Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-tMFaKS4qQep9QSxqL7tCV0luyE.roa
File: 1-tMFaKS4qQep9QSxqL7tCV0luyE.roa (raw, json)
Hash identifier: zKIQV+0dS0REl1unDnAeOGcA2vxFdkMwrZP5nPqqFwg=
Subject key identifier: FA:D3:05:68:A4:B8:A9:07:A9:F5:04:B1:A8:BE:ED:09:5D:25:BB:21
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0197A852134FCA002FEFA991EA21E97D3B41
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-tMFaKS4qQep9QSxqL7tCV0luyE.roa
Signing time: Wed 25 Jun 2025 18:20:40 +0000
ROA not before: Wed 25 Jun 2025 18:20:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211852
IP address blocks: 2a06:1186::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 15:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:a8:52:13:4f:ca:00:2f:ef:a9:91:ea:21:e9:7d:3b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 25 18:20:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fad30568a4b8a907a9f504b1a8beed095d25bb21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:f3:51:df:2e:50:4d:39:d1:d0:c7:3a:22:
23:e0:58:b4:78:1b:91:c4:b1:01:a1:90:2a:b5:d1:
f7:a3:e1:88:fa:ea:8d:a4:a8:b3:3a:1c:da:af:7d:
2e:67:c4:96:88:0d:4f:f1:2c:bf:ee:32:23:9f:82:
1d:90:34:29:df:07:82:9a:1f:52:ad:1b:11:08:73:
13:5a:5c:a7:1d:59:91:e8:33:91:73:6b:25:7d:58:
a6:75:17:9f:00:0e:05:0c:fd:02:f2:e9:03:11:1f:
50:95:90:2f:71:6a:3e:0b:87:77:17:a0:68:2a:b2:
f0:db:e6:99:e1:14:ee:12:56:cd:99:2f:e0:3e:2c:
a2:59:05:14:c9:1c:37:62:08:fb:e4:eb:3f:79:c8:
b4:19:da:db:82:39:39:2b:86:64:c0:7d:2e:c5:b3:
0f:cd:9a:29:65:aa:8d:c4:c7:7d:59:c5:84:bf:89:
7b:2f:92:46:e0:e1:b8:c6:67:81:54:1e:77:1e:ef:
3d:62:42:78:c2:26:36:d5:97:29:09:aa:67:e8:e3:
91:d2:2e:32:34:2b:99:cc:b0:2a:8d:6e:2d:1d:4c:
2d:51:41:6a:0a:ae:af:ad:e3:23:7c:75:5f:75:3d:
70:b8:07:d6:7b:ac:37:db:7d:c6:4f:d7:a8:f4:a9:
14:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D3:05:68:A4:B8:A9:07:A9:F5:04:B1:A8:BE:ED:09:5D:25:BB:21
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-tMFaKS4qQep9QSxqL7tCV0luyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1186::/32
Signature Algorithm: sha256WithRSAEncryption
80:c7:66:d3:fd:9f:df:84:cf:35:b8:f9:3b:09:dd:6d:82:16:
a3:da:a7:c4:c1:ac:11:5a:de:dc:20:e6:0b:5f:3a:0e:cd:54:
05:b9:69:10:4e:99:71:f6:4c:7f:7d:c5:38:ba:5f:34:7b:52:
03:5a:55:4c:b0:28:f7:c6:80:54:59:74:09:fe:1a:72:84:0e:
0d:78:49:2b:e1:9d:53:10:03:ae:de:c8:8a:2f:25:4b:f1:e7:
1f:89:fc:40:b6:b1:7d:3f:27:3b:39:02:7f:14:b0:26:bc:fc:
56:5c:bb:2e:7d:58:39:56:8e:86:d1:73:bf:d7:32:a7:55:c8:
ca:9d:78:25:47:3c:a9:cf:68:35:35:fc:9c:93:ac:17:53:98:
4b:1a:8b:b7:5a:c3:b4:be:04:e4:46:47:4a:43:f9:1d:82:48:
57:f3:1b:af:de:9c:45:7e:68:9d:7a:ab:cd:a9:18:a5:dc:ef:
32:22:f1:81:23:45:be:cb:f3:e0:46:e2:ef:56:98:43:c8:37:
17:f0:f6:b8:5a:2b:00:5c:9f:26:eb:f3:5e:d2:4d:76:60:ad:
3a:b0:14:4b:ac:fc:52:da:d5:26:26:9f:88:8e:d2:4c:04:8e:
8f:7e:4f:e4:d0:96:92:30:d8:1a:00:77:2a:4a:9e:f6:9d:fb:
4c:02:06:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 19:11:20 2025 by rpki-client