Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ee9519-ff61-4679-9015-80e427596b5d/1/hyttk-VciYASeJhwhte3fbo6duo.roa
File: hyttk-VciYASeJhwhte3fbo6duo.roa (raw, json)
Hash identifier: 7BwJiVdV5v0GFak7++7KK6Hv1MdzUEXFe+dIhNvsD1A=
Subject key identifier: 87:2B:6D:93:E5:5C:89:80:12:78:98:70:86:D7:B7:7D:BA:3A:76:EA
Certificate issuer: /CN=31cb00d2f84401810c3200b52fa388e93651ddf3
Certificate serial: 0199C89DA31060D0222B6B7B7F7C6C4D2DAC
Authority key identifier: 31:CB:00:D2:F8:44:01:81:0C:32:00:B5:2F:A3:88:E9:36:51:DD:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/McsA0vhEAYEMMgC1L6OI6TZR3fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ee9519-ff61-4679-9015-80e427596b5d/1/hyttk-VciYASeJhwhte3fbo6duo.roa
Signing time: Thu 09 Oct 2025 10:56:37 +0000
ROA not before: Thu 09 Oct 2025 10:56:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44651
IP address blocks: 85.159.48.0/21 maxlen: 21
93.92.56.0/21 maxlen: 21
178.21.48.0/21 maxlen: 21
178.21.48.0/23 maxlen: 23
178.21.54.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ee9519-ff61-4679-9015-80e427596b5d/1/McsA0vhEAYEMMgC1L6OI6TZR3fM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/ee9519-ff61-4679-9015-80e427596b5d/1/McsA0vhEAYEMMgC1L6OI6TZR3fM.mft
rsync://rpki.ripe.net/repository/DEFAULT/McsA0vhEAYEMMgC1L6OI6TZR3fM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 13:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c8:9d:a3:10:60:d0:22:2b:6b:7b:7f:7c:6c:4d:2d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31cb00d2f84401810c3200b52fa388e93651ddf3
Validity
Not Before: Oct 9 10:56:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=872b6d93e55c89801278987086d7b77dba3a76ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7f:92:a7:db:18:bd:5d:c9:88:61:9a:da:83:
c4:b7:2d:8e:fe:92:a2:a9:ca:54:b2:dc:e8:c2:0f:
08:8f:3a:d5:66:57:18:b2:d2:42:4a:88:bc:9b:eb:
54:7e:2a:f1:9a:2f:79:a6:f3:db:6d:5d:e5:01:e9:
60:05:50:e2:3b:91:0c:5b:24:a2:bb:28:7e:bc:f5:
ca:12:83:05:ab:a8:bc:96:6e:e0:e0:43:e9:1e:df:
48:92:c9:ef:09:92:22:09:a6:57:aa:13:ea:4b:69:
67:88:a1:e5:c5:a5:2b:06:f0:2a:ed:da:ee:3d:80:
86:0b:ce:ec:93:58:1d:7e:aa:18:10:31:50:0f:10:
e1:8f:09:c4:e9:84:37:90:72:55:53:d5:ec:85:d0:
83:63:96:77:08:18:97:63:f9:a7:a1:76:1c:67:08:
b3:57:a1:70:f4:03:92:26:55:b4:bb:8a:6d:20:8b:
8b:1a:3e:be:a0:e7:a2:c2:46:a4:fc:e5:54:d7:f0:
ee:09:32:9b:70:97:92:c2:5c:4a:7b:7a:37:1b:dc:
91:97:d3:8b:de:53:08:bd:76:20:ea:fa:e8:2c:c8:
4d:56:83:73:6e:e2:a0:e6:a0:b0:f6:e3:4c:ad:67:
9f:80:48:37:e4:eb:f4:bc:06:23:6b:b1:6a:21:cf:
97:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2B:6D:93:E5:5C:89:80:12:78:98:70:86:D7:B7:7D:BA:3A:76:EA
X509v3 Authority Key Identifier:
keyid:31:CB:00:D2:F8:44:01:81:0C:32:00:B5:2F:A3:88:E9:36:51:DD:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/McsA0vhEAYEMMgC1L6OI6TZR3fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ee9519-ff61-4679-9015-80e427596b5d/1/hyttk-VciYASeJhwhte3fbo6duo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ee9519-ff61-4679-9015-80e427596b5d/1/McsA0vhEAYEMMgC1L6OI6TZR3fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.48.0/21
93.92.56.0/21
178.21.48.0/21
Signature Algorithm: sha256WithRSAEncryption
31:ee:97:b9:1c:0d:48:1f:e1:98:4b:bb:9f:4b:9a:ac:b2:da:
26:8c:f8:fb:71:22:f3:bd:8b:df:dc:aa:ea:b0:74:4b:24:66:
94:56:e7:a4:21:3b:21:db:2e:32:a1:ab:28:6f:64:12:29:da:
65:01:28:11:b5:0d:fd:09:28:7e:08:93:0a:df:24:9b:d3:5e:
42:ee:91:64:5d:7e:41:db:90:ce:6d:cd:b8:37:58:f6:b3:93:
5e:cb:17:24:22:7f:16:31:1a:87:24:d6:2d:28:84:ff:ef:1a:
b9:ff:69:39:90:6d:35:fa:10:fb:ca:a9:2c:ac:12:81:b1:3c:
52:0d:7c:1f:24:ce:d8:46:fa:3f:b3:b9:6c:9c:9a:ca:83:4d:
ba:e8:e0:e2:16:9a:02:cd:28:05:df:51:08:f5:e2:7b:17:1a:
ab:1f:ad:bd:d8:ab:fc:ad:2b:81:fc:e3:65:c5:e0:19:87:e5:
84:63:ff:ae:3d:76:d9:a7:2e:72:8e:df:76:e0:5b:99:ab:64:
51:d9:1a:ae:24:ee:33:9e:94:61:58:b6:eb:d2:45:2b:05:15:
81:ae:8a:77:e9:ee:a6:01:d1:ff:e9:c8:5c:da:a1:21:d6:df:
3d:1b:78:fd:f3:4a:bc:51:f9:c5:54:b9:fa:e1:ef:54:22:64:
3c:1a:83:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:46:38 2025 by rpki-client