Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/A65jet2sC0NtxfWFCJNnrB3aUWw.roa
File: A65jet2sC0NtxfWFCJNnrB3aUWw.roa (raw, json)
Hash identifier: 0YlVjuYELRnXb4h0TNfDJ9CtXj5o7G1Mgtd0n11B8qY=
Subject key identifier: 03:AE:63:7A:DD:AC:0B:43:6D:C5:F5:85:08:93:67:AC:1D:DA:51:6C
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0198A76D2524DAF1E62E4D6B9E01F55E6593
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/A65jet2sC0NtxfWFCJNnrB3aUWw.roa
Signing time: Thu 14 Aug 2025 07:13:24 +0000
ROA not before: Thu 14 Aug 2025 07:13:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 80.246.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a7:6d:25:24:da:f1:e6:2e:4d:6b:9e:01:f5:5e:65:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Aug 14 07:13:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03ae637addac0b436dc5f585089367ac1dda516c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:a4:80:df:e4:bd:c1:96:65:bf:26:82:eb:
22:eb:f0:32:31:8c:c0:ed:ad:af:30:11:31:6b:6c:
6f:99:00:e7:df:1e:a4:6d:b2:a5:52:1a:ba:62:5e:
8c:42:34:c8:e2:08:4f:18:ff:9b:a5:70:bf:ff:8e:
75:69:a9:13:df:b8:84:af:07:7f:7a:23:e9:61:16:
e2:e2:af:83:61:29:6a:de:a0:12:43:ee:34:41:75:
70:f3:54:16:70:10:fa:48:86:6d:6c:06:56:9b:24:
28:52:6e:dc:10:61:af:8b:85:aa:90:34:35:19:56:
51:81:f7:9d:b7:96:b0:4a:bb:4b:6e:e0:a6:4b:3f:
e8:13:45:48:31:c7:b1:75:89:8b:1f:36:df:30:ee:
2d:25:92:72:09:6f:a4:56:d8:ae:d8:6a:78:a9:ae:
77:7a:5b:92:99:44:48:16:6f:f8:cc:56:62:a8:db:
5b:d8:bb:a7:33:5e:60:43:8f:b7:e3:fa:df:4b:0c:
36:55:e2:c8:c0:a2:63:3e:c6:7f:e3:68:6d:86:37:
f3:ad:d3:62:b9:25:a1:7f:b4:76:a3:01:2b:3d:12:
58:df:2d:30:42:8d:f3:6d:d8:48:f4:d4:5c:e3:6e:
91:cc:10:34:2d:ab:e9:d8:6f:dc:ea:de:ad:74:14:
89:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AE:63:7A:DD:AC:0B:43:6D:C5:F5:85:08:93:67:AC:1D:DA:51:6C
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/A65jet2sC0NtxfWFCJNnrB3aUWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.230.0/24
Signature Algorithm: sha256WithRSAEncryption
69:79:58:b9:99:be:9f:28:aa:5e:45:e5:cf:81:e5:b1:3d:de:
a1:30:f7:ac:57:06:00:29:af:39:0a:5f:39:dd:14:bb:25:3f:
ef:ee:15:8a:bf:4b:c0:91:e5:7d:c0:33:f3:2b:84:45:8e:aa:
46:40:fb:42:d6:a3:ea:5e:8d:e9:63:13:c5:43:ab:c0:06:ad:
86:ab:43:81:6a:13:0d:2e:22:2c:0b:28:26:b9:75:2d:90:43:
32:ac:fd:d6:d8:e1:04:d4:bf:9f:1c:e6:fa:ed:0d:d6:c6:d8:
09:7a:6e:e1:86:81:f7:32:22:e1:75:9c:17:70:68:e0:4e:e9:
1d:ab:be:7d:15:cd:43:63:5d:97:eb:2e:9a:29:45:ea:7f:30:
85:24:17:3d:e2:0f:fe:31:9f:9b:5d:b3:d5:0b:17:03:76:08:
35:71:4a:77:6e:96:57:3e:24:f2:9d:a6:34:b2:59:a5:50:3c:
b9:d6:97:cf:fd:80:7e:c8:64:f1:9a:42:c5:9f:ea:8e:90:0b:
c3:93:64:51:b3:32:68:e8:05:70:04:4a:67:1e:a7:84:57:ce:
ba:02:39:81:fe:84:b1:ab:cb:01:cc:1b:73:d0:3a:47:14:5e:
a0:60:35:d7:47:c2:2e:de:4a:a0:ef:3c:31:28:d4:9e:d9:c0:
85:15:81:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 08:35:01 2025 by rpki-client