Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/gILMbtpqEFA62JoaeYu1K5LSJW4.roa
File: gILMbtpqEFA62JoaeYu1K5LSJW4.roa (raw, json)
Hash identifier: yqHQtUF3utDdJ9J+Q83C8R4pXPlN44ovUCcpIL/CHjk=
Subject key identifier: 80:82:CC:6E:DA:6A:10:50:3A:D8:9A:1A:79:8B:B5:2B:92:D2:25:6E
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01977DB8E2FAD3B7F954A1CBFA5414F907CF
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/gILMbtpqEFA62JoaeYu1K5LSJW4.roa
Signing time: Tue 17 Jun 2025 11:49:18 +0000
ROA not before: Tue 17 Jun 2025 11:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 133944
IP address blocks: 160.19.92.0/23 maxlen: 23
2a10:b46::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 02:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:b8:e2:fa:d3:b7:f9:54:a1:cb:fa:54:14:f9:07:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jun 17 11:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8082cc6eda6a10503ad89a1a798bb52b92d2256e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cb:0f:20:f6:f4:31:40:bd:9d:b0:5c:9f:5d:
93:fe:ad:69:1f:d7:90:8a:a9:97:d2:e3:2b:19:e5:
df:9c:9e:ff:71:ce:82:66:f9:bb:0a:2a:c2:25:0c:
8c:6a:e7:6b:6a:5c:3c:16:6c:81:92:91:22:28:54:
c5:a5:3b:04:72:98:f3:79:59:d2:b6:24:bc:d9:41:
97:84:df:d4:f3:bb:19:48:74:b4:24:f7:15:03:0b:
f7:c2:2b:6a:6c:c7:0c:bb:04:0c:d8:49:e6:34:43:
01:e4:93:55:11:62:4a:50:28:ca:ed:64:bb:c1:70:
7c:35:ca:3d:f4:79:93:cc:4d:e6:3e:dc:c4:2b:78:
77:11:0e:46:8f:aa:65:82:91:c6:e4:2e:8e:00:32:
0d:11:65:20:02:58:97:62:ac:45:b0:fc:fa:52:cb:
10:83:f2:7a:f3:41:ff:e9:e5:08:36:b6:ab:d2:db:
03:a4:07:56:1f:6c:d4:05:dc:c7:51:0f:de:32:0b:
80:86:68:63:c6:84:27:0c:24:f8:6f:d8:07:1f:30:
09:2d:11:8e:ce:01:6a:60:82:2d:6a:e1:02:05:05:
b7:70:7d:49:2e:dd:d6:5e:92:0c:94:cf:f3:bf:29:
31:04:3b:4f:e9:e0:87:8b:df:74:f7:32:e7:57:d0:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:82:CC:6E:DA:6A:10:50:3A:D8:9A:1A:79:8B:B5:2B:92:D2:25:6E
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/gILMbtpqEFA62JoaeYu1K5LSJW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.19.92.0/23
IPv6:
2a10:b46::/32
Signature Algorithm: sha256WithRSAEncryption
ab:00:21:89:00:50:f8:cc:75:f3:14:b4:fd:4d:ce:46:45:d6:
dc:de:13:b8:bf:bf:ed:6d:d9:0a:e8:1b:57:fc:27:2d:8d:0d:
d3:7d:27:45:ac:37:ff:85:9f:f7:ff:90:11:45:ce:0c:2d:c2:
49:e2:ef:b1:73:5d:1a:c3:84:ed:33:e3:4e:68:1d:39:7c:c3:
98:7e:5f:06:d7:6b:35:a2:15:4e:ff:fc:22:f2:b4:46:b0:e7:
5d:5c:68:34:99:b2:17:9c:4a:53:2d:1f:22:cf:ad:72:12:8b:
f6:10:77:9c:fc:df:89:a4:a3:43:52:97:6a:9b:f8:73:bb:c4:
36:0b:07:dc:27:10:9a:72:3c:80:f6:15:21:7f:c3:02:08:5a:
ce:7b:75:85:c7:02:69:b1:f4:fb:ee:4c:f4:8e:5a:b0:e7:12:
6d:a1:35:a3:c2:e9:bb:08:e1:0b:5a:c3:db:43:55:ac:ea:59:
0a:a0:92:7e:e5:77:d0:74:75:8d:90:ab:50:5e:41:35:c6:2e:
ce:ef:6a:83:66:78:01:8a:4c:87:fb:81:84:5c:51:5d:67:a6:
9a:25:c5:2b:af:b3:86:f5:75:2b:1f:b2:80:29:09:f2:90:86:
db:85:2a:7b:c6:12:e4:66:14:0b:f0:e1:d3:4d:b8:f8:e3:2b:
0e:24:a6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:55:30 2025 by rpki-client