Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/SVIT-fWz2Ki9EHDQlfqzIxpfVLE.roa
File: SVIT-fWz2Ki9EHDQlfqzIxpfVLE.roa (raw, json)
Hash identifier: RseVjDJ2Eg3rRrpcGWYYLelpMZ3JUHmet98PxhD+iYY=
Subject key identifier: 49:52:13:F9:F5:B3:D8:A8:BD:10:70:D0:95:FA:B3:23:1A:5F:54:B1
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 01999AA0C2ECB94D73CD455076D8D55C8A95
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/SVIT-fWz2Ki9EHDQlfqzIxpfVLE.roa
Signing time: Tue 30 Sep 2025 12:37:30 +0000
ROA not before: Tue 30 Sep 2025 12:37:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204692
IP address blocks: 185.243.28.0/24 maxlen: 24
185.243.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:9a:a0:c2:ec:b9:4d:73:cd:45:50:76:d8:d5:5c:8a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Sep 30 12:37:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=495213f9f5b3d8a8bd1070d095fab3231a5f54b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6e:6a:82:34:69:6d:84:f2:e2:b2:3c:c9:22:
95:13:19:19:44:b8:e0:15:1d:ee:cb:3c:04:03:43:
59:5d:40:18:ae:f0:cf:93:ec:46:f6:c6:30:6a:5a:
b5:56:4e:e1:0e:34:db:72:bd:da:6b:4a:b9:48:a7:
27:cb:b6:13:6c:25:3d:c4:b1:50:e1:d7:11:f6:3a:
4b:f3:86:c6:44:c8:ba:97:f3:1c:5e:97:b8:d7:9a:
69:23:ba:8a:a8:d2:9a:0d:c8:c1:d8:1c:79:16:89:
cc:35:a7:89:6d:80:b2:41:05:08:f9:d1:38:01:d4:
36:23:d8:ee:d3:76:e4:64:b1:32:1e:b0:2c:fc:7f:
73:78:8d:d0:15:68:4d:42:86:13:ec:24:98:8a:b7:
65:5d:8e:ae:bd:53:00:f0:64:a7:36:27:48:92:11:
cb:8a:87:0f:eb:02:17:df:29:4e:15:95:6f:e9:bc:
d8:47:80:ba:48:94:e4:ff:f5:d0:b4:c5:22:a8:2a:
d4:be:04:fe:5c:87:ae:a0:a1:ab:16:1c:f2:73:a0:
d7:cb:c8:26:02:7c:3f:f8:24:6a:98:ee:e5:8c:24:
7c:c5:19:60:a5:b7:93:aa:4a:6e:2c:66:4e:e0:40:
02:ff:b7:65:2c:85:ad:e3:f9:cb:09:65:ea:30:00:
1b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:52:13:F9:F5:B3:D8:A8:BD:10:70:D0:95:FA:B3:23:1A:5F:54:B1
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/SVIT-fWz2Ki9EHDQlfqzIxpfVLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.28.0/24
185.243.31.0/24
Signature Algorithm: sha256WithRSAEncryption
26:11:cf:71:9a:54:04:58:b6:0c:46:64:fc:15:ee:b6:e8:87:
71:b7:52:45:1e:12:d0:e6:da:10:b8:d1:65:f1:0d:9b:23:59:
ac:52:8d:02:2a:3c:34:66:0e:52:e6:87:af:1f:aa:63:11:f1:
a8:01:8f:8d:7f:f1:ac:2f:e4:d3:55:26:39:2c:af:17:c9:18:
6a:fe:a7:8f:ab:31:14:a6:9c:8b:be:af:25:50:6f:dc:44:e6:
aa:b6:9e:cf:d6:3b:79:09:d6:68:d3:a2:d5:fc:ae:be:7a:b1:
30:2d:d4:08:9e:af:7e:fc:a1:dc:ba:0a:33:10:f7:18:c9:d6:
63:e5:b9:28:f9:21:e3:dc:8f:9b:7f:6f:fe:9c:68:a2:f2:2f:
b0:69:b6:79:a8:1a:48:04:60:0c:d5:4a:70:66:29:6a:b5:30:
65:b2:ad:49:81:52:74:da:87:bd:a7:16:76:39:60:90:ac:15:
bd:a1:97:ca:30:e1:75:0f:d1:79:df:e8:1d:78:57:f8:a5:7c:
dc:19:ba:c2:3a:1b:31:25:12:49:92:44:65:e9:26:a3:47:33:
32:eb:56:3e:ff:04:41:bb:94:cb:84:80:c9:95:da:1d:44:08:
41:19:7b:6f:8a:cc:05:cd:8e:5e:7d:ba:bc:b8:89:d1:2a:33:
ea:d3:30:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:04:06 2025 by rpki-client