Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ejf79n8FquMeyf-m5e8abRfu6AY.roa
File: ejf79n8FquMeyf-m5e8abRfu6AY.roa (raw, json)
Hash identifier: Kmyo+6iYj8EgpLBnpQvq3dyVQ8kEBBvpk/7KKhJoE0I=
Subject key identifier: 7A:37:FB:F6:7F:05:AA:E3:1E:C9:FF:A6:E5:EF:1A:6D:17:EE:E8:06
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 0199E80C868171258F2998DA473F5C37EC01
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ejf79n8FquMeyf-m5e8abRfu6AY.roa
Signing time: Wed 15 Oct 2025 13:25:58 +0000
ROA not before: Wed 15 Oct 2025 13:25:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197450
IP address blocks: 195.40.186.0/23 maxlen: 23
212.135.12.0/23 maxlen: 23
212.135.180.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:e8:0c:86:81:71:25:8f:29:98:da:47:3f:5c:37:ec:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Oct 15 13:25:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a37fbf67f05aae31ec9ffa6e5ef1a6d17eee806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:b2:e8:d8:47:1c:33:30:80:54:8e:14:0a:
6c:89:00:18:31:fc:71:21:8d:41:74:f3:2b:8f:55:
20:94:f4:04:32:41:5d:93:68:53:5a:e9:18:6e:22:
2d:d1:16:33:e6:53:04:d3:75:db:5d:3b:7e:b1:db:
fc:3b:2f:5d:4a:17:86:d5:f0:70:ea:fe:96:87:f1:
8f:8a:ba:7a:43:98:70:4c:7e:99:bb:9e:3a:4e:75:
c2:55:17:17:8c:83:7e:fd:76:82:02:3e:a4:28:9f:
c9:1c:3d:d8:f9:ac:49:4a:f7:f5:dd:f5:54:9b:72:
e2:55:ee:07:40:07:1b:da:8f:eb:ae:64:27:b4:a7:
d6:2b:5a:bf:cb:67:47:a5:ec:27:41:1c:e0:a3:ad:
80:60:9a:96:c9:50:73:cc:9e:87:82:11:eb:a6:d9:
18:ef:ff:07:93:0f:e5:44:1b:90:9c:c9:23:12:78:
44:ab:ac:95:65:97:b9:6a:09:2d:ce:75:e8:c5:1a:
e6:ba:49:3e:61:de:29:58:10:b4:c8:50:08:0a:34:
f5:c2:7b:49:31:56:65:93:67:10:b7:73:ce:0e:fc:
42:1b:62:a0:69:91:4d:66:8e:38:93:fe:ab:c7:78:
cd:8a:20:39:1a:7a:f4:1c:e7:9c:a2:0f:17:47:ed:
8c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:37:FB:F6:7F:05:AA:E3:1E:C9:FF:A6:E5:EF:1A:6D:17:EE:E8:06
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ejf79n8FquMeyf-m5e8abRfu6AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.40.186.0/23
212.135.12.0/23
212.135.180.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:1b:2e:dc:7d:2f:fd:e3:af:9a:ee:26:02:b0:e5:41:26:f0:
28:c2:cb:91:7e:81:25:86:d1:e3:d1:8f:e9:bd:83:a1:fd:a3:
da:b0:51:74:a8:fe:e1:6d:ee:55:b7:57:0b:25:0d:a5:6f:dc:
ee:f9:03:30:fd:0d:30:c3:54:29:98:f8:50:6e:2e:0d:03:e8:
58:15:7d:4c:ef:36:73:13:47:2a:81:c8:08:ff:f9:f6:e6:5b:
e1:40:95:df:13:97:2b:90:3c:de:5a:b1:21:ff:8c:ce:c8:6f:
7c:1e:ce:b3:9f:12:0d:12:0a:0f:34:39:91:2a:51:e1:2b:53:
71:0a:5b:63:94:2e:59:af:01:48:84:43:82:8e:67:88:4e:a5:
1e:f2:dd:54:29:a6:1a:e9:29:61:99:df:7e:e9:6c:f0:8b:ab:
db:e8:49:0f:47:47:87:1a:6c:ac:06:95:22:3f:4a:58:89:16:
62:cd:83:4c:65:36:bd:e2:01:fd:e3:b0:59:97:ff:82:15:61:
6c:c8:b5:69:c1:c4:58:6c:01:27:6c:8e:f2:10:2a:4e:58:e4:
63:17:75:7a:0b:02:99:ff:69:01:f4:af:18:67:bc:ed:43:19:
92:a6:de:97:2c:1c:62:3e:c1:da:92:d3:e4:53:cf:3f:b3:e0:
04:1a:2d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:04:39 2025 by rpki-client