Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/uV6CiH9RzWt5YUGpNh9FxYDFKYI.roa
File: uV6CiH9RzWt5YUGpNh9FxYDFKYI.roa (raw, json)
Hash identifier: G9nfDlMeM6Uq7b6uMDp3Lfko/1kG3ozVNwr5u9FMz8M=
Subject key identifier: B9:5E:82:88:7F:51:CD:6B:79:61:41:A9:36:1F:45:C5:80:C5:29:82
Certificate issuer: /CN=adb2f583f889dd4b134da56db45a3e25580b1b1d
Certificate serial: 0199C3355BC89E34A16A364558EFFAF989D0
Authority key identifier: AD:B2:F5:83:F8:89:DD:4B:13:4D:A5:6D:B4:5A:3E:25:58:0B:1B:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rbL1g_iJ3UsTTaVttFo-JVgLGx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/uV6CiH9RzWt5YUGpNh9FxYDFKYI.roa
Signing time: Wed 08 Oct 2025 09:44:38 +0000
ROA not before: Wed 08 Oct 2025 09:44:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12797
IP address blocks: 62.85.192.0/19 maxlen: 19
62.123.0.0/16 maxlen: 16
62.123.10.0/24 maxlen: 24
213.199.0.0/19 maxlen: 19
213.234.128.0/18 maxlen: 18
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/rbL1g_iJ3UsTTaVttFo-JVgLGx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/rbL1g_iJ3UsTTaVttFo-JVgLGx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rbL1g_iJ3UsTTaVttFo-JVgLGx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c3:35:5b:c8:9e:34:a1:6a:36:45:58:ef:fa:f9:89:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adb2f583f889dd4b134da56db45a3e25580b1b1d
Validity
Not Before: Oct 8 09:44:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b95e82887f51cd6b796141a9361f45c580c52982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:64:fc:80:e8:18:f4:7f:ed:c4:8b:00:a9:26:
ca:ec:3b:8c:fe:9f:36:db:e2:ba:b9:85:2e:cf:14:
4d:88:e9:7a:d2:cb:4c:48:ea:52:b8:9e:38:0e:90:
cc:06:7a:84:98:c4:d9:98:35:eb:ff:63:29:fb:47:
c0:d6:93:63:45:89:92:e5:b4:1f:30:91:94:db:e3:
27:1a:f2:a0:52:02:93:3f:1f:29:ea:73:6a:11:91:
2f:44:2a:14:5f:0c:da:cb:ef:69:26:c5:02:b2:33:
bc:56:a8:61:98:f2:4b:44:9f:8b:e8:f9:c7:a9:d7:
4e:bf:08:1b:89:01:b3:1f:1d:04:39:8e:2f:3c:57:
b4:32:ea:e9:f2:60:e2:d4:51:f5:0a:f1:68:e8:b0:
91:b1:94:55:8f:93:e5:fa:7b:31:ab:18:4f:d5:81:
fe:48:bb:5a:42:37:00:7d:27:0e:c1:e7:a1:65:0d:
ae:5e:46:85:47:ed:85:0e:68:4d:e2:8f:0f:1e:2a:
4b:0e:58:f5:64:6b:46:38:29:49:05:ce:c5:ef:0c:
5d:b8:07:8c:3e:62:aa:b6:00:a1:3d:5d:cc:cc:b8:
5b:d5:f3:b6:55:18:4d:92:5f:9c:07:f7:c7:7a:0f:
a9:99:9c:45:d9:fa:9d:39:a8:59:48:3f:09:65:2d:
2a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5E:82:88:7F:51:CD:6B:79:61:41:A9:36:1F:45:C5:80:C5:29:82
X509v3 Authority Key Identifier:
keyid:AD:B2:F5:83:F8:89:DD:4B:13:4D:A5:6D:B4:5A:3E:25:58:0B:1B:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rbL1g_iJ3UsTTaVttFo-JVgLGx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/uV6CiH9RzWt5YUGpNh9FxYDFKYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/350455-dd54-4def-8e91-add151666e2a/1/rbL1g_iJ3UsTTaVttFo-JVgLGx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.85.192.0/19
