Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/C8FO1bFiYQmmcfNw2mICUnHD-Xc.roa
File: C8FO1bFiYQmmcfNw2mICUnHD-Xc.roa (raw, json)
Hash identifier: xv/wICHVSWVVIGPcvIuCKd5RbpB2FXj2GPXBaylWFX4=
Subject key identifier: 0B:C1:4E:D5:B1:62:61:09:A6:71:F3:70:DA:62:02:52:71:C3:F9:77
Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Certificate serial: 0199BF14D6FDB09EE0FFAC1BE2C1DB8E1DAD
Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/C8FO1bFiYQmmcfNw2mICUnHD-Xc.roa
Signing time: Tue 07 Oct 2025 14:30:38 +0000
ROA not before: Tue 07 Oct 2025 14:30:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 394474
IP address blocks: 212.6.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 18:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:bf:14:d6:fd:b0:9e:e0:ff:ac:1b:e2:c1:db:8e:1d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Validity
Not Before: Oct 7 14:30:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0bc14ed5b1626109a671f370da62025271c3f977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b5:e0:04:11:9c:ca:9b:e5:04:9d:4f:10:65:
20:e0:07:40:05:ad:f0:be:18:91:11:1d:07:58:02:
0a:65:90:87:0c:8f:ee:bf:74:cf:d9:40:85:28:29:
5b:f8:ef:07:9d:44:4c:9a:15:f9:7e:63:41:eb:fa:
c4:59:04:ef:d8:db:d3:cd:7c:d9:40:d2:3f:38:47:
9b:a6:eb:1e:75:78:a7:59:92:3d:f1:ce:ee:7f:cf:
9e:6e:e8:76:46:ae:07:8b:7a:3e:af:5e:6b:c7:43:
f1:86:a9:a0:08:a3:8f:20:73:58:31:79:6a:3a:e7:
99:66:f0:6f:44:eb:8f:2d:ea:36:5a:61:82:f8:f0:
ae:37:da:2f:ba:ea:20:0b:fe:cd:56:7c:45:07:2c:
ad:7f:ef:c0:37:c9:9a:d0:9d:21:e0:e3:de:a3:05:
02:8a:7e:7b:77:da:80:35:67:f2:63:7e:72:51:cc:
f0:3c:43:e8:86:70:81:24:8f:37:49:da:4f:28:fe:
16:fe:c9:26:e8:08:6f:52:e8:32:71:2d:24:fd:cf:
b1:3d:9f:4e:b2:bd:b5:b0:b1:d9:32:30:55:7d:33:
21:04:db:14:f3:05:3c:86:73:79:a8:2c:f5:2a:e2:
68:95:5c:20:9b:06:44:a5:f7:61:b2:df:a0:3b:41:
5f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C1:4E:D5:B1:62:61:09:A6:71:F3:70:DA:62:02:52:71:C3:F9:77
X509v3 Authority Key Identifier:
keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/C8FO1bFiYQmmcfNw2mICUnHD-Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.51.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d2:d9:60:31:b3:5e:a1:01:35:cd:95:c1:ef:4e:99:1f:1b:
f3:dd:7d:21:64:10:9d:f1:ff:3a:11:c0:ae:7b:75:45:a4:15:
24:b9:5c:ca:ff:40:8c:c5:ad:66:b3:b6:8d:9e:b9:49:c3:49:
d7:42:5f:23:a9:21:82:1a:a5:44:1f:22:7e:52:2c:cd:57:9c:
c1:e7:f9:fe:80:16:0d:73:54:a5:b2:9a:8c:f9:a9:c4:c6:f3:
9e:5e:5f:17:d7:9c:a6:d0:88:ef:cb:45:81:a3:0c:94:f6:05:
52:7c:cf:6f:b0:c5:4e:a4:91:7f:d7:0d:06:62:4b:2a:1f:eb:
f2:8a:4e:bc:85:13:4d:02:bc:ea:83:36:c3:58:1c:71:d6:ab:
e1:e0:53:49:52:88:71:39:d8:80:3f:04:89:1b:57:24:5f:18:
17:0b:7b:7a:d0:1a:22:a1:6d:aa:ad:b2:eb:f2:dc:1b:3c:af:
18:82:c0:e2:e7:f7:b9:9a:1a:da:12:6d:36:89:74:19:70:9a:
b8:d6:d9:30:c5:4a:5a:31:70:b1:a4:9b:45:7c:ce:3e:76:14:
6e:f5:e4:d5:5b:c8:c8:48:0f:f1:51:ee:f7:ae:a9:31:57:19:
91:38:5e:3d:9f:69:ab:38:85:2a:c7:28:cf:79:ec:d0:47:db:
99:df:44:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZm/FNb9sJ7g/6wb4sHbjh2tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlYjQ0MWRhZGJiZWNiNjk2NWQ0ZWExZjA0NmNjNWM4ZTI4
ODE3ZmMwHhcNMjUxMDA3MTQzMDM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmMxNGVkNWIxNjI2MTA5YTY3MWYzNzBkYTYyMDI1MjcxYzNmOTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLXgBBGcypvlBJ1PEGUg4AdABa3w
vhiRER0HWAIKZZCHDI/uv3TP2UCFKClb+O8HnURMmhX5fmNB6/rEWQTv2NvTzXzZ
QNI/OEebpusedXinWZI98c7uf8+ebuh2Rq4Hi3o+r15rx0PxhqmgCKOPIHNYMXlq
OueZZvBvROuPLeo2WmGC+PCuN9ovuuogC/7NVnxFByytf+/AN8ma0J0h4OPeowUC
in57d9qANWfyY35yUczwPEPohnCBJI83SdpPKP4W/skm6AhvUugycS0k/c+xPZ9O
sr21sLHZMjBVfTMhBNsU8wU8hnN5qCz1KuJolVwgmwZEpfdhst+gO0FfjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAvBTtWxYmEJpnHzcNpiAlJxw/l3MB8GA1UdIwQY
MBaAFI60QdrbvstpZdTqHwRsxcjiiBf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmIt
NDZiOTQ5MDkyY2JlLzEvQzhGTzFiRmlZUW1tY2ZOdzJtSUNVbkhELVhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmItNDZiOTQ5MDkyY2Jl
LzEvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1AYzMA0G
CSqGSIb3DQEBCwUAA4IBAQBw0tlgMbNeoQE1zZXB706ZHxvz3X0hZBCd8f86EcCu
e3VFpBUkuVzK/0CMxa1ms7aNnrlJw0nXQl8jqSGCGqVEHyJ+UizNV5zB5/n+gBYN
c1SlspqM+anExvOeXl8X15ym0Ijvy0WBowyU9gVSfM9vsMVOpJF/1w0GYksqH+vy
ik68hRNNArzqgzbDWBxx1qvh4FNJUohxOdiAPwSJG1ckXxgXC3t60BoioW2qrbLr
8twbPK8YgsDi5/e5mhraEm02iXQZcJq41tkwxUpaMXCxpJtFfM4+dhRu9eTVW8jI
SA/xUe73rqkxVxmROF49n2mrOIUqxyjPeezQR9uZ30Qn
-----END CERTIFICATE-----
Generated at Mon Oct 20 03:14:50 2025 by rpki-client