Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/1INKaukSAr4Yk0eSCkNsHZwTCoY.roa
File: 1INKaukSAr4Yk0eSCkNsHZwTCoY.roa (raw, json)
Hash identifier: HaQJoYGXqLHXbSUL3kwA0P75saub9wIoKWH4Air5wHs=
Subject key identifier: D4:83:4A:6A:E9:12:02:BE:18:93:47:92:0A:43:6C:1D:9C:13:0A:86
Certificate issuer: /CN=375a064f301026bc3cf87666d6a820128212a811
Certificate serial: 0196B0D8F42E2270CC06B8CA5EA45B3A78A9
Authority key identifier: 37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/1INKaukSAr4Yk0eSCkNsHZwTCoY.roa
Signing time: Thu 08 May 2025 17:02:10 +0000
ROA not before: Thu 08 May 2025 17:02:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63293
IP address blocks: 2a03:2887:ff00::/48 maxlen: 48
2a03:2887:ff02::/48 maxlen: 48
2a03:2887:ff03::/48 maxlen: 48
2a03:2887:ff04::/48 maxlen: 48
2a03:2887:ff05::/48 maxlen: 48
2a03:2887:ff06::/48 maxlen: 48
2a03:2887:ff07::/48 maxlen: 48
2a03:2887:ff08::/48 maxlen: 48
2a03:2887:ff09::/48 maxlen: 48
2a03:2887:ff0a::/48 maxlen: 48
2a03:2887:ff18::/48 maxlen: 48
2a03:2887:ff19::/48 maxlen: 48
2a03:2887:ff1b::/48 maxlen: 48
2a03:2887:ff1c::/48 maxlen: 48
2a03:2887:ff1d::/48 maxlen: 48
2a03:2887:ff1e::/48 maxlen: 48
2a03:2887:ff1f::/48 maxlen: 48
2a03:2887:ff20::/48 maxlen: 48
2a03:2887:ff21::/48 maxlen: 48
2a03:2887:ff23::/48 maxlen: 48
2a03:2887:ff24::/48 maxlen: 48
2a03:2887:ff25::/48 maxlen: 48
2a03:2887:ff27::/48 maxlen: 48
2a03:2887:ff28::/48 maxlen: 48
2a03:2887:ff29::/48 maxlen: 48
2a03:2887:ff2a::/48 maxlen: 48
2a03:2887:ff2b::/48 maxlen: 48
2a03:2887:ff2e::/48 maxlen: 48
2a03:2887:ff2f::/48 maxlen: 48
2a03:2887:ff30::/48 maxlen: 48
2a03:2887:ff33::/48 maxlen: 48
2a03:2887:ff35::/48 maxlen: 48
2a03:2887:ff36::/48 maxlen: 48
2a03:2887:ff37::/48 maxlen: 48
2a03:2887:ff38::/48 maxlen: 48
2a03:2887:ff39::/48 maxlen: 48
2a03:2887:ff3a::/48 maxlen: 48
2a03:2887:ff3b::/48 maxlen: 48
2a03:2887:ff3f::/48 maxlen: 48
2a03:2887:ff40::/48 maxlen: 48
2a03:2887:ff41::/48 maxlen: 48
2a03:2887:ff42::/48 maxlen: 48
2a03:2887:ff43::/48 maxlen: 48
2a03:2887:ff44::/48 maxlen: 48
2a03:2887:ff45::/48 maxlen: 48
2a03:2887:ff48::/48 maxlen: 48
2a03:2887:ff49::/48 maxlen: 48
2a03:2887:ff4a::/48 maxlen: 48
2a03:2887:ff4b::/48 maxlen: 48
2a03:2887:ff4d::/48 maxlen: 48
2a03:2887:ff4e::/48 maxlen: 48
2a03:2887:ff4f::/48 maxlen: 48
2a03:2887:ff51::/48 maxlen: 48
2a03:2887:ff52::/48 maxlen: 48
2a03:2887:ff53::/48 maxlen: 48
2a03:2887:ff54::/48 maxlen: 48
2a03:2887:ff55::/48 maxlen: 48
2a03:2887:ff56::/48 maxlen: 48
2a03:2887:ff57::/48 maxlen: 48
2a03:2887:ff58::/48 maxlen: 48
2a03:2887:ff59::/48 maxlen: 48
2a03:2887:ff60::/48 maxlen: 48
2a03:2887:ff61::/48 maxlen: 48
2a03:2887:ff62::/48 maxlen: 48
2a03:2887:ff63::/48 maxlen: 48
2a03:2887:ff64::/48 maxlen: 48
2a03:2887:ff65::/48 maxlen: 48
2a03:2887:ff66::/48 maxlen: 48
2a03:2887:ff67::/48 maxlen: 48
2a03:2887:ff68::/48 maxlen: 48
2a03:2887:ff69::/48 maxlen: 48
2a03:2887:ff70::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:d8:f4:2e:22:70:cc:06:b8:ca:5e:a4:5b:3a:78:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=375a064f301026bc3cf87666d6a820128212a811
Validity
