Route Origin Authorization
$ rpki-client -vvf rpki.owl.net/rrdp/owl/1/326130373a643838303a3a2f32392d3438203d3e203233393539.roa
File: 326130373a643838303a3a2f32392d3438203d3e203233393539.roa (raw, json)
Hash identifier: 2gETIIK+C6qO05qR4MSkhnzTGPy/UlOUUTiAigJqQq4=
Subject key identifier: C1:5E:23:C2:F5:1A:E8:A8:46:66:BA:75:52:75:A2:77:40:BA:6C:A7
Certificate issuer: /CN=b55e2e72d7ffde6bceb73ce26f185c678a23892d
Certificate serial: 7C16A205AE7AA2E380BE61E8A6F54FA7F3BD69A2
Authority key identifier: B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
Subject info access: rsync://rpki.owl.net/rrdp/owl/1/326130373a643838303a3a2f32392d3438203d3e203233393539.roa
Signing time: Thu 14 Aug 2025 17:43:56 +0000
ROA not before: Thu 14 Aug 2025 17:38:56 +0000
ROA not after: Thu 13 Aug 2026 17:43:56 +0000
asID: 23959
IP address blocks: 2a07:d880::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.crl
rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.mft
rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:16:a2:05:ae:7a:a2:e3:80:be:61:e8:a6:f5:4f:a7:f3:bd:69:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55e2e72d7ffde6bceb73ce26f185c678a23892d
Validity
Not Before: Aug 14 17:38:56 2025 GMT
Not After : Aug 13 17:43:56 2026 GMT
Subject: CN=C15E23C2F51AE8A84666BA755275A27740BA6CA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:32:c9:91:2b:26:cd:d8:09:46:ca:bd:0d:e6:
c7:50:50:56:54:3b:6b:76:17:da:f0:9a:9c:e7:da:
d9:35:71:df:99:46:9f:fd:1f:ae:1f:8a:29:31:6d:
04:8d:01:78:c8:a5:cd:9d:0d:f6:92:8a:49:b9:31:
c6:d8:cc:e6:f7:d5:d4:72:ee:42:73:02:69:ab:91:
0d:00:41:dd:38:5f:26:a9:56:f9:ae:07:6f:c9:4f:
c7:28:4f:bc:4b:9b:23:f4:6e:09:3f:5b:9f:8c:b1:
16:ce:d2:61:79:31:94:19:db:2b:a4:ff:89:5a:c4:
be:87:44:4f:5d:ac:a3:28:9d:45:ed:f0:a5:8d:de:
81:16:6e:ed:30:9e:09:af:73:cf:4b:eb:a9:3d:bc:
31:5a:f6:84:36:e7:00:2c:bb:78:9a:52:e8:71:53:
1b:f5:99:51:67:2e:c1:84:b5:6c:4b:dc:06:ab:c1:
e2:95:ee:a1:6b:d9:fd:6a:55:ed:70:5a:45:b2:b0:
9a:04:0d:f1:05:8b:b0:6b:98:2d:bf:17:6a:44:31:
bf:23:13:83:c4:30:d8:04:7e:c2:e4:80:01:63:6a:
34:bc:05:a8:c4:60:fd:45:25:8b:2d:d3:a1:b8:c5:
2c:a1:20:1d:9c:1f:27:e0:8c:32:9c:11:c0:df:f4:
23:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5E:23:C2:F5:1A:E8:A8:46:66:BA:75:52:75:A2:77:40:BA:6C:A7
X509v3 Authority Key Identifier:
keyid:B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/1/326130373a643838303a3a2f32392d3438203d3e203233393539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:d880::/29
Signature Algorithm: sha256WithRSAEncryption
a8:dd:1f:22:d6:78:cc:f5:b1:e3:49:16:c4:02:86:29:9b:a4:
a3:e4:f8:0b:bc:da:f7:1c:e5:36:21:62:d3:b0:7e:e0:0b:38:
fc:16:b4:6d:44:e1:e1:91:ac:cd:42:10:b4:0f:d2:e7:40:7f:
a2:a6:a3:bb:e6:36:84:14:8a:42:fc:0e:71:39:49:1e:8c:99:
27:56:87:7d:d3:a8:cc:fc:9e:c3:8b:b7:37:dd:4f:00:fe:09:
0c:52:43:24:4a:13:b2:d3:f1:92:2a:e5:8c:33:00:3a:d7:ee:
de:dc:df:17:4c:b6:6c:1e:c7:1f:55:3a:2e:c5:b5:a3:3c:ef:
22:aa:78:4a:ae:4b:e0:35:d7:54:cf:4e:a0:66:f8:62:97:b1:
ab:39:9e:0d:14:e4:63:7c:c9:3b:db:3b:e8:47:c6:3c:c4:96:
48:4f:65:c8:f9:a3:29:b8:7a:01:85:25:6a:82:63:48:3d:1b:
23:fc:12:46:b6:3a:7d:a7:d8:18:c4:cc:40:ba:e4:c7:4d:17:
cf:a9:d3:e3:a2:a0:70:d1:27:4a:15:2e:3f:72:e6:75:3c:c3:
84:23:97:1c:5b:af:37:9b:72:cf:87:21:7b:9c:96:0a:9c:52:
01:96:91:ac:16:e0:8b:e3:28:0c:38:ca:70:1e:3d:a4:db:5e:
40:30:47:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:19:40 2025 by rpki-client