Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/87615a-3ca3-4b5b-810c-bebf42fbe846/1/RpIHAkjNePBkljRPnB1JIyBSnvw.roa
File: RpIHAkjNePBkljRPnB1JIyBSnvw.roa (raw, json)
Hash identifier: qyk9tqBXRznFnx7BG2DU1S+w/7N7AXbDrx47mo90s+Y=
Subject key identifier: 46:92:07:02:48:CD:78:F0:64:96:34:4F:9C:1D:49:23:20:52:9E:FC
Certificate issuer: /CN=2e3d5adb1d064369b7e41baebdb0e8e135d65763
Certificate serial: 019A2559A62016671030983DE292274499C2
Authority key identifier: 2E:3D:5A:DB:1D:06:43:69:B7:E4:1B:AE:BD:B0:E8:E1:35:D6:57:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lj1a2x0GQ2m35BuuvbDo4TXWV2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/87615a-3ca3-4b5b-810c-bebf42fbe846/1/RpIHAkjNePBkljRPnB1JIyBSnvw.roa
Signing time: Mon 27 Oct 2025 11:07:03 +0000
ROA not before: Mon 27 Oct 2025 11:07:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57167
IP address blocks: 80.78.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/87615a-3ca3-4b5b-810c-bebf42fbe846/1/Lj1a2x0GQ2m35BuuvbDo4TXWV2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/87615a-3ca3-4b5b-810c-bebf42fbe846/1/Lj1a2x0GQ2m35BuuvbDo4TXWV2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Lj1a2x0GQ2m35BuuvbDo4TXWV2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:59:a6:20:16:67:10:30:98:3d:e2:92:27:44:99:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e3d5adb1d064369b7e41baebdb0e8e135d65763
Validity
Not Before: Oct 27 11:07:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4692070248cd78f06496344f9c1d492320529efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:62:94:57:22:29:89:b7:df:38:72:18:57:80:
f6:8c:96:1c:33:66:df:93:f5:5e:0e:ed:81:4b:0d:
98:dd:af:95:2b:2d:cd:a8:6f:10:74:d1:51:b1:d6:
bf:d7:11:da:94:a3:5c:d0:76:31:53:da:ef:5b:ca:
d3:f4:82:9a:b7:01:c6:7b:46:83:7f:b5:3f:78:0a:
bc:40:ca:1d:51:7c:30:01:78:1a:48:f5:a4:66:2c:
85:84:db:c2:d7:95:8d:02:97:da:6d:87:c6:c0:c0:
e4:ee:0e:0c:08:79:7b:89:10:c3:96:95:69:ab:52:
90:35:3f:4f:a5:14:04:89:b5:6b:61:dd:62:34:8e:
94:00:20:e1:cd:ed:f6:f8:e1:09:eb:32:3d:20:f2:
b4:19:d0:51:11:50:97:02:e2:e3:91:d3:21:a2:73:
9e:6f:86:94:13:2d:49:62:2a:e5:91:d1:77:99:b6:
a2:98:db:bf:7c:14:83:50:ab:4e:33:58:60:87:86:
22:96:5c:25:28:fa:10:ea:f1:7c:31:a9:d2:f5:e3:
cf:65:66:71:4d:27:c0:8f:c0:bf:90:d4:38:3c:7f:
56:60:08:87:d3:53:1d:37:07:0b:40:db:e0:51:ab:
5c:e4:b3:16:29:00:b9:82:ba:f7:41:26:72:9f:bd:
b3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:92:07:02:48:CD:78:F0:64:96:34:4F:9C:1D:49:23:20:52:9E:FC
X509v3 Authority Key Identifier:
keyid:2E:3D:5A:DB:1D:06:43:69:B7:E4:1B:AE:BD:B0:E8:E1:35:D6:57:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lj1a2x0GQ2m35BuuvbDo4TXWV2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/87615a-3ca3-4b5b-810c-bebf42fbe846/1/RpIHAkjNePBkljRPnB1JIyBSnvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/87615a-3ca3-4b5b-810c-bebf42fbe846/1/Lj1a2x0GQ2m35BuuvbDo4TXWV2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.78.61.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:f2:c7:ac:8b:75:aa:4c:37:17:0a:16:aa:b3:03:20:bb:cd:
d8:46:0e:67:92:b9:83:58:e9:6a:12:ce:22:b3:46:f3:3b:e9:
aa:6d:25:2e:2b:d3:d1:c0:74:c6:a0:ea:4a:5f:6a:ad:db:4f:
fe:6c:73:80:b9:4e:32:d7:71:c4:d0:dd:ac:ac:23:33:39:a3:
9e:fa:8e:4d:cd:88:67:4e:39:13:d1:66:c8:6c:c2:3c:74:74:
cf:c6:29:ea:94:1c:c6:fe:7b:57:2f:2a:3b:3b:ae:28:b0:8a:
2d:e2:6d:8d:08:8a:fe:03:e4:cb:d1:ca:71:9a:ed:f9:23:a3:
9d:dc:17:f0:2b:d8:51:f3:a6:4e:e6:4e:ec:5c:24:4d:1e:a1:
d3:b0:8e:5d:71:2a:9d:ed:ef:12:92:02:24:66:e2:d8:a3:93:
fb:93:74:11:14:97:ef:8d:f0:f5:11:7c:5f:63:cf:9a:39:d7:
75:57:e5:57:36:87:de:fb:57:0c:06:81:a7:24:e3:06:e7:ac:
66:06:4f:92:98:f5:da:f0:52:e0:cf:39:ca:7f:c1:17:40:22:
21:f8:d9:4e:70:8c:e4:87:56:df:f0:d2:55:cd:0a:f4:f7:9b:
05:03:4f:a2:c9:e0:e1:d6:fa:d0:b3:16:33:26:ce:90:bb:68:
cd:80:38:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:02:28 2025 by rpki-client