Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/k1JgfKb3srL6aXDXnzvzd4pJb2w.roa
File: k1JgfKb3srL6aXDXnzvzd4pJb2w.roa (raw, json)
Hash identifier: +LhNHAlBDK0qBIHLLIuzyw+Dk5hZ7SHq+3e02Y/fFBg=
Subject key identifier: 93:52:60:7C:A6:F7:B2:B2:FA:69:70:D7:9F:3B:F3:77:8A:49:6F:6C
Certificate issuer: /CN=d25622457a1be33a01258866a067e0447dfd8964
Certificate serial: 0199379994393F37D886B9BDB6B8E23BF71D
Authority key identifier: D2:56:22:45:7A:1B:E3:3A:01:25:88:66:A0:67:E0:44:7D:FD:89:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lYiRXob4zoBJYhmoGfgRH39iWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/k1JgfKb3srL6aXDXnzvzd4pJb2w.roa
Signing time: Thu 11 Sep 2025 07:07:15 +0000
ROA not before: Thu 11 Sep 2025 07:07:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209847
IP address blocks: 193.178.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/0lYiRXob4zoBJYhmoGfgRH39iWQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/0lYiRXob4zoBJYhmoGfgRH39iWQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0lYiRXob4zoBJYhmoGfgRH39iWQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:99:94:39:3f:37:d8:86:b9:bd:b6:b8:e2:3b:f7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25622457a1be33a01258866a067e0447dfd8964
Validity
Not Before: Sep 11 07:07:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9352607ca6f7b2b2fa6970d79f3bf3778a496f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:05:49:39:c6:b6:e9:40:0b:80:25:fa:b5:66:
45:7c:9a:af:e9:6d:c1:dd:8e:e6:66:b4:bb:37:13:
d0:07:ee:57:4b:6a:ed:42:41:1d:0c:25:8d:15:bf:
57:2c:25:ae:db:20:c2:e3:b2:78:83:3c:4e:df:6b:
a6:04:df:1f:46:35:f8:a5:1b:de:af:44:dc:3a:d1:
e1:fe:d6:e9:8f:16:b1:d1:b4:ac:49:71:88:8f:1f:
f3:9f:e8:4b:56:64:a2:eb:ed:fb:70:89:ee:28:1f:
7b:2d:23:a7:d8:70:0a:3c:e6:b6:c4:b2:a7:94:1d:
ac:e9:0b:0d:d9:75:5f:13:20:0e:d2:ec:39:56:95:
ce:16:b2:30:63:e3:55:d7:96:c5:53:06:9c:92:e1:
9e:ae:a5:cd:a4:d7:04:87:5f:0c:2e:9d:61:81:af:
ad:52:b1:5d:a1:de:72:de:52:5c:b4:0c:0a:52:33:
b3:d3:4e:b0:ea:44:db:32:ee:af:3c:6a:91:2d:35:
de:0c:29:52:9f:f8:68:b9:4a:b8:de:22:95:b8:12:
1d:87:58:1b:56:68:ad:f3:ad:3f:3e:8b:f8:ae:a9:
7a:48:7a:fc:77:eb:24:eb:7f:68:0d:ad:50:71:9a:
9e:7e:3c:14:c1:9d:93:02:a1:65:b8:2d:66:9d:d2:
c6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:52:60:7C:A6:F7:B2:B2:FA:69:70:D7:9F:3B:F3:77:8A:49:6F:6C
X509v3 Authority Key Identifier:
keyid:D2:56:22:45:7A:1B:E3:3A:01:25:88:66:A0:67:E0:44:7D:FD:89:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lYiRXob4zoBJYhmoGfgRH39iWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/k1JgfKb3srL6aXDXnzvzd4pJb2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/26b47b-f2ce-4f2b-9d33-45579e418ff7/1/0lYiRXob4zoBJYhmoGfgRH39iWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.210.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:bf:b3:7d:48:c9:a1:d0:ba:07:fa:70:fa:28:3f:9a:7e:d7:
1c:f9:b2:6a:f4:d9:b5:3a:df:d5:3c:88:69:c5:bf:1c:5c:b7:
4a:27:91:b1:1b:07:00:72:4a:fa:ff:4a:91:af:ab:4f:7c:7d:
9f:f8:72:c0:d6:2b:60:a0:7e:12:34:da:3c:74:ec:dc:25:6e:
e5:87:73:50:9a:a5:ac:bb:7d:fc:27:4e:50:f8:80:10:c6:70:
e5:59:ad:7e:5b:0b:6b:6b:4f:f2:64:2d:f3:eb:4f:ea:b9:a4:
b8:6d:1a:4b:a7:b7:51:0c:b3:04:06:49:a9:c5:c8:10:4b:14:
85:bf:c3:c4:83:4a:c5:ca:18:fc:91:f6:5f:64:83:a4:d8:a5:
57:fa:04:d0:11:a8:a1:66:b7:11:d1:e5:58:e6:e2:92:0a:87:
53:78:90:be:0c:6e:4c:4e:ed:41:af:d9:36:12:f9:de:9b:b3:
06:7c:b1:48:a4:a5:bc:98:1d:4b:0c:98:31:31:ad:c0:e2:fa:
42:14:2a:cd:14:ca:a2:73:8e:a3:ee:fe:27:37:e7:58:e8:bb:
1a:2e:1d:a4:6e:76:23:9d:4b:80:97:1f:5a:6a:9f:3f:59:4d:
2c:d9:db:28:a4:03:91:07:b5:c2:59:f1:6b:06:2b:f4:66:82:
a4:db:0b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:48:08 2025 by rpki-client