Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2RAsEkTPfLKkV9ZnmwWRVEp0y7o.roa
File: 2RAsEkTPfLKkV9ZnmwWRVEp0y7o.roa (raw, json)
Hash identifier: Vk30eyZwHqVDk2ZqNrECMwqQ6YGiiEwqRyNEVSdx59Y=
Subject key identifier: D9:10:2C:12:44:CF:7C:B2:A4:57:D6:67:9B:05:91:54:4A:74:CB:BA
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196B560EE0F11C884D88644B322B2A58D1C
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2RAsEkTPfLKkV9ZnmwWRVEp0y7o.roa
Signing time: Fri 09 May 2025 14:09:10 +0000
ROA not before: Fri 09 May 2025 14:09:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212027
IP address blocks: 2a0e:15c4::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:60:ee:0f:11:c8:84:d8:86:44:b3:22:b2:a5:8d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 9 14:09:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d9102c1244cf7cb2a457d6679b0591544a74cbba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d0:1b:b3:e0:2d:7d:a8:ac:df:ab:03:a4:3b:
2e:db:d0:bb:19:22:26:8b:f9:cb:cc:71:dd:a3:1a:
ed:e8:85:c4:5f:7f:43:31:b8:c6:99:79:3c:f3:95:
f4:ef:5d:50:ce:c6:56:e4:bc:f6:54:e2:0b:d4:e5:
13:d5:a3:6b:4e:8b:2c:03:e0:43:a0:ea:e3:eb:87:
30:1e:21:38:23:8a:b2:3e:56:14:9d:51:64:eb:96:
78:ad:a5:fb:38:ee:ca:59:75:57:ef:a0:44:f9:0b:
0a:4a:33:60:86:c1:ba:52:5f:e7:93:65:2e:eb:7b:
21:53:d3:5e:dc:a6:aa:00:3b:44:60:dc:f4:2d:d0:
2b:3d:09:65:ed:c0:2c:d7:2a:fe:ee:84:6a:d4:e2:
3c:22:e6:95:a9:a2:c0:57:bc:1b:23:ac:c0:6d:9e:
d3:76:98:27:50:df:54:d0:20:00:3f:6e:12:01:95:
5b:b1:2a:1c:24:20:02:29:ef:7e:c5:e7:14:58:3e:
16:f8:48:96:d4:bb:b9:de:1e:44:27:29:ac:fc:07:
2b:8b:71:2a:2a:9e:64:f5:92:5e:83:7e:b7:db:54:
9d:cb:08:62:29:4f:b2:e5:2d:8f:d8:12:31:6d:84:
87:be:83:48:82:02:f3:e3:e1:21:b1:25:22:6e:60:
c7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:10:2C:12:44:CF:7C:B2:A4:57:D6:67:9B:05:91:54:4A:74:CB:BA
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2RAsEkTPfLKkV9ZnmwWRVEp0y7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:15c4::/32
Signature Algorithm: sha256WithRSAEncryption
6f:6c:23:78:76:41:fd:7d:99:0e:0f:6d:fe:52:e3:4d:46:60:
63:c8:dd:9f:a3:ae:18:0b:5a:00:03:1a:bf:6f:95:0b:31:10:
b7:fd:35:2c:d9:99:cb:69:e0:3c:d6:6e:b8:cc:9b:32:ef:88:
e1:bc:94:1a:80:8d:13:81:f8:0a:49:ce:57:40:91:71:70:dd:
c4:46:53:5b:ea:49:8f:aa:11:c5:fa:8c:16:e9:24:08:4a:02:
91:49:e8:ad:88:b9:d5:2d:03:e9:c7:40:da:19:3b:3d:3b:9b:
4b:fe:33:13:50:0f:42:14:9f:05:01:bf:ab:5b:4b:bf:42:13:
f8:c5:0d:82:e5:76:2e:ad:b0:a2:de:6d:4f:c9:29:4d:d1:30:
1f:e4:3c:0c:94:16:4f:8b:c9:93:60:82:3b:d2:bd:91:7f:92:
66:1b:6f:06:96:0e:cc:ad:81:b8:0c:12:57:7f:35:2c:8d:0f:
d6:90:1f:84:fb:3c:19:30:1b:a0:73:69:66:50:7e:99:b5:9f:
2d:24:0e:23:c4:f3:e0:ba:cf:f7:09:f0:17:74:65:42:07:3b:
44:ce:e6:a1:79:dc:e6:ad:40:1f:af:1c:db:f9:c4:ee:3b:be:
40:a9:68:39:cf:2b:da:5d:2a:76:cb:d9:b9:2b:1e:91:60:3d:
71:4c:66:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:08:25 2025 by rpki-client