Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/7MKtSQ03LybAFvKeFYQhZzPI3gs.roa
File: 7MKtSQ03LybAFvKeFYQhZzPI3gs.roa (raw, json)
Hash identifier: RUtBjRwDYReInMQgPiuL3sji7pGnF8mBEIioeh6Vtmw=
Subject key identifier: EC:C2:AD:49:0D:37:2F:26:C0:16:F2:9E:15:84:21:67:33:C8:DE:0B
Certificate issuer: /CN=7415fec4ae76b24e4f02991649917b99b740044a
Certificate serial: 019777922D4082751C3B7A7E689B581A21A6
Authority key identifier: 74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/7MKtSQ03LybAFvKeFYQhZzPI3gs.roa
Signing time: Mon 16 Jun 2025 07:09:17 +0000
ROA not before: Mon 16 Jun 2025 07:09:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216334
IP address blocks: 77.105.131.0/24 maxlen: 24
77.105.133.0/24 maxlen: 24
77.105.144.0/24 maxlen: 24
2a00:f9a0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 14:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:92:2d:40:82:75:1c:3b:7a:7e:68:9b:58:1a:21:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7415fec4ae76b24e4f02991649917b99b740044a
Validity
Not Before: Jun 16 07:09:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ecc2ad490d372f26c016f29e1584216733c8de0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:2d:8d:53:f3:ba:be:78:02:b1:54:26:87:b4:
e8:aa:0a:7e:c1:48:a5:39:d5:a9:73:f1:03:0f:2d:
16:d0:0d:47:36:40:e0:94:ef:9b:55:a4:a9:3f:de:
92:50:b2:17:74:cd:d2:56:e7:7d:4a:6b:bb:6d:35:
ea:be:11:88:6f:bc:ab:47:b4:20:cc:4d:12:9c:76:
7d:76:36:54:2f:e2:36:9e:d6:9e:7a:0e:6f:bc:a8:
86:ce:24:0b:3a:71:e9:c7:f5:ab:a4:25:d7:51:d0:
9c:e5:ea:70:45:35:33:31:42:4d:c7:cf:57:d8:57:
37:7d:f9:7c:f8:73:3a:c4:e5:3c:49:09:18:de:cd:
d9:0a:80:b2:e8:af:4f:6a:49:d2:26:fc:47:9b:f1:
e9:fc:5b:7d:f6:38:39:76:bd:95:e0:12:64:a2:94:
17:b2:c5:28:01:12:77:01:f8:0c:eb:e7:ae:73:2d:
31:7c:09:c3:e4:2d:e9:fc:8b:6c:6e:c5:98:3c:3b:
76:0c:71:82:37:8c:37:14:49:89:8c:73:fa:d5:ee:
3d:65:73:81:07:3b:a3:e7:e7:66:a0:f7:03:3a:84:
d9:85:2a:40:60:8b:3d:91:44:cc:2c:c1:93:44:6f:
fe:b0:ad:24:45:cf:61:b1:ad:c8:6b:cd:5f:c5:f1:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C2:AD:49:0D:37:2F:26:C0:16:F2:9E:15:84:21:67:33:C8:DE:0B
X509v3 Authority Key Identifier:
keyid:74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/7MKtSQ03LybAFvKeFYQhZzPI3gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.131.0/24
77.105.133.0/24
77.105.144.0/24
IPv6:
2a00:f9a0::/32
Signature Algorithm: sha256WithRSAEncryption
c5:63:99:1d:20:4b:a3:8b:94:4b:6c:a4:79:6d:84:48:12:d7:
