Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/a1_YaYttWjaGLYAOwTU1B124_ig.roa
File: a1_YaYttWjaGLYAOwTU1B124_ig.roa (raw, json)
Hash identifier: r1QqFsjfIV7t/B0W29ko76bqFlpVUWuotDIF0AI7bKM=
Subject key identifier: 6B:5F:D8:69:8B:6D:5A:36:86:2D:80:0E:C1:35:35:07:5D:B8:FE:28
Certificate issuer: /CN=4c3b88cdb13f3eb12a9be54ab19baa90559b396a
Certificate serial: 0198C2536DC5356928D39FC903BEEB2EA739
Authority key identifier: 4C:3B:88:CD:B1:3F:3E:B1:2A:9B:E5:4A:B1:9B:AA:90:55:9B:39:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDuIzbE_PrEqm-VKsZuqkFWbOWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/a1_YaYttWjaGLYAOwTU1B124_ig.roa
Signing time: Tue 19 Aug 2025 12:35:04 +0000
ROA not before: Tue 19 Aug 2025 12:35:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2a13:a0c0::/29 maxlen: 128
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/TDuIzbE_PrEqm-VKsZuqkFWbOWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/TDuIzbE_PrEqm-VKsZuqkFWbOWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDuIzbE_PrEqm-VKsZuqkFWbOWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c2:53:6d:c5:35:69:28:d3:9f:c9:03:be:eb:2e:a7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3b88cdb13f3eb12a9be54ab19baa90559b396a
Validity
Not Before: Aug 19 12:35:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6b5fd8698b6d5a36862d800ec13535075db8fe28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:35:85:71:94:05:b5:c1:11:df:64:e7:25:
80:8f:cc:97:25:11:aa:de:2d:9e:cf:a0:19:36:b6:
b8:20:c8:fa:25:e9:c3:c7:13:1c:e2:8e:30:7b:74:
23:24:04:d1:f7:b5:fa:ca:34:34:69:46:51:d8:2b:
2e:aa:a7:2e:f4:8c:9d:e1:bf:d6:ee:15:e0:08:18:
f7:77:ad:c6:c0:14:c6:c6:f7:d2:4a:4f:a2:6b:ae:
2f:3c:54:a7:aa:bc:e9:21:a8:1d:21:c8:6d:68:c0:
b3:e5:91:c6:86:68:9f:09:83:08:c8:61:25:fe:3b:
00:11:d5:54:9c:9d:61:3a:6d:40:3a:35:62:01:1d:
0a:5b:28:73:41:d4:38:21:c5:49:54:d2:90:f9:6b:
da:3a:0e:48:68:bd:e5:38:72:a3:fc:4b:18:4c:3f:
fc:36:67:5c:ff:22:3e:41:25:58:16:d2:53:f0:9d:
82:a4:fc:b4:b2:9f:99:4e:f2:9b:fb:cf:d4:a2:97:
d7:ee:58:53:5d:64:8c:00:60:2c:ab:b6:e7:d8:6a:
40:38:15:61:15:33:37:5d:c5:f8:6f:1e:ba:5f:d1:
37:fd:cf:31:93:7e:74:74:e0:36:04:7e:6a:64:40:
fb:79:21:04:b2:7d:cc:53:d6:9f:e7:19:7e:d4:76:
46:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:5F:D8:69:8B:6D:5A:36:86:2D:80:0E:C1:35:35:07:5D:B8:FE:28
X509v3 Authority Key Identifier:
keyid:4C:3B:88:CD:B1:3F:3E:B1:2A:9B:E5:4A:B1:9B:AA:90:55:9B:39:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDuIzbE_PrEqm-VKsZuqkFWbOWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/a1_YaYttWjaGLYAOwTU1B124_ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/TDuIzbE_PrEqm-VKsZuqkFWbOWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:a0c0::/29
Signature Algorithm: sha256WithRSAEncryption
ab:6f:e9:cd:7a:e2:51:d2:4b:8a:f9:c1:a5:f3:c2:f3:e3:e8:
3d:78:9c:83:72:6f:3c:d4:27:d1:cf:a5:01:54:ec:77:7e:73:
00:a6:3a:aa:a5:45:25:f6:4f:0d:4e:da:68:c5:e0:e9:2d:af:
85:07:bc:52:48:df:eb:c9:74:ff:85:de:98:aa:18:71:ae:35:
39:eb:01:db:b0:56:6c:ee:30:93:f2:b0:0c:14:80:b8:7d:99:
8b:d5:5e:e9:ac:6b:c8:8b:70:12:aa:03:88:62:25:9c:22:fa:
08:cd:ef:70:ae:d5:42:8f:2f:b3:b8:87:1b:91:39:06:9c:c8:
66:12:9e:77:09:06:5d:35:dd:e8:57:9c:e1:48:58:7b:fa:ac:
5a:4b:23:17:27:9f:ba:4b:d6:c1:c1:d5:64:97:3d:b7:60:78:
e5:0d:47:7e:92:43:ee:bc:0c:a7:0c:fa:d9:13:29:dd:29:39:
95:73:55:29:f0:70:ff:36:42:f6:02:99:2b:28:75:28:dd:ca:
93:dc:3c:bb:8f:25:a9:b0:eb:f1:a0:db:13:85:e8:39:9f:b0:
df:53:67:3b:36:55:c9:1d:ff:ac:21:7a:05:79:a4:24:19:14:
65:53:58:7b:c1:cf:d9:2e:ce:e8:0e:93:fe:7b:d1:14:fb:6f:
d0:04:27:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:30:03 2025 by rpki-client