
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/3nKPvfyefhBBthk-LrRdD-jfvW0.roa
Signing time: Wed 16 Jul 2025 18:29:32 +0000
ROA not before: Wed 16 Jul 2025 18:29:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199327
IP address blocks: 2a0c:e304:10::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:14:7f:bd:e3:d4:9e:b5:f9:cc:af:2f:59:07:8b:db:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Jul 16 18:29:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=de728fbdfc9e7e1041b6193e2eb45d0fe8dfbd6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:74:0a:72:9b:34:d7:bf:41:e2:8e:62:7f:1a:
0d:55:cc:78:f8:da:32:46:c2:c9:18:06:08:6e:56:
10:ff:1a:d1:ca:c9:8e:2b:99:34:e9:8c:91:6d:d8:
c1:2a:4a:81:fb:4a:8e:e1:fe:2c:9f:c7:97:8b:f5:
eb:d6:5d:10:13:b6:65:ba:4d:5f:6d:35:9f:78:8b:
21:41:89:fc:e0:76:a8:07:3a:e0:81:e5:90:71:74:
83:42:7f:ae:c7:68:7c:07:98:60:70:b3:27:5b:30:
bf:fd:1b:85:4b:5b:f9:6b:8c:f8:28:b6:27:41:e8:
6c:e5:94:4c:6d:a1:fe:ec:25:e5:ae:f6:58:63:a6:
af:99:97:ec:10:91:58:ad:b3:d9:d5:58:d5:81:0f:
23:79:62:af:b1:bf:ee:4b:6f:cd:a8:1e:33:ef:35:
9d:a0:08:e1:ad:e4:bb:51:6b:cf:99:4a:4d:ba:9f:
0b:2f:8e:cc:28:f6:42:a6:01:4d:ac:b8:64:61:bf:
6e:5f:cb:1a:8c:4b:d3:99:aa:3a:6e:8b:de:a8:61:
8e:d6:2b:7a:2e:b2:ad:d8:aa:84:01:00:48:2f:b5:
38:66:d8:12:dc:5c:41:93:00:5c:37:72:fe:cf:78:
fb:24:db:52:60:25:13:d1:b2:18:07:89:9b:ba:e3:
f2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:72:8F:BD:FC:9E:7E:10:41:B6:19:3E:2E:B4:5D:0F:E8:DF:BD:6D
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/3nKPvfyefhBBthk-LrRdD-jfvW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e304:10::/44
Signature Algorithm: sha256WithRSAEncryption
26:29:5a:3c:5f:c0:09:0a:b8:34:05:e2:cd:98:4b:64:96:fd:
d0:e5:f3:40:86:eb:21:09:cb:ab:22:78:7a:a1:21:eb:4f:a5:
93:d2:3b:80:1e:e0:d8:d2:f1:96:1c:32:ce:59:72:9b:b6:a5:
33:b0:40:bf:d0:92:80:01:08:ff:f2:ec:21:14:a9:0e:49:6b:
d0:cd:ac:7f:35:1f:d8:ed:8d:1f:4a:b8:34:04:03:17:bd:ef:
8a:6c:26:bc:f6:a4:7f:ee:a2:5c:6b:e2:82:6a:d0:73:a2:27:
34:8b:1a:bd:b2:c8:8c:87:7d:0c:b6:55:7a:1a:0d:da:43:94:
e8:38:e1:a8:28:e8:d6:2f:71:c0:6c:b6:aa:88:31:53:ab:05:
b6:d2:5c:24:6b:e2:f6:b3:ad:ad:d6:42:4f:91:70:2d:85:bc:
63:88:ab:6a:7e:6b:01:02:cd:7c:5f:be:ef:d2:37:5b:29:93:
17:e4:0c:da:7e:28:a5:22:89:d2:ad:c2:59:f1:fb:64:9f:df:
d5:0b:28:25:d4:21:57:94:9e:df:b9:68:40:6b:db:09:db:4f:
ed:86:b2:36:06:51:69:47:90:4d:f6:17:b6:3e:96:e8:ef:99:
2b:52:52:66:d6:5b:57:49:52:6e:ed:2f:84:bd:e6:5d:93:ea:
53:1a:4b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:40:51 2025 by rpki-client