e6:9f:0d:20:8b:55:1e:68:9f:54:8e:42:dc:c7:6a:cd:48:48:
59:61:8f:2a:e3:e5:9f:4e:fa:65:80:63:f5:c3:58:6e:ae:da:
02:07:b7:bb:0c:06:61:1a:1c:f3:ea:23:82:55:99:31:cb:1d:
97:dc:95:b0:e8:f1:fa:9b:dd:07:52:c8:c1:f9:e8:d6:cd:fe:
a6:4f:d6:d6:d9:e1:c8:7d:e8:08:df:a5:7e:c2:33:4d:de:ee:
1f:b8:41:56:1a:fc:0a:0c:3b:38:15:23:cd:43:b3:dc:4e:e6:
b2:67:c6:4f:36:8d:57:eb:96:f1:64:e1:75:71:9d:ab:3f:02:
f2:6b:59:c1:5a:41:86:e5:42:0a:51:80:d2:4e:1c:4e:f9:85:
78:ea:be:7a:6a:0c:5a:c8:7b:53:3e:31:fc:32:71:1c:b2:80:
00:7e:5d:86:c0:5e:41:f2:44:08:9e:eb:4a:a4:93:83:f9:d9:
44:fa:4e:17:e2:03:33:b5:c2:11:6e:cf:5e:cc:bb:fb:13:58:
9a:7a:02:21:ae:c8:cd:25:51:ed:1f:9c:e5:ec:9d:86:04:d1:
c3:8e:2a:96:07:ad:d4:a2:82:96:0e:82:6d:3c:eb:9c:68:d1:
c7:f5:72:79
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAZd3ki1AgnUcO3p+aJtYGiGmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MTVmZWM0YWU3NmIyNGU0ZjAyOTkxNjQ5OTE3Yjk5Yjc0
MDA0NGEwHhcNMjUwNjE2MDcwOTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2MyYWQ0OTBkMzcyZjI2YzAxNmYyOWUxNTg0MjE2NzMzYzhkZTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8C2NU/O6vngCsVQmh7Toqgp+wUil
OdWpc/EDDy0W0A1HNkDglO+bVaSpP96SULIXdM3SVud9Smu7bTXqvhGIb7yrR7Qg
zE0SnHZ9djZUL+I2ntaeeg5vvKiGziQLOnHpx/WrpCXXUdCc5epwRTUzMUJNx89X
2Fc3ffl8+HM6xOU8SQkY3s3ZCoCy6K9PaknSJvxHm/Hp/Ft99jg5dr2V4BJkopQX
ssUoARJ3AfgM6+eucy0xfAnD5C3p/ItsbsWYPDt2DHGCN4w3FEmJjHP61e49ZXOB
Bzuj5+dmoPcDOoTZhSpAYIs9kUTMLMGTRG/+sK0kRc9hsa3Ia81fxfF/VQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFOzCrUkNNy8mwBbynhWEIWczyN4LMB8GA1UdIwQY
MBaAFHQV/sSudrJOTwKZFkmRe5m3QARKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEJYLXhLNTJzazVQQXBrV1NaRjdtYmRBQkVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy85ODc5NzktOTY5My00NWUzLTg1YmEt
ZWQ1MzU4YjZkYTMxLzEvN01LdFNRMDNMeWJBRnZLZUZZUWhaelBJM2dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy85ODc5NzktOTY5My00NWUzLTg1YmEtZWQ1MzU4YjZkYTMx
LzEvZEJYLXhLNTJzazVQQXBrV1NaRjdtYmRBQkVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQATWmDAwQA
TWmFAwQATWmQMA0EAgACMAcDBQAqAPmgMA0GCSqGSIb3DQEBCwUAA4IBAQDFY5kd
IEuji5RLbKR5bYRIEtfmnw0gi1UeaJ9UjkLcx2rNSEhZYY8q4+WfTvplgGP1w1hu
rtoCB7e7DAZhGhzz6iOCVZkxyx2X3JWw6PH6m90HUsjB+ejWzf6mT9bW2eHIfegI
36V+wjNN3u4fuEFWGvwKDDs4FSPNQ7PcTuayZ8ZPNo1X65bxZOF1cZ2rPwLya1nB
WkGG5UIKUYDSThxO+YV46r56agxayHtTPjH8MnEcsoAAfl2GwF5B8kQInutKpJOD
+dlE+k4X4gMztcIRbs9ezLv7E1iaegIhrsjNJVHtH5zl7J2GBNHDjiqWB63UooKW
DoJtPOucaNHH9XJ5
-----END CERTIFICATE-----
Generated at Tue Jul 1 22:21:50 2025 by rpki-client