Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AkNXn7rEbn5U1zHOEyojmLfn9HA.roa
File: AkNXn7rEbn5U1zHOEyojmLfn9HA.roa (raw, json)
Hash identifier: eUfyWJR3emLshCuN0LH6dI3kQNXA3mfEJ88STDsNOVA=
Subject key identifier: 02:43:57:9F:BA:C4:6E:7E:54:D7:31:CE:13:2A:23:98:B7:E7:F4:70
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01996BA90770A96B9AA23444B55233592742
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AkNXn7rEbn5U1zHOEyojmLfn9HA.roa
Signing time: Sun 21 Sep 2025 09:44:23 +0000
ROA not before: Sun 21 Sep 2025 09:44:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206647
IP address blocks: 81.12.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:6b:a9:07:70:a9:6b:9a:a2:34:44:b5:52:33:59:27:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Sep 21 09:44:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0243579fbac46e7e54d731ce132a2398b7e7f470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:09:50:58:be:80:61:48:8c:ae:82:f4:5f:05:
5a:09:d9:81:ea:71:2c:f3:f5:14:17:36:89:51:90:
ea:a5:d8:2c:c7:1d:b3:be:93:90:c6:63:3c:3c:13:
bb:86:ee:e2:b1:08:19:da:cb:67:6e:f4:5a:0a:d0:
26:2d:a9:92:ba:5f:2d:33:ca:ab:6b:d4:fa:63:5f:
f8:a2:b5:a7:0f:0c:60:28:d7:11:04:5b:ca:98:3f:
90:a6:f1:63:9c:54:31:3a:5c:2f:8e:70:61:05:a2:
84:d6:40:12:65:cf:32:f5:1f:d4:c7:11:88:7f:4d:
7e:34:21:07:5e:71:36:63:72:ba:a4:80:69:c7:0b:
e8:e7:fb:3b:df:82:c3:7e:b6:35:db:62:fa:5a:b3:
0a:2c:69:29:68:a6:60:28:6c:cd:74:8e:35:c5:bc:
90:10:c8:c6:f2:97:c8:32:bd:eb:36:b0:08:ad:3a:
71:ab:b9:d4:2b:33:12:af:ec:ef:e6:47:f9:35:58:
21:67:db:65:37:c0:38:e0:a0:77:24:95:d5:95:91:
be:e2:74:8e:24:32:13:cc:ef:dd:34:f8:ab:d2:97:
c6:ea:7d:e5:37:34:d9:20:c5:7b:a6:d1:7a:d1:1e:
4b:3e:65:35:c0:2f:8a:7e:77:4d:5a:ce:8e:3d:99:
2c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:43:57:9F:BA:C4:6E:7E:54:D7:31:CE:13:2A:23:98:B7:E7:F4:70
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AkNXn7rEbn5U1zHOEyojmLfn9HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.92.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:59:d1:58:9a:93:49:fb:61:88:c2:1f:36:73:e9:cc:a6:c5:
21:3c:21:55:1c:a7:01:bb:8d:6a:bc:2e:d9:ff:32:9f:ce:31:
32:c1:4f:a1:f0:37:ac:0a:6d:54:72:40:44:0b:8d:bc:31:39:
e3:e0:f7:35:b9:db:01:a7:e0:4b:d7:d6:78:57:e0:34:62:f0:
a9:ef:33:55:3c:f8:bd:08:9d:a0:7f:4f:3d:7c:6c:8b:01:03:
2c:f7:fc:fc:cb:99:9e:b5:04:a8:ad:9b:c1:d8:ec:6e:19:ea:
9a:0c:e2:70:3a:76:5f:98:8b:9c:52:35:5b:9b:05:a5:c4:51:
d5:6d:01:ab:68:e2:85:7a:fd:ad:38:72:c4:6b:2b:d0:7b:82:
48:b0:d2:f6:42:79:12:4c:8d:56:46:f7:af:47:d7:6c:ee:5b:
70:d2:42:1f:19:19:df:1f:41:f6:40:4d:07:19:46:ef:9b:be:
db:cf:1c:4a:a6:f6:14:41:ad:09:42:ac:0c:4a:96:3f:a8:97:
78:fe:cc:84:ff:dd:dc:bd:40:79:ad:3e:65:e0:a4:66:52:63:
45:3c:ec:ac:ff:31:7e:67:0e:4d:1a:86:0f:40:50:a0:ed:86:
a3:54:f1:ff:ae:13:06:b2:5d:f9:48:bd:49:22:bb:37:0c:a5:
3d:7f:ff:62
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZlrqQdwqWuaojREtVIzWSdCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjUwOTIxMDk0NDIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjQzNTc5ZmJhYzQ2ZTdlNTRkNzMxY2UxMzJhMjM5OGI3ZTdmNDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhAlQWL6AYUiMroL0XwVaCdmB6nEs
8/UUFzaJUZDqpdgsxx2zvpOQxmM8PBO7hu7isQgZ2stnbvRaCtAmLamSul8tM8qr
a9T6Y1/4orWnDwxgKNcRBFvKmD+QpvFjnFQxOlwvjnBhBaKE1kASZc8y9R/UxxGI
f01+NCEHXnE2Y3K6pIBpxwvo5/s734LDfrY122L6WrMKLGkpaKZgKGzNdI41xbyQ
EMjG8pfIMr3rNrAIrTpxq7nUKzMSr+zv5kf5NVghZ9tlN8A44KB3JJXVlZG+4nSO
JDITzO/dNPir0pfG6n3lNzTZIMV7ptF60R5LPmU1wC+KfndNWs6OPZksxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJDV5+6xG5+VNcxzhMqI5i35/RwMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvQWtOWG43ckVibjVVMXpIT0V5b2ptTGZuOUhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUQxcMA0G
CSqGSIb3DQEBCwUAA4IBAQDEWdFYmpNJ+2GIwh82c+nMpsUhPCFVHKcBu41qvC7Z
/zKfzjEywU+h8DesCm1UckBEC428MTnj4Pc1udsBp+BL19Z4V+A0YvCp7zNVPPi9
CJ2gf089fGyLAQMs9/z8y5metQSorZvB2OxuGeqaDOJwOnZfmIucUjVbmwWlxFHV
bQGraOKFev2tOHLEayvQe4JIsNL2QnkSTI1WRvevR9ds7ltw0kIfGRnfH0H2QE0H
GUbvm77bzxxKpvYUQa0JQqwMSpY/qJd4/syE/93cvUB5rT5l4KRmUmNFPOys/zF+
Zw5NGoYPQFCg7YajVPH/rhMGsl35SL1JIrs3DKU9f/9i
-----END CERTIFICATE-----
Generated at Mon Oct 20 03:42:27 2025 by rpki-client