
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/K8vW4W9ScrOYSwTe5lsVnguTjRc.roa
File: K8vW4W9ScrOYSwTe5lsVnguTjRc.roa (raw, json)
Hash identifier: BZMs4w/5DzdjLsPS9HoYWf8RngkhkKIw09GpsfQJD3k=
Subject key identifier: 2B:CB:D6:E1:6F:52:72:B3:98:4B:04:DE:E6:5B:15:9E:0B:93:8D:17
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0199A32B88D7056B468E3476290E62B421B3
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/K8vW4W9ScrOYSwTe5lsVnguTjRc.roa
Signing time: Thu 02 Oct 2025 04:26:03 +0000
ROA not before: Thu 02 Oct 2025 04:26:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207695
IP address blocks: 77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:a3:2b:88:d7:05:6b:46:8e:34:76:29:0e:62:b4:21:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 2 04:26:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2bcbd6e16f5272b3984b04dee65b159e0b938d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0f:3f:cb:f1:cc:bf:98:3c:f9:73:54:23:58:
1c:a4:ba:93:e2:e6:6d:ab:f2:e2:92:d3:b2:49:2f:
14:08:01:f3:d2:11:3e:b8:8c:9b:2c:e6:df:02:25:
02:ef:ce:ef:2f:6a:3e:57:5e:8e:65:14:1c:e3:fa:
9b:0a:c7:98:e9:4c:e8:d4:48:bd:2d:ff:34:6e:9d:
a5:27:3b:a0:09:29:8d:21:c1:d6:59:35:e1:e7:8e:
f3:65:be:7a:2b:a3:aa:ab:70:d6:0f:8a:ef:cb:b0:
3f:ee:39:9d:7c:f3:d5:1d:14:35:ae:22:36:51:a0:
e3:53:d9:ac:69:5b:bc:5f:81:35:08:c2:75:5e:b7:
f6:6e:5e:a3:57:4d:c6:c4:29:34:3d:66:1e:b6:a0:
a5:fc:c0:f4:b2:0c:95:bc:dd:c2:27:e9:97:ea:41:
c5:c9:a0:e1:cd:b1:ef:91:99:e0:1e:ad:df:30:31:
13:4a:87:4e:0e:9e:74:9a:c7:fe:33:0f:bb:f3:e2:
44:a8:e3:ff:3f:a2:5c:9e:e3:7e:72:76:ca:00:7d:
a0:8e:20:f5:fd:b2:de:41:92:1f:fd:97:d9:66:38:
ba:1b:3f:8e:35:17:9f:aa:9a:72:de:89:f6:6f:93:
07:2a:9c:b6:d1:b0:c7:5f:26:c5:30:95:d2:55:7c:
ab:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:CB:D6:E1:6F:52:72:B3:98:4B:04:DE:E6:5B:15:9E:0B:93:8D:17
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/K8vW4W9ScrOYSwTe5lsVnguTjRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.41.0/24
77.90.52.0/24
Signature Algorithm: sha256WithRSAEncryption
09:6f:48:78:a4:14:d3:22:30:b0:56:7c:de:2a:0c:3f:af:af:
f8:2d:53:53:6b:d8:56:43:6b:9d:45:a2:c5:23:6a:25:15:71:
a7:28:f6:4c:42:82:c7:b7:ae:ed:50:3b:03:cf:84:5f:d2:4e:
38:21:61:51:72:cc:0f:3b:60:13:d1:44:d5:45:0f:60:b4:af:
30:76:ab:e9:a5:f8:08:19:f3:36:71:ba:bc:ce:c4:8c:f3:e5:
b8:d8:27:07:cf:3e:7c:27:c1:e6:3e:5a:89:e7:b6:d2:1c:fa:
0c:6b:cf:a4:a0:c4:d8:d5:b0:d4:45:80:76:f0:bd:d2:d3:91:
8a:40:5d:16:4d:04:6c:0b:3a:ef:6a:6b:26:ef:d3:c0:bb:72:
9e:ac:2a:17:c0:38:9a:c2:92:bc:f1:05:ee:08:2d:b4:d1:7b:
40:c7:03:b4:f7:09:be:c1:17:b6:ad:01:c9:bc:f6:5e:9c:e2:
b6:ac:e1:b9:9b:bf:57:44:6c:ae:3c:21:07:67:c3:6f:0e:ba:
5c:23:97:1b:44:2d:8b:34:09:e3:91:e8:5f:29:9e:2c:bb:1b:
a2:47:d0:1d:ae:78:fa:70:98:b5:27:28:7f:5d:34:39:0f:e5:
df:3a:8c:43:90:bb:9a:91:e8:ee:0e:34:8a:b9:c0:98:b9:4b:
f8:db:d1:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 13:28:09 2025 by rpki-client