Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8a9417-bc28-4a02-a92f-a408bba735ee/1/1-J_uLfpgRYrtxrpsYSaesRuiQ2g.roa
File: 1-J_uLfpgRYrtxrpsYSaesRuiQ2g.roa (raw, json)
Hash identifier: GvASZIyrV5t2M4DjO8tp4WjyB+kQVX9GlnrOl3qGLxQ=
Subject key identifier: F8:9F:EE:2D:FA:60:45:8A:ED:C6:BA:6C:61:26:9E:B1:1B:A2:43:68
Certificate issuer: /CN=d462ece547572adeca1a9ff057e0ba8eae8c5d5e
Certificate serial: 019A020AA3D9B82E74FFE943809DF98E5E63
Authority key identifier: D4:62:EC:E5:47:57:2A:DE:CA:1A:9F:F0:57:E0:BA:8E:AE:8C:5D:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GLs5UdXKt7KGp_wV-C6jq6MXV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8a9417-bc28-4a02-a92f-a408bba735ee/1/1-J_uLfpgRYrtxrpsYSaesRuiQ2g.roa
Signing time: Mon 20 Oct 2025 14:34:02 +0000
ROA not before: Mon 20 Oct 2025 14:34:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216054
IP address blocks: 213.177.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8a9417-bc28-4a02-a92f-a408bba735ee/1/1GLs5UdXKt7KGp_wV-C6jq6MXV4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8a9417-bc28-4a02-a92f-a408bba735ee/1/1GLs5UdXKt7KGp_wV-C6jq6MXV4.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GLs5UdXKt7KGp_wV-C6jq6MXV4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:0a:a3:d9:b8:2e:74:ff:e9:43:80:9d:f9:8e:5e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462ece547572adeca1a9ff057e0ba8eae8c5d5e
Validity
Not Before: Oct 20 14:34:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f89fee2dfa60458aedc6ba6c61269eb11ba24368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c1:f3:1d:ac:15:2c:05:e2:2e:10:95:67:ef:
27:a2:71:ba:a1:f0:6c:73:d6:3d:51:0e:4e:3e:1e:
d3:d6:9e:bb:d8:5d:3b:67:7f:ae:bf:db:f4:c8:f4:
ab:27:4b:b2:d1:3e:63:9d:4f:d9:a2:48:d3:aa:bf:
5b:b7:e4:a9:31:18:35:b3:43:fa:9d:2d:cc:d9:aa:
cc:4c:34:18:df:08:c7:e3:f9:1d:ca:e9:86:e3:53:
f3:7a:b9:2e:a7:71:d1:53:84:49:65:c6:6a:58:e8:
67:ac:82:3c:fc:a2:79:48:3b:dd:29:00:c9:b0:53:
f3:12:c7:46:c9:76:1e:a8:18:70:b3:45:e6:43:aa:
4d:61:b8:5c:99:78:97:43:f3:aa:b3:17:a6:b5:cc:
ec:92:f5:25:51:a8:e0:8a:29:c1:8b:f0:62:aa:ae:
50:19:e7:98:4b:e2:38:2e:f7:78:68:c3:de:01:40:
3f:61:c2:99:d0:36:d3:bc:ec:97:4d:b7:8f:29:d3:
e4:8f:e8:64:39:12:02:1c:93:10:f5:f7:58:15:01:
2d:da:37:87:da:00:50:8c:b1:f8:e8:45:c5:ca:fd:
37:52:2e:74:03:58:20:b2:31:5b:36:50:f4:47:5a:
9c:59:a3:cb:f4:9b:96:79:f4:22:26:4e:b7:90:49:
6b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9F:EE:2D:FA:60:45:8A:ED:C6:BA:6C:61:26:9E:B1:1B:A2:43:68
X509v3 Authority Key Identifier:
keyid:D4:62:EC:E5:47:57:2A:DE:CA:1A:9F:F0:57:E0:BA:8E:AE:8C:5D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GLs5UdXKt7KGp_wV-C6jq6MXV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8a9417-bc28-4a02-a92f-a408bba735ee/1/1-J_uLfpgRYrtxrpsYSaesRuiQ2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8a9417-bc28-4a02-a92f-a408bba735ee/1/1GLs5UdXKt7KGp_wV-C6jq6MXV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.177.176.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d7:91:e1:f0:ac:66:8e:e1:49:fd:32:97:6f:eb:91:3c:97:
b5:a8:ae:f3:7a:95:ed:56:1d:91:b0:c7:04:6b:d6:2c:0e:fb:
e2:16:80:3a:5b:6c:5b:f2:88:1e:12:b3:4d:75:44:17:2d:28:
8e:46:ce:f4:15:5e:40:42:4a:7e:5a:9d:c0:f0:a4:04:5b:2d:
88:68:f7:b4:4d:06:9b:9d:95:e2:37:1b:45:38:e3:3e:a7:32:
e0:01:31:02:54:64:a9:d5:b0:d1:14:28:f6:ab:63:b9:10:3f:
a0:82:60:4a:c3:72:d1:82:70:3b:d0:cd:39:04:4b:da:d5:a3:
7c:68:2f:8c:71:cc:15:42:8f:2f:b4:cf:c8:1d:7c:a3:27:7f:
cb:fd:3e:9b:e6:4e:04:17:e5:07:af:b6:e3:59:db:98:8c:9f:
ec:3b:84:41:e5:39:04:17:24:e0:22:65:39:63:ca:55:1a:60:
34:ce:21:78:6b:be:8b:ce:49:00:1c:13:14:a2:f1:ab:94:dc:
d8:15:35:35:aa:a7:43:aa:be:7e:65:6a:9d:9f:f5:e2:00:f7:
a2:6c:d0:75:79:eb:f1:2a:5d:f0:5f:19:ef:57:f4:f8:4e:bf:
93:c3:0e:1d:d3:c5:60:a8:c7:98:3c:1e:e5:17:64:d7:b3:5c:
41:7a:67:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 09:31:15 2025 by rpki-client