Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/1Va9-VCRLq6nfmhgDYPY9z50vR4.roa
File: 1Va9-VCRLq6nfmhgDYPY9z50vR4.roa (raw, json)
Hash identifier: ESx+goLfyktPxcscMRpU8+hvhVOyXeN96tMCeWI/nlM=
Subject key identifier: D5:56:BD:F9:50:91:2E:AE:A7:7E:68:60:0D:83:D8:F7:3E:74:BD:1E
Certificate issuer: /CN=f7858b91a6627f2358eaadcd26ba5c2c5c46ea03
Certificate serial: 0199727CC521C2CEE1E743FA2D5F368EB801
Authority key identifier: F7:85:8B:91:A6:62:7F:23:58:EA:AD:CD:26:BA:5C:2C:5C:46:EA:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/94WLkaZifyNY6q3NJrpcLFxG6gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/1Va9-VCRLq6nfmhgDYPY9z50vR4.roa
Signing time: Mon 22 Sep 2025 17:33:23 +0000
ROA not before: Mon 22 Sep 2025 17:33:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42183
IP address blocks: 185.82.96.0/22 maxlen: 24
185.82.96.0/24 maxlen: 24
185.82.97.0/24 maxlen: 24
185.82.98.0/24 maxlen: 24
185.82.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/94WLkaZifyNY6q3NJrpcLFxG6gM.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/94WLkaZifyNY6q3NJrpcLFxG6gM.mft
rsync://rpki.ripe.net/repository/DEFAULT/94WLkaZifyNY6q3NJrpcLFxG6gM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:72:7c:c5:21:c2:ce:e1:e7:43:fa:2d:5f:36:8e:b8:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7858b91a6627f2358eaadcd26ba5c2c5c46ea03
Validity
Not Before: Sep 22 17:33:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d556bdf950912eaea77e68600d83d8f73e74bd1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fb:da:79:98:59:93:c8:33:77:52:54:33:c6:
14:e7:4b:8a:a3:18:66:15:38:24:e4:21:98:80:4b:
9d:d8:99:f5:3f:27:64:35:f3:c5:26:b6:de:f1:ca:
4e:11:50:7c:0c:b9:2f:55:7f:4e:77:e6:01:79:27:
30:12:a2:cb:6c:6a:9e:7b:0c:a9:9c:b2:77:d3:b0:
a3:f1:53:85:6f:7c:45:77:b9:6c:dd:66:af:9d:b2:
bc:d8:b9:11:54:60:6f:34:cb:f8:7d:e2:a9:74:ce:
92:ae:5c:be:fc:7d:b5:ab:12:5f:85:94:cc:d4:e7:
78:bb:10:cb:5d:46:59:8e:64:56:54:fe:63:aa:7e:
50:8d:b6:13:43:ed:09:20:87:ff:1c:ec:95:60:8b:
4d:34:b4:46:85:78:4b:d0:05:be:7a:fe:ef:51:e2:
71:88:91:e6:05:a6:7f:b2:97:33:bc:d8:b1:d6:8d:
b2:1d:c4:2f:bd:8d:fb:b6:10:1f:2e:9e:71:7a:7b:
01:e6:12:e3:18:24:86:e5:c8:ba:4a:4e:64:b8:72:
8f:dd:ae:8b:dd:05:00:62:0c:14:4e:6a:07:de:ef:
d5:c5:f0:12:44:77:42:35:8d:4a:42:99:b2:1f:53:
61:d8:3d:85:27:f7:f5:97:e7:42:fc:02:19:8b:9a:
7a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:56:BD:F9:50:91:2E:AE:A7:7E:68:60:0D:83:D8:F7:3E:74:BD:1E
X509v3 Authority Key Identifier:
keyid:F7:85:8B:91:A6:62:7F:23:58:EA:AD:CD:26:BA:5C:2C:5C:46:EA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/94WLkaZifyNY6q3NJrpcLFxG6gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/1Va9-VCRLq6nfmhgDYPY9z50vR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/f028e8-f041-4880-8a9d-f27aa9c6eb6b/1/94WLkaZifyNY6q3NJrpcLFxG6gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.96.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:69:60:da:75:c8:bd:57:62:d4:c0:7a:cb:a0:3a:d4:9f:39:
a0:8e:d7:3a:52:e9:cc:86:97:e1:ad:6a:25:3f:2d:bf:df:34:
74:09:f5:fc:cf:a8:c4:04:33:37:f1:ff:aa:76:cc:c6:53:00:
71:90:d4:70:47:a2:e8:74:f7:0b:57:ae:8e:b0:fe:ca:a7:3a:
77:ab:07:06:4d:12:ff:a7:e6:7b:90:b4:bb:56:ae:36:c3:0b:
cf:d1:14:38:e2:1f:68:77:ba:14:8f:7f:b8:fb:27:a4:ed:97:
20:9f:72:56:e1:91:37:19:bc:89:6d:c2:d2:5d:5c:8c:49:13:
e2:aa:ec:7b:42:57:13:88:b9:af:96:90:e8:b8:d3:90:4b:a4:
20:17:98:09:cb:30:a7:87:7a:e2:30:ef:07:bd:a2:53:80:bd:
ab:04:e4:78:ac:c7:e8:64:c4:8f:b0:6c:8d:50:5e:c4:07:c6:
5b:20:2c:10:9c:5d:c4:12:83:49:ea:3e:a4:4d:5f:12:88:16:
1b:4b:62:5d:1e:b7:9a:70:5b:b0:e9:89:e0:9d:10:c2:cd:8f:
68:63:01:d3:94:55:5c:96:91:07:09:87:08:eb:ab:03:88:92:
ef:82:09:23:37:36:06:5a:8c:17:e0:5c:95:2a:47:c4:a5:bd:
c6:7f:6e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:31:01 2025 by rpki-client