62.123.0.0/16
213.199.0.0/19
213.234.128.0/18
Signature Algorithm: sha256WithRSAEncryption
40:53:09:2f:20:a4:fc:ef:fe:cf:27:95:16:3f:91:00:44:7d:
59:b5:4f:44:ca:71:0e:20:64:02:6e:6a:4f:02:d8:5d:50:30:
4f:76:8a:12:dc:64:68:8b:a8:e9:6b:7c:4f:3c:75:f6:89:5b:
a8:f6:d2:fa:e8:d4:42:63:77:43:11:e0:02:5d:5e:bd:49:50:
f9:e3:f3:e2:49:ef:c9:a2:b5:09:cd:be:fd:b6:a6:3d:87:99:
13:39:1e:3a:1d:af:71:fc:de:35:af:fc:d6:7a:6d:32:62:43:
dd:69:11:59:91:c0:5f:3e:26:e7:f9:55:4c:9e:92:2b:21:3a:
06:b0:6b:ab:a0:1c:61:ca:7a:83:28:5c:f0:87:35:e1:b1:35:
44:3a:be:cd:33:69:70:15:72:11:f7:2d:89:5f:07:f1:87:7a:
ce:be:f9:17:02:d6:7e:77:cc:f6:4f:5b:99:f4:28:86:c4:04:
d1:33:04:13:b8:19:28:6f:87:1c:df:9e:47:d7:39:57:6a:6d:
ef:90:a9:fc:90:6e:30:89:a7:93:37:3d:1f:36:0e:25:25:5d:
c0:7a:8a:b5:fa:77:7e:d6:91:3e:ed:77:d7:34:46:55:03:44:
46:1b:44:eb:83:27:2d:ec:e9:7a:f9:d1:07:b8:23:3f:62:67:
0f:e3:3f:b4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZnDNVvInjShajZFWO/6+YnQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkYjJmNTgzZjg4OWRkNGIxMzRkYTU2ZGI0NWEzZTI1NTgw
YjFiMWQwHhcNMjUxMDA4MDk0NDM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTVlODI4ODdmNTFjZDZiNzk2MTQxYTkzNjFmNDVjNTgwYzUyOTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2T8gOgY9H/txIsAqSbK7DuM/p82
2+K6uYUuzxRNiOl60stMSOpSuJ44DpDMBnqEmMTZmDXr/2Mp+0fA1pNjRYmS5bQf
MJGU2+MnGvKgUgKTPx8p6nNqEZEvRCoUXwzay+9pJsUCsjO8VqhhmPJLRJ+L6PnH
qddOvwgbiQGzHx0EOY4vPFe0Murp8mDi1FH1CvFo6LCRsZRVj5Pl+nsxqxhP1YH+
SLtaQjcAfScOweehZQ2uXkaFR+2FDmhN4o8PHipLDlj1ZGtGOClJBc7F7wxduAeM
PmKqtgChPV3MzLhb1fO2VRhNkl+cB/fHeg+pmZxF2fqdOahZSD8JZS0q4wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLlegoh/Uc1reWFBqTYfRcWAxSmCMB8GA1UdIwQY
MBaAFK2y9YP4id1LE02lbbRaPiVYCxsdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmJMMWdfaUozVXNUVGFWdHRGby1KVmdMR3gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8zNTA0NTUtZGQ1NC00ZGVmLThlOTEt
YWRkMTUxNjY2ZTJhLzEvdVY2Q2lIOVJ6V3Q1WVVHcE5oOUZ4WURGS1lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi8zNTA0NTUtZGQ1NC00ZGVmLThlOTEtYWRkMTUxNjY2ZTJh
LzEvcmJMMWdfaUozVXNUVGFWdHRGby1KVmdMR3gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAdBAIAATAXAwQFPlXAAwMA
PnsDBAXVxwADBAbV6oAwDQYJKoZIhvcNAQELBQADggEBAEBTCS8gpPzv/s8nlRY/
kQBEfVm1T0TKcQ4gZAJuak8C2F1QME92ihLcZGiLqOlrfE88dfaJW6j20vro1EJj
d0MR4AJdXr1JUPnj8+JJ78mitQnNvv22pj2HmRM5Hjodr3H83jWv/NZ6bTJiQ91p
EVmRwF8+Juf5VUyekishOgawa6ugHGHKeoMoXPCHNeGxNUQ6vs0zaXAVchH3LYlf
B/GHes6++RcC1n53zPZPW5n0KIbEBNEzBBO4GShvhxzfnkfXOVdqbe+QqfyQbjCJ
p5M3PR82DiUlXcB6irX6d37WkT7td9c0RlUDREYbROuDJy3s6Xr50Qe4Iz9iZw/j
P7Q=
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:32:13 2025 by rpki-client