Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/NtaaeyIuC225Cm9QIT2znpgZhko.roa
File: NtaaeyIuC225Cm9QIT2znpgZhko.roa (raw, json)
Hash identifier: LTLXokckcxAoqZeDM9TNaeCY+ru7lHH2nJF4l+3t0b8=
Subject key identifier: 36:D6:9A:7B:22:2E:0B:6D:B9:0A:6F:50:21:3D:B3:9E:98:19:86:4A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196A0AB1C73FF2625991342CB03D6EC9273
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/NtaaeyIuC225Cm9QIT2znpgZhko.roa
Signing time: Mon 05 May 2025 13:38:10 +0000
ROA not before: Mon 05 May 2025 13:38:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207108
IP address blocks: 2a0e:2440::/29 maxlen: 29
2a0f:a00::/29 maxlen: 29
2a0f:1440::/29 maxlen: 29
2a0f:1ac0::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:1fc0::/29 maxlen: 29
2a0f:29c0::/29 maxlen: 29
2a0f:2a40::/29 maxlen: 29
2a0f:2f40::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:30c0::/29 maxlen: 29
2a0f:3140::/29 maxlen: 29
2a0f:3540::/29 maxlen: 29
2a0f:9b00::/29 maxlen: 29
2a0f:c400::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 18:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:ab:1c:73:ff:26:25:99:13:42:cb:03:d6:ec:92:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 5 13:38:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=36d69a7b222e0b6db90a6f50213db39e9819864a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b3:c2:9e:f0:a1:b6:00:de:79:88:a9:dc:f9:
e1:f8:fe:cc:71:b9:ef:4d:5e:25:02:7e:f1:18:28:
e9:05:96:2d:d6:97:90:4f:24:14:4b:18:4b:42:ab:
8d:b0:9c:63:f4:e3:6a:4e:3d:3f:b2:8a:18:b7:9d:
d7:0a:5e:eb:bb:a2:64:9d:e9:27:76:1f:61:86:67:
e6:78:15:ee:33:df:eb:c2:db:09:15:44:39:1a:97:
59:e4:a3:56:1d:bd:6e:d2:5d:3b:a5:69:89:f2:d1:
23:70:ed:25:30:ea:12:d3:62:39:5c:87:97:d9:ef:
74:79:2c:4d:98:cf:f7:7c:e2:26:d1:7e:c4:3e:1a:
04:7f:5d:7d:ba:5e:f1:ae:4c:20:03:8d:70:e3:80:
21:b9:ad:8b:2c:4c:19:b6:62:0b:f7:88:71:2f:85:
a8:5b:df:c6:0d:9b:b0:9d:0b:ee:47:8e:7f:52:d6:
19:22:fe:ae:f4:22:69:76:0b:77:6e:91:78:d3:25:
ec:6a:c0:25:ca:e0:68:be:d3:41:fe:a2:4e:53:7e:
ae:5c:43:09:47:07:50:47:2b:27:ef:75:e5:22:ca:
a9:6e:62:f4:6d:87:96:da:ee:da:32:a5:f0:fe:ab:
a7:f8:81:99:77:e3:d2:78:bf:d2:1e:01:3c:14:4b:
76:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D6:9A:7B:22:2E:0B:6D:B9:0A:6F:50:21:3D:B3:9E:98:19:86:4A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/NtaaeyIuC225Cm9QIT2znpgZhko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:2440::/29
2a0f:a00::/29
2a0f:1440::/29
2a0f:1ac0::/29
2a0f:1f80::/29
2a0f:1fc0::/29
2a0f:29c0::/29
2a0f:2a40::/29
2a0f:2f40::/29
2a0f:2f80::/29
2a0f:30c0::/29
2a0f:3140::/29
2a0f:3540::/29
2a0f:9b00::/29
2a0f:c400::/29
Signature Algorithm: sha256WithRSAEncryption
39:6b:69:a5:48:7e:9b:7a:26:b0:f7:b8:8b:76:32:47:85:3a:
33:e7:28:37:9c:23:10:18:b2:2f:06:d5:f7:c1:16:9a:e1:5d:
91:58:1c:24:14:ea:b6:e0:d6:dc:6f:70:6d:91:da:f6:92:0f:
95:24:d2:2e:f5:bd:95:24:73:a8:1d:62:a3:77:4b:c1:1b:c5:
b7:6d:b7:91:da:88:b5:5e:71:2e:8f:98:90:28:4f:e9:10:5f:
d5:c8:21:c7:20:15:2f:81:aa:f1:62:01:3c:81:51:68:26:8a:
a4:4d:ac:ef:c4:44:7c:3b:b5:9d:01:cc:98:0c:34:a3:0b:53:
3a:d9:42:d6:b5:33:48:ff:5a:36:44:2e:f6:db:86:09:7e:62:
c5:80:18:a6:4f:b2:c4:b0:c6:bb:3a:37:52:21:0d:c5:b6:84:
72:dd:70:16:d3:e3:69:fb:4a:02:2c:dd:1c:e8:34:66:98:48:
5a:f6:92:4e:96:25:d3:2b:3d:1a:13:d5:38:07:8e:42:7a:54:
bd:18:9f:e3:40:4f:8a:22:f3:1d:c9:fe:cb:03:ca:5f:8a:a1:
04:27:15:fb:af:1e:83:fc:1b:9d:61:2b:16:27:2e:d0:d7:09:
9f:59:91:2f:08:00:4e:72:98:69:20:96:af:62:cf:82:7c:a8:
33:cf:f4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 04:21:28 2025 by rpki-client