Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/PJCenPllR0ymQ1d8KyKJ4tH855M.roa
File: PJCenPllR0ymQ1d8KyKJ4tH855M.roa (raw, json)
Hash identifier: EIu4iXxM6nS3KyUJFwjyRI3jWNzQpHTn528P8qXiYPg=
Subject key identifier: 3C:90:9E:9C:F9:65:47:4C:A6:43:57:7C:2B:22:89:E2:D1:FC:E7:93
Certificate issuer: /CN=adb2f583f889dd4b134da56db45a3e25580b1b1d
Certificate serial: 01991A34FB9F7A73C3704EADD474F198F554
Authority key identifier: AD:B2:F5:83:F8:89:DD:4B:13:4D:A5:6D:B4:5A:3E:25:58:0B:1B:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rbL1g_iJ3UsTTaVttFo-JVgLGx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/PJCenPllR0ymQ1d8KyKJ4tH855M.roa
Signing time: Fri 05 Sep 2025 14:08:23 +0000
ROA not before: Fri 05 Sep 2025 14:08:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12797
IP address blocks: 62.85.192.0/19 maxlen: 19
62.123.0.0/16 maxlen: 16
213.199.0.0/19 maxlen: 19
213.234.128.0/18 maxlen: 18
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/rbL1g_iJ3UsTTaVttFo-JVgLGx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/rbL1g_iJ3UsTTaVttFo-JVgLGx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rbL1g_iJ3UsTTaVttFo-JVgLGx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1a:34:fb:9f:7a:73:c3:70:4e:ad:d4:74:f1:98:f5:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adb2f583f889dd4b134da56db45a3e25580b1b1d
Validity
Not Before: Sep 5 14:08:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3c909e9cf965474ca643577c2b2289e2d1fce793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:93:72:14:fa:c6:45:61:47:ee:5f:3b:28:d0:
39:a9:1a:ff:f4:ea:72:c0:c6:2a:6b:72:66:d6:98:
98:ee:79:12:8f:6d:a3:d6:e2:45:b3:5a:f5:f1:04:
bf:7c:64:e1:bd:54:30:f4:e0:40:00:91:89:41:ec:
36:7f:41:40:c2:ee:e6:b0:b5:81:80:36:6a:ad:cf:
2d:f7:f0:62:1c:0c:df:d7:dc:99:25:9b:e5:6d:0d:
56:d2:20:8b:8c:e6:cd:09:76:4f:84:c7:ad:02:f0:
2c:d5:46:25:87:04:5b:1a:6a:d6:c1:48:ee:b4:89:
8e:ff:ee:a5:73:50:b3:71:55:cc:2b:1e:ec:69:20:
f2:06:71:73:5f:78:d0:85:a6:03:6d:4c:d5:41:60:
4d:36:44:84:62:33:9d:bf:9b:1c:71:84:62:fb:12:
66:09:19:bf:c9:15:f0:a2:65:34:cd:e3:c9:8a:1c:
a8:d2:75:0f:e2:7f:2e:78:77:18:16:43:98:78:1e:
74:d3:85:9c:bb:e1:b7:1a:c0:0a:f6:38:ac:92:6a:
1d:7d:ce:05:6d:82:01:95:8a:16:1f:46:16:12:00:
4c:1a:94:6d:1d:7c:14:c0:a8:e4:26:ae:1b:a5:ac:
ba:f3:67:da:c3:2c:af:91:09:99:0d:f3:6a:61:d7:
fb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:90:9E:9C:F9:65:47:4C:A6:43:57:7C:2B:22:89:E2:D1:FC:E7:93
X509v3 Authority Key Identifier:
keyid:AD:B2:F5:83:F8:89:DD:4B:13:4D:A5:6D:B4:5A:3E:25:58:0B:1B:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rbL1g_iJ3UsTTaVttFo-JVgLGx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/PJCenPllR0ymQ1d8KyKJ4tH855M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/rbL1g_iJ3UsTTaVttFo-JVgLGx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.85.192.0/19
