Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/weo9CWLj_cHlZAuKmm25jCSiTdE.roa
File: weo9CWLj_cHlZAuKmm25jCSiTdE.roa (raw, json)
Hash identifier: jmu2aK8G0mpYPnlzTYkp8hMz3DBUGgb1/J8HvzSEbx0=
Subject key identifier: C1:EA:3D:09:62:E3:FD:C1:E5:64:0B:8A:9A:6D:B9:8C:24:A2:4D:D1
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 01992E54127F891086DF0EE5E0B492CF6C52
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/weo9CWLj_cHlZAuKmm25jCSiTdE.roa
Signing time: Tue 09 Sep 2025 11:54:45 +0000
ROA not before: Tue 09 Sep 2025 11:54:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205770
IP address blocks: 2a13:93c1::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft
rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2e:54:12:7f:89:10:86:df:0e:e5:e0:b4:92:cf:6c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Sep 9 11:54:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c1ea3d0962e3fdc1e5640b8a9a6db98c24a24dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:19:4d:a6:0f:30:c3:9c:7e:56:63:b9:52:
d3:34:ed:7f:3f:b0:0b:fd:6e:c8:6a:bf:97:4e:1b:
d4:58:25:12:15:ed:a7:d6:d8:49:71:65:20:37:27:
34:88:40:8d:ac:b7:4f:62:49:b9:c6:3f:8e:94:ee:
63:97:cc:f5:e5:b9:66:03:59:18:df:54:48:9b:b8:
ba:3f:b8:d1:90:23:f7:14:40:90:7c:d3:4d:8b:91:
fd:1c:bb:e0:3a:69:b1:be:20:65:99:ee:fe:15:21:
67:0c:10:42:7d:f1:c4:db:cc:90:f7:d6:de:19:f6:
44:4c:68:22:20:d7:58:bd:d8:23:21:c3:b3:fe:8a:
cc:93:26:4c:fc:f2:f0:67:ef:dc:67:80:4c:5d:b5:
b4:51:b3:51:e3:6b:a6:a5:8d:79:02:8a:ab:2d:67:
2c:c0:be:86:e2:25:97:7e:01:42:67:2a:a0:f4:62:
9c:99:0f:fc:db:a1:60:cb:89:47:45:45:5a:0d:0c:
84:95:88:9d:8e:d8:fc:38:c2:99:61:74:00:57:e3:
a9:de:a5:b6:82:b6:d9:6c:0b:b5:9a:57:7d:40:82:
06:ea:eb:f1:c1:f5:da:a4:1f:24:b2:c8:cc:08:07:
dc:18:b0:2e:9b:eb:09:33:fd:f8:c2:cb:49:e7:aa:
2c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:EA:3D:09:62:E3:FD:C1:E5:64:0B:8A:9A:6D:B9:8C:24:A2:4D:D1
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/weo9CWLj_cHlZAuKmm25jCSiTdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:93c1::/32
Signature Algorithm: sha256WithRSAEncryption
92:ad:4b:9b:1a:5f:95:8c:f1:6a:30:41:39:5f:d5:56:4d:9b:
3b:7f:a6:5d:9b:0f:75:bc:39:72:dc:83:0d:38:14:ff:3d:20:
41:3a:12:2b:dd:0a:78:c6:d6:2a:1b:9c:e2:c0:be:35:94:ad:
21:38:42:73:d3:5c:b7:5b:4b:6c:03:1a:41:1f:a3:d7:2a:83:
e4:64:6e:e7:e5:08:20:6a:9a:0b:ce:9b:ef:74:5a:63:5e:7c:
84:68:60:3c:45:47:ba:50:17:b0:cc:b6:c1:57:86:99:5a:50:
7c:c3:44:d1:83:60:5e:e0:4f:f5:9d:b4:b7:b4:e9:7f:29:0c:
d2:70:aa:ac:de:3a:21:6c:81:3c:c8:99:b4:96:14:b0:9b:d9:
37:18:0b:60:d4:fb:2c:b2:2b:c2:40:18:d8:63:7d:36:14:d2:
9a:3a:a5:be:0b:11:40:dd:78:5f:03:f2:32:45:e4:f2:27:d7:
d9:40:60:2e:9b:c6:09:cb:5d:f9:83:9a:fc:95:5a:e0:fc:c4:
26:25:b7:7c:9a:ec:53:99:85:20:a8:71:9a:5d:45:ed:eb:0e:
45:a3:dc:2d:9d:fa:2c:25:29:6b:ab:95:02:a5:ad:84:2a:14:
e0:9a:e1:3a:27:3c:3e:52:e4:80:aa:34:8e:0e:53:e7:5d:18:
08:90:9e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:04:37 2025 by rpki-client