Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/VJ57u_rOeEfgLyqtX_seN-fNZxc.roa
File: VJ57u_rOeEfgLyqtX_seN-fNZxc.roa (raw, json)
Hash identifier: R0oLd/JNaesVZXC/vz8/I4eCgra3Alw1xkMPb8iR/+Q=
Subject key identifier: 54:9E:7B:BB:FA:CE:78:47:E0:2F:2A:AD:5F:FB:1E:37:E7:CD:67:17
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0198982B843E055868984CDCA5C934F9059B
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/VJ57u_rOeEfgLyqtX_seN-fNZxc.roa
Signing time: Mon 11 Aug 2025 08:07:25 +0000
ROA not before: Mon 11 Aug 2025 08:07:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211484
IP address blocks: 213.210.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:98:2b:84:3e:05:58:68:98:4c:dc:a5:c9:34:f9:05:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Aug 11 08:07:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=549e7bbbface7847e02f2aad5ffb1e37e7cd6717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f5:b8:07:ad:ba:9e:bd:bc:1f:d5:ff:c7:a7:
f8:81:f2:30:d0:90:4d:cf:ed:93:14:ac:1b:4c:33:
e5:7b:3f:2e:12:50:a2:e6:fd:3a:9c:e6:26:61:46:
09:e5:e2:0a:88:85:81:6c:20:a2:ad:d2:05:b2:28:
14:56:63:57:71:43:09:cb:29:fd:d0:4a:d4:20:5a:
8f:14:8f:8d:2b:91:c3:f9:27:30:c3:99:0f:f6:76:
01:0c:98:d1:c3:7f:e1:9a:12:e0:d0:e4:25:e5:1e:
07:61:21:61:97:74:e0:30:85:51:8c:01:d9:23:9e:
c4:48:e1:4c:26:3f:15:20:52:c9:e0:5f:d4:bb:26:
51:26:be:bd:84:a5:4c:cb:e8:53:0c:87:1e:9c:e0:
85:ef:4f:8c:4b:9a:31:b9:4b:20:47:3e:0d:22:43:
29:4e:4a:8d:41:c7:12:11:f2:9e:c0:f8:bb:98:e9:
54:5f:fe:41:e4:08:a5:a1:ac:4c:89:b3:8b:e2:f8:
af:ee:6e:18:00:6c:42:b5:e0:a0:fb:f1:65:03:6c:
fe:e9:3e:1a:80:fb:cf:5b:81:5d:13:09:f4:15:e8:
d5:5b:82:81:3b:bc:93:6a:37:b6:ae:11:92:3b:06:
77:40:f1:03:9a:b2:93:d0:b2:c8:34:84:77:46:35:
53:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9E:7B:BB:FA:CE:78:47:E0:2F:2A:AD:5F:FB:1E:37:E7:CD:67:17
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/VJ57u_rOeEfgLyqtX_seN-fNZxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.210.40.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:9c:27:2e:16:a9:0d:62:81:12:c5:b0:8f:b0:d1:b7:2a:06:
df:a1:91:ad:45:2d:19:a5:18:24:cb:26:22:f7:0e:5c:14:8f:
d9:d9:dc:49:df:19:24:57:cc:b1:b1:74:50:7a:c1:67:f7:51:
ae:65:29:4c:10:74:4d:48:8f:b4:ba:d9:19:b5:2e:2f:09:00:
4c:e6:6f:30:ac:a3:24:61:6d:56:ab:76:dd:25:4c:a5:df:e3:
8a:f2:4b:57:d3:56:4f:a1:96:06:f5:95:e2:95:e5:19:21:55:
30:3b:5c:ba:22:37:1a:4d:50:e5:30:e8:9b:09:43:40:95:47:
1b:4b:d3:8c:90:50:ba:4b:cb:b6:8d:a0:c0:be:cd:7f:b8:59:
d9:59:69:bc:90:0a:dc:a0:02:70:9f:f1:77:40:15:11:c4:a6:
9f:fa:5f:ea:c6:b1:06:02:99:b9:b5:93:47:0f:ae:47:fd:79:
0c:84:98:7a:1f:a2:3c:34:13:4d:51:c3:79:55:6c:10:4d:91:
70:23:72:07:bf:6c:44:8f:4f:f8:e6:fc:0c:c3:e1:12:55:ce:
35:f5:70:2b:b1:73:cc:b4:ac:f1:4b:e0:59:09:ba:6e:78:7f:
24:2c:48:35:4f:de:91:ed:ff:d8:0a:81:c6:c7:2d:d0:ce:15:
58:b6:47:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:08:10 2025 by rpki-client