Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_fp7HmoiLd6l8sXOuzYg-vSANDs.roa
File: _fp7HmoiLd6l8sXOuzYg-vSANDs.roa (raw, json)
Hash identifier: StH09GqmrO9uxanRoiTdVqq6CqrJJILSV+qIyMNrppg=
Subject key identifier: FD:FA:7B:1E:6A:22:2D:DE:A5:F2:C5:CE:BB:36:20:FA:F4:80:34:3B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0199E3CE65BDCEB16A1BC66CAE6533183CC7
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_fp7HmoiLd6l8sXOuzYg-vSANDs.roa
Signing time: Tue 14 Oct 2025 17:39:38 +0000
ROA not before: Tue 14 Oct 2025 17:39:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 45.155.68.0/24 maxlen: 24
2a0e:1a84::/32 maxlen: 32
2a0f:1e84:20::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a12:ecc0:22::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:e3:ce:65:bd:ce:b1:6a:1b:c6:6c:ae:65:33:18:3c:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 14 17:39:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fdfa7b1e6a222ddea5f2c5cebb3620faf480343b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:18:c2:ac:b3:6b:d6:8d:84:ef:e6:20:af:97:
81:37:3a:4c:77:23:7b:0c:a0:f9:6f:be:cf:3e:58:
b9:78:f9:e9:78:ca:06:98:ec:f4:a7:38:68:19:46:
0e:55:d6:8f:a1:ff:b3:c6:2c:36:a6:cf:de:45:07:
76:af:d1:df:12:ef:ec:a4:1c:9f:44:cc:d8:2b:90:
54:4a:3b:57:e9:d5:63:3a:12:38:04:da:6f:bf:80:
82:81:aa:7c:60:67:09:83:40:93:78:27:71:0e:f1:
f3:3d:a6:f7:de:c4:52:4e:54:8f:3c:b0:44:58:5a:
28:7e:00:18:3e:dc:22:40:57:ce:77:d3:5c:98:55:
8e:b2:88:eb:53:4d:7c:6f:2e:05:a8:6f:d5:ef:8b:
91:cc:f2:ea:c0:fe:58:67:37:d6:c7:66:94:e7:35:
cf:97:e1:96:5d:0c:84:c1:b0:28:e8:19:3e:1d:c8:
e3:54:d4:f3:37:7c:f8:7b:2e:1e:f5:20:fd:c6:0b:
e6:fb:53:2e:92:21:42:d6:f8:83:7d:71:ea:94:28:
f9:b8:73:a1:9f:e9:50:2d:be:84:c7:27:98:55:a5:
a6:d8:c9:7a:7a:6d:4e:de:e0:68:b3:c0:9e:68:39:
de:4a:6f:84:ca:2d:5c:43:a9:59:a0:d6:fb:94:c3:
d3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FA:7B:1E:6A:22:2D:DE:A5:F2:C5:CE:BB:36:20:FA:F4:80:34:3B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/_fp7HmoiLd6l8sXOuzYg-vSANDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.68.0/24
IPv6:
2a0e:1a84::/32
2a0f:1e84:20::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a12:ecc0:22::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
8f:e5:e1:a6:6a:cd:2d:8f:50:18:22:b8:9d:1e:23:39:44:f3:
e5:56:20:63:11:0d:a0:5b:42:da:4b:96:5d:fb:2e:10:08:f3:
0e:73:e1:d3:eb:6b:5c:e7:34:9b:27:e1:3b:80:8e:dd:de:77:
fd:24:c9:d7:56:24:07:3f:b8:8d:bf:72:e8:c8:d6:11:b2:a9:
66:42:a8:61:8c:60:32:b4:d7:2c:f9:d7:eb:89:e4:34:de:d0:
5f:58:39:c8:91:60:4a:89:7a:44:98:ac:6e:a5:13:4b:12:05:
49:60:99:d9:e4:17:7a:c9:f6:fb:12:b1:b0:74:c6:05:01:33:
b5:89:12:e4:f4:4d:dc:0c:73:c0:8f:63:29:81:e4:e2:e0:77:
65:13:d6:29:c6:17:ad:f1:e6:ab:46:74:de:6e:3f:0f:43:bf:
47:b5:29:56:52:db:62:43:3f:a9:e5:75:37:dd:34:94:fd:95:
fb:6e:da:0c:e8:82:ae:50:22:d4:30:fa:0f:cb:db:d3:c0:eb:
d4:ef:08:58:60:bf:69:69:65:2d:0a:85:c8:23:c2:35:61:bf:
e3:f8:78:d6:2d:97:30:1e:2e:a5:49:7d:2e:ff:96:4a:12:95:
bc:56:d4:57:a0:53:c1:ff:51:67:e0:52:c5:9e:e3:d1:87:e8:
ae:f7:26:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:55:58 2025 by rpki-client