Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/wi6TWbjcFwr1ksmoDtzktqIQP48.roa
File: wi6TWbjcFwr1ksmoDtzktqIQP48.roa (raw, json)
Hash identifier: 0WpG1eqMFUZnUZIFgXRLhyu6SOy8Ikfijvhc9ONwEqs=
Subject key identifier: C2:2E:93:59:B8:DC:17:0A:F5:92:C9:A8:0E:DC:E4:B6:A2:10:3F:8F
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0198A3EA1ABABBC7B6381DDA97F946C00D8E
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/wi6TWbjcFwr1ksmoDtzktqIQP48.roa
Signing time: Wed 13 Aug 2025 14:51:25 +0000
ROA not before: Wed 13 Aug 2025 14:51:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202780
IP address blocks: 192.165.130.0/24 maxlen: 24
192.165.133.0/24 maxlen: 24
194.132.36.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a3:ea:1a:ba:bb:c7:b6:38:1d:da:97:f9:46:c0:0d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Aug 13 14:51:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c22e9359b8dc170af592c9a80edce4b6a2103f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a1:25:ea:d4:1d:2b:c6:ee:02:34:04:b0:df:
a0:74:f4:f1:e8:98:cf:12:65:15:7b:7e:d6:c7:23:
de:8c:27:b3:bb:33:4c:7e:5d:95:db:64:e4:05:84:
cb:43:fd:1a:fd:c6:93:ac:83:13:46:b6:62:2b:c5:
7e:61:7c:f9:c2:c7:a8:59:1b:70:86:bf:b8:41:b6:
32:4b:d5:4a:3f:a9:9d:96:8e:ee:f4:13:9b:4b:71:
b9:79:9a:f6:fa:98:aa:e8:41:19:db:9e:2d:32:96:
26:cf:56:bd:c5:ec:f6:eb:20:d9:29:31:5e:3a:23:
65:5f:7a:d8:1c:52:0b:bc:6f:4e:94:8a:eb:4c:98:
75:da:0c:57:60:fd:25:db:94:29:14:df:a7:73:ba:
66:f0:ad:fc:1d:46:88:81:73:11:44:52:20:4c:3f:
b6:be:a0:79:fb:7e:c8:26:7d:83:b4:79:76:c3:35:
1f:f1:2c:71:ab:84:f0:21:2d:0c:2f:d4:89:b4:78:
5a:68:f3:a2:63:e8:10:4c:00:82:14:e3:36:7d:84:
31:15:75:bb:9f:ce:37:00:8e:1a:b9:7a:47:1e:38:
d2:7c:f0:41:14:a7:e1:74:25:9b:d8:e9:7a:fe:a0:
31:d3:2e:c5:82:54:d0:f2:3a:3e:df:66:4c:d4:5b:
fc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2E:93:59:B8:DC:17:0A:F5:92:C9:A8:0E:DC:E4:B6:A2:10:3F:8F
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/wi6TWbjcFwr1ksmoDtzktqIQP48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.165.130.0/24
192.165.133.0/24
194.132.36.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:89:5c:2b:49:93:79:d7:67:5e:34:87:5c:cb:00:65:9e:ad:
0d:84:b0:38:3c:d9:e0:a2:5e:a0:32:1c:ae:04:3f:4a:7b:58:
14:34:8a:7e:ba:c4:a0:6a:c7:4d:5c:6d:8f:01:60:ea:79:81:
08:2e:fc:30:e2:93:9e:a6:25:48:32:e1:6f:87:a0:b9:12:be:
72:3d:56:9d:91:dc:60:6f:d9:ad:5d:e0:11:71:25:a1:2a:df:
50:94:a3:c7:8b:4d:9d:16:27:ad:14:f4:51:67:82:8f:8e:81:
89:fc:89:1d:1c:e7:1d:16:ad:75:0a:04:de:d5:16:66:80:7a:
a2:b1:72:51:5a:d8:29:71:fd:af:e8:2f:b7:3e:47:d5:66:03:
63:ae:19:79:6c:fa:1c:14:58:3b:75:4a:83:8c:f5:be:20:14:
ef:e2:18:39:76:54:c1:39:48:89:ca:13:7a:e8:a0:1c:0b:80:
18:d4:91:77:63:98:d4:2b:c6:f7:33:6d:15:d9:af:93:44:7e:
f9:e0:05:10:ff:d3:54:20:78:a6:18:51:c0:c5:41:e7:3d:42:
c5:b7:94:fa:3b:f3:7f:f3:65:59:ad:33:2c:58:2f:35:a5:68:
29:c1:d8:88:a1:ab:ee:39:b9:57:9c:65:2b:c1:34:8b:4f:c2:
1a:60:28:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:12:59 2025 by rpki-client