62.123.0.0/16
213.199.0.0/19
213.234.128.0/18
Signature Algorithm: sha256WithRSAEncryption
8f:ad:99:a0:c1:c8:b7:d3:96:18:46:a1:29:00:40:51:3b:5d:
ff:bb:7a:50:ff:01:75:36:21:00:0f:88:c4:c1:b6:af:4c:5f:
98:91:3f:f5:9d:52:d6:29:f8:ab:a9:8a:01:d1:a3:7f:f5:e3:
9a:1f:f7:b0:c6:06:bb:c1:d4:38:40:ed:26:ec:e1:13:16:e7:
b5:73:b7:e7:37:30:42:a4:7f:9b:22:24:7e:58:db:3c:38:ea:
c6:f1:f0:73:6c:67:1d:be:a5:72:77:9e:af:b0:4e:cc:67:60:
17:9d:53:b7:6d:7f:da:5b:3d:42:cc:e5:ed:22:51:04:8a:94:
72:af:33:1f:12:a8:87:e5:d2:b6:2a:c8:0c:32:f3:d6:db:0b:
0d:5c:68:4c:50:95:2a:a6:dc:e3:51:d6:b3:7d:7e:d4:44:ba:
8c:98:c8:c9:fe:42:a1:21:92:a5:21:00:84:02:82:27:8b:e9:
99:94:46:16:72:f6:b9:b9:94:85:cd:77:aa:e0:6d:c7:90:6b:
2b:62:82:2e:51:19:c0:05:69:37:09:71:03:5e:b2:87:b6:cc:
4d:7c:9c:bf:f5:c1:af:49:df:7f:e1:aa:e9:15:1d:19:e1:40:
49:ee:b0:68:a6:9d:97:a6:07:3b:96:80:27:05:26:11:c9:21:
19:bd:0d:9a
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZkaNPufenPDcE6t1HTxmPVUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkYjJmNTgzZjg4OWRkNGIxMzRkYTU2ZGI0NWEzZTI1NTgw
YjFiMWQwHhcNMjUwOTA1MTQwODIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzkwOWU5Y2Y5NjU0NzRjYTY0MzU3N2MyYjIyODllMmQxZmNlNzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JNyFPrGRWFH7l87KNA5qRr/9Opy
wMYqa3Jm1piY7nkSj22j1uJFs1r18QS/fGThvVQw9OBAAJGJQew2f0FAwu7msLWB
gDZqrc8t9/BiHAzf19yZJZvlbQ1W0iCLjObNCXZPhMetAvAs1UYlhwRbGmrWwUju
tImO/+6lc1CzcVXMKx7saSDyBnFzX3jQhaYDbUzVQWBNNkSEYjOdv5sccYRi+xJm
CRm/yRXwomU0zePJihyo0nUP4n8ueHcYFkOYeB5004Wcu+G3GsAK9jiskmodfc4F
bYIBlYoWH0YWEgBMGpRtHXwUwKjkJq4bpay682fawyyvkQmZDfNqYdf7jwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDyQnpz5ZUdMpkNXfCsiieLR/OeTMB8GA1UdIwQY
MBaAFK2y9YP4id1LE02lbbRaPiVYCxsdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmJMMWdfaUozVXNUVGFWdHRGby1KVmdMR3gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8zNTA0NTUtZGQ1NC00ZGVmLThlOTEt
YWRkMTUxNjY2ZTJhLzEvUEpDZW5QbGxSMHltUTFkOEt5S0o0dEg4NTVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi8zNTA0NTUtZGQ1NC00ZGVmLThlOTEtYWRkMTUxNjY2ZTJh
LzEvcmJMMWdfaUozVXNUVGFWdHRGby1KVmdMR3gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAdBAIAATAXAwQFPlXAAwMA
PnsDBAXVxwADBAbV6oAwDQYJKoZIhvcNAQELBQADggEBAI+tmaDByLfTlhhGoSkA
QFE7Xf+7elD/AXU2IQAPiMTBtq9MX5iRP/WdUtYp+KupigHRo3/145of97DGBrvB
1DhA7Sbs4RMW57Vzt+c3MEKkf5siJH5Y2zw46sbx8HNsZx2+pXJ3nq+wTsxnYBed
U7dtf9pbPULM5e0iUQSKlHKvMx8SqIfl0rYqyAwy89bbCw1caExQlSqm3ONR1rN9
ftREuoyYyMn+QqEhkqUhAIQCgieL6ZmURhZy9rm5lIXNd6rgbceQaytigi5RGcAF
aTcJcQNesoe2zE18nL/1wa9J33/hqukVHRnhQEnusGimnZemBzuWgCcFJhHJIRm9
DZo=
-----END CERTIFICATE-----
Generated at Mon Sep 8 06:19:26 2025 by rpki-client