Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/Y6SdS7_7cQktx4cR08ZLLgujlqg.roa
File: Y6SdS7_7cQktx4cR08ZLLgujlqg.roa (raw, json)
Hash identifier: 75KZUCkhH+J82qWJFgv8s/z3YIr1qIHL4XhPmP5V+V8=
Subject key identifier: 63:A4:9D:4B:BF:FB:71:09:2D:C7:87:11:D3:C6:4B:2E:0B:A3:96:A8
Certificate issuer: /CN=58ff89023b87c0bf8479b9ff4725258613e4f0b5
Certificate serial: 0199432C3836F7E2E0AA0C019AF214DE1A24
Authority key identifier: 58:FF:89:02:3B:87:C0:BF:84:79:B9:FF:47:25:25:86:13:E4:F0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WP-JAjuHwL-Eebn_RyUlhhPk8LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/Y6SdS7_7cQktx4cR08ZLLgujlqg.roa
Signing time: Sat 13 Sep 2025 13:03:15 +0000
ROA not before: Sat 13 Sep 2025 13:03:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49581
IP address blocks: 80.75.212.0/24 maxlen: 24
176.97.210.0/24 maxlen: 24
2a12:b200::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/WP-JAjuHwL-Eebn_RyUlhhPk8LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/WP-JAjuHwL-Eebn_RyUlhhPk8LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/WP-JAjuHwL-Eebn_RyUlhhPk8LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:43:2c:38:36:f7:e2:e0:aa:0c:01:9a:f2:14:de:1a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ff89023b87c0bf8479b9ff4725258613e4f0b5
Validity
Not Before: Sep 13 13:03:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63a49d4bbffb71092dc78711d3c64b2e0ba396a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:40:ed:90:a2:ba:0f:95:88:b6:94:83:aa:b3:
e1:c4:c6:76:63:ab:29:c6:5d:26:7d:e6:b8:53:0d:
4f:2e:4e:34:97:04:39:f9:1a:d7:03:48:8b:0c:13:
2f:08:d6:b5:99:f2:c6:67:7e:37:95:46:fc:8f:05:
93:77:ed:fe:77:83:b2:a3:9c:d1:19:54:01:ec:41:
44:fe:20:19:8a:b4:07:41:19:d4:49:bd:32:e1:70:
eb:ce:d0:dc:c3:90:ba:3c:fb:d6:20:fa:cc:da:81:
72:59:37:a3:2e:7a:95:25:9f:c0:67:ac:5d:bd:be:
9e:91:de:a6:70:2e:7e:5f:5e:72:9a:cd:a4:1f:05:
2c:e9:34:ad:df:40:f3:63:33:92:05:8b:07:e3:f5:
85:e5:a8:8f:4f:6c:d6:7c:e3:99:66:d0:bf:00:45:
3f:6d:9f:f3:87:2b:85:cc:32:84:a3:f5:c4:9e:f9:
25:e1:fe:1f:8b:2f:94:b8:2a:5c:cd:fa:10:8a:05:
38:d3:b4:40:3a:c9:80:a6:87:e3:73:8a:ac:e7:07:
98:61:d8:17:3d:2a:9e:91:d5:60:72:80:8d:14:4e:
6e:fa:1e:e4:d3:bb:56:66:03:a5:d1:9b:d4:c4:2b:
01:03:3e:74:1e:00:7e:80:ce:d1:b2:42:2f:e8:1e:
fe:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A4:9D:4B:BF:FB:71:09:2D:C7:87:11:D3:C6:4B:2E:0B:A3:96:A8
X509v3 Authority Key Identifier:
keyid:58:FF:89:02:3B:87:C0:BF:84:79:B9:FF:47:25:25:86:13:E4:F0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WP-JAjuHwL-Eebn_RyUlhhPk8LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/Y6SdS7_7cQktx4cR08ZLLgujlqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/bebb6f-947a-4eac-85b1-36313c532d04/1/WP-JAjuHwL-Eebn_RyUlhhPk8LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.212.0/24
176.97.210.0/24
IPv6:
2a12:b200::/29
Signature Algorithm: sha256WithRSAEncryption
d0:ff:f7:7f:06:8b:0b:29:d6:d3:b2:ac:29:c3:8f:61:d9:4d:
81:9e:0a:1b:f8:72:77:0c:f6:0c:79:85:d8:61:9e:c2:ff:8b:
24:04:ce:ce:17:5d:91:9a:24:73:70:41:f1:bc:4b:25:58:e7:
45:b5:5e:ed:c0:30:72:6c:17:99:49:49:f7:a0:08:49:73:05:
b3:e1:68:7b:90:01:1c:38:4d:6d:54:20:38:73:d7:39:b5:44:
7d:b2:80:1d:2f:1f:0a:6d:d9:6f:e7:fb:f2:b6:7e:fd:7e:d6:
29:d5:21:4e:23:72:c0:a2:a4:da:16:f2:e0:30:ab:45:76:da:
8a:b9:2f:5d:26:ba:a9:61:81:2e:7b:a9:ac:e2:66:fe:37:0d:
f0:3a:83:f4:94:37:c8:3c:e5:78:c9:10:f3:56:9b:00:b0:f2:
4a:aa:2d:08:8f:3d:0d:72:20:2e:8c:5d:5b:18:3f:4a:1a:39:
4c:5b:ea:ca:ee:e8:d7:ab:ad:1a:69:b1:b5:e3:05:08:95:69:
9b:3e:88:f3:ef:75:eb:73:4b:d5:62:bb:c6:e2:24:98:57:d0:
26:59:b1:69:56:fa:18:45:b8:30:47:8d:93:3d:39:64:ed:4a:
69:0b:27:fe:bb:cf:7b:39:c4:de:90:0e:57:f3:bf:f7:c5:04:
00:05:83:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:58:05 2025 by rpki-client