Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/xdpBEJQBaSWnLzQMJf9F6VWUv60.roa
File: xdpBEJQBaSWnLzQMJf9F6VWUv60.roa (raw, json)
Hash identifier: rjp7KwUwTuEzo3eXkAycybNSdAwl1wu4fvs5dmuagvc=
Subject key identifier: C5:DA:41:10:94:01:69:25:A7:2F:34:0C:25:FF:45:E9:55:94:BF:AD
Certificate issuer: /CN=2719412918a6627f99cce55c7aca139057b8574e
Certificate serial: 0199D19BB683693ACE19CFD787E036F6AC58
Authority key identifier: 27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/xdpBEJQBaSWnLzQMJf9F6VWUv60.roa
Signing time: Sat 11 Oct 2025 04:51:06 +0000
ROA not before: Sat 11 Oct 2025 04:51:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64267
IP address blocks: 194.50.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.mft
rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:d1:9b:b6:83:69:3a:ce:19:cf:d7:87:e0:36:f6:ac:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719412918a6627f99cce55c7aca139057b8574e
Validity
Not Before: Oct 11 04:51:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c5da411094016925a72f340c25ff45e95594bfad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ad:7b:0b:bd:53:a4:4c:97:e3:cd:b1:82:af:
cc:08:9c:51:0c:a5:c8:5e:d6:0b:14:54:7c:a2:ef:
56:6a:41:0c:5f:fc:43:16:ee:95:02:46:80:05:3a:
2d:5b:5e:d8:5e:c4:89:27:68:95:ed:89:b6:2f:bb:
5d:09:72:ad:c9:39:7b:b5:e1:a8:7f:ee:c1:9a:b4:
9f:9b:14:25:3f:17:28:af:5f:9f:fa:40:2d:ba:d7:
6a:42:83:7e:7c:99:da:9a:6b:a4:80:70:cd:18:35:
7f:75:26:c1:41:9f:fd:79:3f:fe:6c:96:60:61:ee:
00:16:8e:46:f5:d1:be:89:84:f4:7a:4a:f1:98:73:
9f:f2:e9:4a:02:84:51:11:53:ba:79:6e:59:37:c7:
23:b5:b0:0f:b8:ed:49:ac:74:42:5f:6b:7d:0a:f2:
77:5a:6a:0c:fc:e7:c9:0c:5a:a6:62:95:08:ec:59:
0c:ca:1d:5b:76:cf:9b:0f:3b:e5:db:ac:96:92:d5:
4c:3d:20:ab:14:69:81:af:81:01:62:9e:3a:28:ab:
d3:df:fb:7b:b1:20:42:b8:a2:60:58:3f:54:89:8b:
f9:da:e7:3e:25:26:80:74:ef:a7:87:14:1e:94:f9:
e7:7b:e2:95:9c:c2:60:13:a2:93:1c:61:be:42:ba:
70:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DA:41:10:94:01:69:25:A7:2F:34:0C:25:FF:45:E9:55:94:BF:AD
X509v3 Authority Key Identifier:
keyid:27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/xdpBEJQBaSWnLzQMJf9F6VWUv60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.1.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:3d:27:93:88:d6:a9:ad:19:fa:d3:53:d8:a9:b5:62:48:c6:
60:c2:15:e9:8f:2b:3f:4f:9c:f3:13:ec:83:01:71:e8:2b:b4:
7e:71:7b:1e:1e:c2:ee:15:75:df:59:c5:fa:18:f5:b7:a6:87:
a5:09:a1:2b:43:a8:64:8e:25:fc:8d:7c:8e:64:9c:26:e8:68:
ba:d8:0d:24:12:dd:31:2b:43:51:e1:2d:09:5f:47:ca:13:f6:
e7:06:f7:ea:b9:5f:71:54:3d:60:00:c2:d8:88:4d:8e:5c:ce:
3c:d3:7b:ad:30:b5:d9:45:9b:92:ba:48:fb:e3:b5:6e:09:c3:
b5:43:4c:3c:bf:22:9c:37:37:e3:41:d8:66:06:73:57:52:3a:
17:1d:ab:48:f8:8a:a5:6b:f6:d7:c6:80:6f:c1:5d:19:26:94:
d6:4c:26:bf:da:56:e5:ff:9a:4e:06:41:15:7d:b0:10:d3:f1:
78:0e:a8:de:dc:c6:d7:5d:00:63:19:62:af:fc:ca:7f:39:4b:
41:6e:6e:2d:ec:b1:9d:86:d1:9a:b6:b5:4a:2d:1c:15:c8:eb:
46:2e:d6:ac:ad:2d:81:98:f7:e2:40:8b:95:2c:fd:10:d7:14:
34:d0:80:ea:d9:7f:ed:7c:6d:bc:c3:03:f2:7e:ca:fa:a5:00:
63:41:14:74
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZnRm7aDaTrOGc/Xh+A29qxYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3MTk0MTI5MThhNjYyN2Y5OWNjZTU1YzdhY2ExMzkwNTdi
ODU3NGUwHhcNMjUxMDExMDQ1MTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNWRhNDExMDk0MDE2OTI1YTcyZjM0MGMyNWZmNDVlOTU1OTRiZmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuq17C71TpEyX482xgq/MCJxRDKXI
XtYLFFR8ou9WakEMX/xDFu6VAkaABTotW17YXsSJJ2iV7Ym2L7tdCXKtyTl7teGo
f+7BmrSfmxQlPxcor1+f+kAtutdqQoN+fJnammukgHDNGDV/dSbBQZ/9eT/+bJZg
Ye4AFo5G9dG+iYT0ekrxmHOf8ulKAoRREVO6eW5ZN8cjtbAPuO1JrHRCX2t9CvJ3
WmoM/OfJDFqmYpUI7FkMyh1bds+bDzvl26yWktVMPSCrFGmBr4EBYp46KKvT3/t7
sSBCuKJgWD9UiYv52uc+JSaAdO+nhxQelPnne+KVnMJgE6KTHGG+QrpwewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMXaQRCUAWklpy80DCX/RelVlL+tMB8GA1UdIwQY
MBaAFCcZQSkYpmJ/mczlXHrKE5BXuFdOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSnhsQktSaW1Zbi1aek9WY2Vzb1RrRmU0VjA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9lOTJjNDktYmQ0YS00ZThkLWJiZjYt
NGUyMjM5MTdiODYwLzEveGRwQkVKUUJhU1duTHpRTUpmOUY2VldVdjYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9lOTJjNDktYmQ0YS00ZThkLWJiZjYtNGUyMjM5MTdiODYw
LzEvSnhsQktSaW1Zbi1aek9WY2Vzb1RrRmU0VjA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjIBMA0G
CSqGSIb3DQEBCwUAA4IBAQCqPSeTiNaprRn601PYqbViSMZgwhXpjys/T5zzE+yD
AXHoK7R+cXseHsLuFXXfWcX6GPW3poelCaErQ6hkjiX8jXyOZJwm6Gi62A0kEt0x
K0NR4S0JX0fKE/bnBvfquV9xVD1gAMLYiE2OXM4803utMLXZRZuSukj747VuCcO1
Q0w8vyKcNzfjQdhmBnNXUjoXHatI+Iqla/bXxoBvwV0ZJpTWTCa/2lbl/5pOBkEV
fbAQ0/F4Dqje3MbXXQBjGWKv/Mp/OUtBbm4t7LGdhtGatrVKLRwVyOtGLtasrS2B
mPfiQIuVLP0Q1xQ00IDq2X/tfG28wwPyfsr6pQBjQRR0
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:56:02 2025 by rpki-client