Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/wuqKrfx0UPDoVQxdKV8k97AGu4E.roa
File: wuqKrfx0UPDoVQxdKV8k97AGu4E.roa (raw, json)
Hash identifier: QvAJVSN4EtHNESjcwxnKTv7sFwnj2Nb91/xIZcXw158=
Subject key identifier: C2:EA:8A:AD:FC:74:50:F0:E8:55:0C:5D:29:5F:24:F7:B0:06:BB:81
Certificate issuer: /CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Certificate serial: 019961B9B1AFE5AB1F7702E871C430609C43
Authority key identifier: D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/wuqKrfx0UPDoVQxdKV8k97AGu4E.roa
Signing time: Fri 19 Sep 2025 11:26:23 +0000
ROA not before: Fri 19 Sep 2025 11:26:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51873
IP address blocks: 185.202.80.0/22 maxlen: 22
2a0c:cd00::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:61:b9:b1:af:e5:ab:1f:77:02:e8:71:c4:30:60:9c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe
Validity
Not Before: Sep 19 11:26:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c2ea8aadfc7450f0e8550c5d295f24f7b006bb81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b8:8c:e2:18:8f:fd:d4:96:0c:90:08:aa:52:
41:96:65:69:54:df:d7:18:00:a2:7b:ef:49:49:90:
21:c2:88:95:b8:da:19:27:fb:f1:a0:9b:01:db:05:
50:4a:34:a7:2c:69:8a:a2:1a:8f:20:82:0e:00:10:
3e:65:7b:ad:02:e6:88:3a:30:9a:64:21:e5:e2:fc:
4b:66:8e:12:d5:4d:5d:cd:03:c3:86:26:37:68:cc:
ef:c0:2f:64:c8:be:b0:1e:02:3b:ca:d2:cd:63:78:
ec:d3:fd:ad:b4:53:23:1a:f0:51:2c:dd:f2:37:54:
c8:27:10:a5:e9:f6:ca:ef:75:e4:21:45:72:fe:a4:
52:97:0e:82:19:7a:2d:bf:fe:92:cb:f9:1a:7a:e9:
87:2b:09:90:4b:41:78:14:90:e5:a4:ac:39:84:bc:
f1:f1:ea:2f:43:cc:97:80:2a:68:16:37:b2:af:32:
69:09:58:b7:5f:09:74:c7:9c:24:c7:db:2e:e7:b5:
6b:dd:d5:b6:6e:d5:8c:31:c5:ea:ea:a3:7d:48:6e:
19:53:0b:ce:96:48:2d:23:89:c7:ff:ab:bf:8f:c6:
75:eb:ce:8c:1e:94:f7:8d:ba:64:2b:c8:f4:9a:dc:
09:1a:1f:f9:80:20:47:63:e5:b5:f1:6a:c5:36:e7:
84:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:EA:8A:AD:FC:74:50:F0:E8:55:0C:5D:29:5F:24:F7:B0:06:BB:81
X509v3 Authority Key Identifier:
keyid:D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/wuqKrfx0UPDoVQxdKV8k97AGu4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.80.0/22
IPv6:
2a0c:cd00::/32
Signature Algorithm: sha256WithRSAEncryption
1a:74:e2:93:d4:c8:9d:a1:40:c2:2e:f0:a7:43:88:99:78:47:
9d:b7:8f:fb:27:44:3f:e2:32:b6:c3:6b:43:c7:e1:52:b5:3e:
d5:22:37:38:ec:d6:31:6f:5e:b1:e8:76:c4:ed:cc:b5:14:f2:
91:c6:a4:2d:89:03:72:46:1f:cc:37:59:d8:50:e3:33:ff:0d:
88:85:0e:1d:49:12:5b:5e:63:c1:64:3a:7c:28:be:36:dc:2e:
c8:23:a3:0d:ac:5f:10:84:cc:b3:d1:35:0b:91:f2:38:ac:ee:
fb:0e:e8:58:ab:a7:7e:de:4d:3a:7f:49:b8:b1:1f:89:72:9a:
11:71:30:af:fc:89:4a:4f:90:0f:8c:93:53:5c:af:99:6b:ea:
55:3d:77:d7:f7:de:14:4a:1a:36:86:61:cd:8c:e1:0d:2f:7f:
ea:0d:cd:28:bf:4f:4c:b3:fb:36:b5:34:1e:0e:6f:c2:26:9f:
26:56:f9:23:ed:56:e8:31:23:4a:65:bb:d7:2f:d1:69:a7:7c:
b1:f8:d9:3c:08:43:9f:3b:4d:b3:2d:1a:f1:ef:7f:69:5e:dd:
5c:4d:fb:ba:22:20:fc:a7:2b:3c:ce:4d:ea:ea:e8:e8:28:b3:
57:c3:b8:fd:2a:04:36:24:14:07:e8:17:52:18:88:2d:08:18:
4b:5b:ac:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:13:21 2025 by rpki-client