Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/404LGGGhnqHwJOIO6bxRNA4wn4M.roa
File: 404LGGGhnqHwJOIO6bxRNA4wn4M.roa (raw, json)
Hash identifier: OJ26W6aQWfhP6OvUOchsMqUSCk3UPL0lDACAS9rIZYc=
Subject key identifier: E3:4E:0B:18:61:A1:9E:A1:F0:24:E2:0E:E9:BC:51:34:0E:30:9F:83
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0199B4F0C018AB8B54B9090EF7A58C96F93E
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/404LGGGhnqHwJOIO6bxRNA4wn4M.roa
Signing time: Sun 05 Oct 2025 15:15:00 +0000
ROA not before: Sun 05 Oct 2025 15:15:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199680
IP address blocks: 2a0c:9a40:8880::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:b4:f0:c0:18:ab:8b:54:b9:09:0e:f7:a5:8c:96:f9:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Oct 5 15:15:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e34e0b1861a19ea1f024e20ee9bc51340e309f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:eb:d2:94:86:72:64:bf:67:0d:df:c7:63:df:
e9:39:94:aa:5b:04:17:a3:4f:34:16:98:1b:53:eb:
39:43:87:4b:30:ac:60:90:8b:d1:f2:a2:09:62:0c:
2a:1e:07:47:44:4f:f0:6f:b1:e9:64:a9:0a:d8:49:
dc:f7:18:c0:72:75:ff:ca:d5:e3:b6:38:fc:5f:e5:
ff:5f:b8:d6:f8:75:c7:85:7f:54:05:9f:93:08:bc:
f3:90:da:fd:a2:d1:9a:fa:33:70:93:a5:47:38:8a:
3f:0c:48:7f:0f:84:71:28:9c:32:f0:d2:c4:0a:bd:
a1:a7:23:a3:94:71:c9:85:09:46:cd:fa:6e:b9:c1:
7d:57:51:55:c7:f1:7c:67:06:71:5b:4b:a0:90:4f:
db:9d:14:51:3c:84:a7:11:e8:71:4a:11:e6:b9:83:
42:ab:c7:81:64:3a:3a:b4:01:01:8f:05:ae:d8:59:
b8:3e:bd:af:62:92:57:ba:6b:ab:88:aa:0d:dc:e5:
c8:3c:fc:b8:9c:e5:ac:cc:f4:0b:91:40:c1:04:b1:
df:d6:d8:1f:40:e4:3c:80:96:20:84:fc:52:a5:61:
ac:ea:8b:ed:e2:60:31:8f:d8:17:63:85:9d:3d:71:
f9:d4:e2:6d:98:47:10:4b:44:fc:b2:4b:76:d3:b3:
27:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4E:0B:18:61:A1:9E:A1:F0:24:E2:0E:E9:BC:51:34:0E:30:9F:83
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/404LGGGhnqHwJOIO6bxRNA4wn4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:8880::/44
Signature Algorithm: sha256WithRSAEncryption
c6:e7:21:fd:55:c2:3d:7a:53:f0:4b:ac:1c:ea:18:0a:f7:8c:
2f:4f:f2:10:9c:6d:37:20:1c:89:88:bf:4d:3a:87:c6:24:7a:
b8:c0:94:5b:d8:37:cb:eb:29:f1:f6:54:1d:c6:fc:b3:60:ab:
04:a7:8c:34:72:df:3d:20:48:90:29:f1:f8:20:b3:59:5d:80:
75:a5:70:1c:d2:d4:46:94:84:ea:b6:44:45:2a:32:c4:cb:7e:
a3:15:a3:57:7a:f9:c8:64:98:49:a7:e7:c4:39:d3:83:db:18:
b7:3a:70:45:ff:2f:68:02:d1:69:08:17:df:03:83:21:58:32:
7f:56:b8:dc:40:65:38:9c:c6:bf:bf:c6:ab:6a:7f:dd:80:d1:
cf:7f:8c:5d:27:de:77:e8:29:3b:ed:04:d9:28:65:d0:fe:d1:
52:75:c2:c5:d1:1e:89:1c:f8:33:a4:d5:85:23:87:47:44:51:
84:f6:aa:f2:ea:61:1f:2c:4b:7f:c8:56:1f:c8:be:e3:0d:62:
37:ce:f3:00:e0:64:73:c4:f4:10:8f:89:f6:be:e2:e1:90:03:
19:bc:51:e3:8a:c8:0a:81:6e:e7:a0:84:b7:df:64:c4:6d:ba:
6b:07:d3:6a:e9:35:f6:b0:bb:49:03:86:61:6c:28:fb:2a:1d:
17:97:0f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:23:47 2025 by rpki-client