Not Before: May 8 17:02:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d4834a6ae91202be189347920a436c1d9c130a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a8:63:fd:bd:ce:a5:3b:b7:ba:17:38:f3:f0:
1a:89:09:7b:9a:b9:e5:18:af:cb:57:7a:73:44:bb:
f0:1b:c5:f3:be:cc:98:82:a9:8e:ee:9f:9b:45:d6:
74:10:be:82:c9:19:0d:ab:da:25:b2:f5:7a:1b:d1:
91:15:bc:8c:22:4c:d7:f0:43:a2:87:31:68:9d:61:
43:9d:d8:c5:3a:3a:d1:0b:f1:8b:39:2e:51:88:46:
de:70:e9:09:6b:c9:8c:0d:af:c8:4b:a7:d7:bd:bb:
61:02:98:05:8c:ae:aa:13:f3:f7:59:54:8b:61:38:
6a:c9:cd:14:ff:ee:22:e9:68:8a:ed:ac:47:6a:99:
52:e9:e4:97:e9:3a:c5:8f:8e:16:29:ba:12:0c:7f:
ed:53:ca:19:e3:c3:96:b9:4c:1c:9d:f4:1b:bb:34:
ae:5f:2c:42:b4:3a:45:1a:ba:61:1f:d7:80:9b:4f:
c0:38:4b:1f:84:a2:0d:67:ca:98:7d:16:36:54:59:
c1:16:7f:c5:16:59:73:19:0e:4b:1a:a1:e7:8d:1a:
fc:f2:e9:f4:3b:e2:12:59:72:2a:8a:fa:d5:bc:16:
dd:f6:a3:e7:b3:13:5f:d1:b7:09:cc:cc:af:92:f5:
b4:3f:25:df:ce:4d:a4:bf:bc:c8:77:77:59:ed:71:
fe:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:83:4A:6A:E9:12:02:BE:18:93:47:92:0A:43:6C:1D:9C:13:0A:86
X509v3 Authority Key Identifier:
keyid:37:5A:06:4F:30:10:26:BC:3C:F8:76:66:D6:A8:20:12:82:12:A8:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1oGTzAQJrw8-HZm1qggEoISqBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/1INKaukSAr4Yk0eSCkNsHZwTCoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/dc5881-3632-45af-bf59-f44a57ced73d/1/N1oGTzAQJrw8-HZm1qggEoISqBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2887:ff00::/48
2a03:2887:ff02::-2a03:2887:ff0a:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff18::/47
2a03:2887:ff1b::-2a03:2887:ff21:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff23::-2a03:2887:ff25:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff27::-2a03:2887:ff2b:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff2e::-2a03:2887:ff30:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff33::/48
2a03:2887:ff35::-2a03:2887:ff3b:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff3f::-2a03:2887:ff45:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff48::/46
2a03:2887:ff4d::-2a03:2887:ff4f:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff51::-2a03:2887:ff59:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff60::-2a03:2887:ff69:ffff:ffff:ffff:ffff:ffff
2a03:2887:ff70::/48
Signature Algorithm: sha256WithRSAEncryption
40:55:83:da:1a:47:d0:8b:e6:65:8c:3d:bd:cb:96:06:72:10:
83:5f:01:7c:c6:61:36:1e:55:06:ba:4b:0e:a9:91:54:67:24:
8d:b2:e6:b1:46:d6:68:ab:de:43:e8:f2:a4:73:29:4f:53:ba:
54:aa:d9:ef:be:cc:fe:df:31:0e:4b:64:4a:38:cc:27:50:4e:
df:f9:d3:f8:9a:6a:f3:be:ba:47:fd:25:41:20:30:17:18:73:
7b:76:ea:d2:32:1f:f3:a1:89:90:07:59:01:3c:b7:55:13:f2:
fb:69:c3:e3:3e:a7:48:bf:e6:03:3c:37:fa:e3:a4:2b:3e:ba:
d4:e7:8b:83:7d:c3:a7:be:74:36:6e:43:ac:da:2d:0e:d2:36:
10:ae:9d:12:73:d8:9a:fd:38:6a:da:aa:5b:c6:1c:85:0f:9c:
96:54:4d:b9:5c:ed:d4:3b:63:73:58:ba:0b:69:cf:14:20:e0:
d0:d5:d9:fb:15:55:87:6d:a2:c9:4c:dd:3a:29:8d:36:f1:9e:
3f:d3:ee:bb:18:a8:4f:31:e3:cc:68:25:51:31:ca:3a:ec:d2:
c1:9d:b3:b5:fd:12:a9:79:77:10:18:6a:1b:c3:c0:90:ac:33:
6b:47:ab:a1:42:7f:d1:ca:00:dc:b4:55:87:35:b4:4d:ce:c2:
4b:f8:00:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:12:53 2025 by rpki-client