Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/63v1H5sGHN6ezA8oYFZS6156LV4.roa
File: 63v1H5sGHN6ezA8oYFZS6156LV4.roa (raw, json)
Hash identifier: pAd2J9+tbmL9ScpoUi00vfABtwWaqqY6j4igs5sO/e0=
Subject key identifier: EB:7B:F5:1F:9B:06:1C:DE:9E:CC:0F:28:60:56:52:EB:5E:7A:2D:5E
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 0198D6A1CB44EFB755E0207C938089BE38F4
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/63v1H5sGHN6ezA8oYFZS6156LV4.roa
Signing time: Sat 23 Aug 2025 11:13:04 +0000
ROA not before: Sat 23 Aug 2025 11:13:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 93.127.156.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:a1:cb:44:ef:b7:55:e0:20:7c:93:80:89:be:38:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Aug 23 11:13:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eb7bf51f9b061cde9ecc0f28605652eb5e7a2d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:48:b8:79:96:5a:93:0b:1f:61:53:96:d7:e4:
cc:f1:77:84:b4:73:6c:c1:cc:31:5e:a4:81:95:c1:
bd:6d:dd:7e:00:8b:67:75:17:0b:0d:39:cb:1a:0b:
f1:19:dd:ed:a8:13:ae:a2:55:95:40:7f:58:d7:dd:
c2:cb:48:06:2b:03:42:fc:93:8b:56:70:25:32:c4:
fd:0d:15:6d:0b:61:35:fd:c0:64:45:0d:9c:f9:6f:
5a:74:a5:36:bf:94:ee:61:21:85:0f:f7:19:7c:5e:
35:37:37:35:d0:46:65:2d:b3:e5:6b:87:db:72:6e:
82:92:29:82:96:71:37:48:68:31:cb:9e:1a:c2:d3:
bd:bf:ac:07:12:b5:68:70:20:9a:22:d4:7c:c7:90:
42:ad:21:6e:f3:f0:d3:65:af:42:54:65:5c:ac:fa:
41:99:15:53:be:69:54:5d:e1:df:74:cc:37:1a:e7:
cd:fa:35:68:a8:16:6f:92:f3:12:37:b1:57:32:6e:
21:3d:c6:fb:59:7a:93:fa:0d:50:41:a5:67:48:b1:
3b:f8:53:68:9d:9d:42:e4:be:d1:85:f6:96:0b:70:
95:92:71:ba:b5:f1:92:b9:1c:75:0f:ae:1b:5e:ef:
20:cb:b4:ee:be:53:80:e0:e3:56:b5:30:69:bf:16:
e3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7B:F5:1F:9B:06:1C:DE:9E:CC:0F:28:60:56:52:EB:5E:7A:2D:5E
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/63v1H5sGHN6ezA8oYFZS6156LV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.156.0/23
Signature Algorithm: sha256WithRSAEncryption
59:a9:a7:c8:d7:70:db:bd:57:d5:26:9b:2d:29:b1:84:74:57:
bd:36:05:97:f4:31:59:ae:27:9e:98:f8:d4:fa:31:93:78:4d:
1c:3e:9c:ae:a4:fa:ba:a0:75:3c:e2:92:d9:e2:4b:b9:36:f8:
36:75:d3:a3:e8:c1:50:cd:71:96:98:8b:19:34:60:ea:62:bb:
e6:5a:5b:7e:51:76:7c:9a:81:26:46:0a:7d:18:43:22:2a:7e:
d6:02:6b:3c:ed:dd:2d:c4:c1:6d:fb:7b:34:9a:07:ef:51:ba:
9f:ea:fc:38:29:f8:a3:54:08:b8:ff:c8:44:31:0d:88:be:60:
b7:18:5b:22:77:03:a6:48:4e:ec:ff:ab:e4:33:7e:63:91:89:
62:35:f9:8b:09:cd:a1:d9:c9:2b:98:9d:6e:71:a5:3d:78:ca:
67:39:18:c9:44:7f:f0:b3:d2:46:1c:e1:73:17:2d:a0:44:48:
7d:17:92:ae:bb:30:92:da:df:5e:38:93:dd:32:f8:0b:fb:22:
f5:dc:be:fa:b5:0b:3d:79:2b:b9:9f:bd:43:dd:6c:3b:c2:c6:
8e:89:f1:66:b1:64:1a:26:3b:a6:ba:ce:f6:ed:05:3a:1a:49:
4c:9b:d5:e1:29:d9:c0:ff:78:a0:09:64:32:61:fb:9c:08:8d:
02:6c:95:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 09:58:13 2025 by rpki-client