
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vViwfIYz4ZygTiE9VWfTR3NkC0c.roa
File: vViwfIYz4ZygTiE9VWfTR3NkC0c.roa (raw, json)
Hash identifier: TsSnct9pDSZ0tc7j4irzTWMw5JwCxV67LfkgNCqWSCw=
Subject key identifier: BD:58:B0:7C:86:33:E1:9C:A0:4E:21:3D:55:67:D3:47:73:64:0B:47
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01985514D45081C9EA2D66BF7C7EAB2A9FE8
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vViwfIYz4ZygTiE9VWfTR3NkC0c.roa
Signing time: Tue 29 Jul 2025 07:28:05 +0000
ROA not before: Tue 29 Jul 2025 07:28:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213292
IP address blocks: 2a0c:b641:340::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:55:14:d4:50:81:c9:ea:2d:66:bf:7c:7e:ab:2a:9f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jul 29 07:28:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd58b07c8633e19ca04e213d5567d34773640b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:21:69:4a:18:f0:45:9f:56:d5:54:64:7e:d8:
6a:7f:9b:3c:82:88:b8:8a:d2:42:31:30:a2:5e:5d:
39:55:32:92:e6:38:1d:c1:99:d1:9f:91:06:d2:40:
9e:fe:6b:c5:68:fa:63:e3:39:0d:3a:c1:00:33:04:
38:56:2f:cb:79:7b:b4:40:bf:58:dd:6f:f6:cb:fe:
75:e0:3a:12:4f:9d:a7:29:3d:86:b0:88:2c:67:92:
fb:2a:7e:bc:a9:d2:57:dc:a2:39:89:a8:60:99:93:
ad:58:fd:cb:36:27:36:41:0f:51:4d:e8:61:a9:4b:
9e:93:1c:bc:f8:93:e2:83:e8:68:e5:61:0d:46:50:
34:f6:8a:9d:bf:34:61:81:ab:af:75:f6:8d:91:11:
cc:59:1b:92:c5:30:69:5e:25:1a:17:11:66:86:52:
24:21:70:4c:3f:22:66:21:07:5c:af:d2:80:ec:41:
0a:39:75:b4:08:d3:54:84:6b:fe:c3:7b:c0:ef:d6:
aa:7b:53:69:bf:1b:46:34:f6:be:34:62:08:c3:0a:
c4:60:ce:90:9c:c3:85:47:17:f4:65:cf:bd:ec:e9:
06:68:de:ad:89:31:e4:68:76:be:fb:36:aa:d2:41:
ac:c1:d2:54:28:dd:25:7e:d8:12:cc:8d:ec:20:cf:
e8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:58:B0:7C:86:33:E1:9C:A0:4E:21:3D:55:67:D3:47:73:64:0B:47
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/vViwfIYz4ZygTiE9VWfTR3NkC0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:340::/44
Signature Algorithm: sha256WithRSAEncryption
62:10:30:97:09:ed:a2:8a:da:cb:1a:89:6d:e0:58:62:47:55:
bf:0c:9b:ad:b3:98:4b:ce:58:89:23:a0:9f:61:3e:94:2f:bc:
20:bd:5e:05:18:6c:e7:0c:8a:7c:50:11:c7:58:76:f6:2b:d2:
0d:2d:7d:4a:0c:c4:a8:35:b3:89:7e:4d:d5:94:7b:36:89:5d:
f8:97:5b:87:31:bb:61:97:95:25:93:cf:83:6a:81:7f:96:7a:
d7:f4:12:c4:5c:c7:d5:39:d4:e5:62:ba:e7:a4:9a:37:13:72:
ad:94:88:ab:f9:85:d2:6e:e0:0a:7c:1d:53:14:ac:36:59:52:
7f:65:52:ba:c3:87:1f:5a:79:4e:02:39:ac:58:f4:1d:cc:a9:
8b:75:68:a3:49:fc:b5:8e:6d:d7:9b:d9:a5:55:5a:6d:9f:cb:
bf:0a:c6:32:4c:c1:97:d1:76:f3:76:ae:37:12:c4:4e:14:3a:
e3:c2:83:76:b9:f0:b0:26:c7:38:48:b7:5f:db:e9:71:13:4f:
08:15:d0:e4:eb:91:fe:58:46:cc:3e:f4:36:5b:f1:53:b7:e6:
bb:76:fb:27:c5:e5:46:56:9b:07:14:12:9e:07:8d:e6:c1:42:
d9:1d:1b:26:a7:03:04:b4:69:93:a7:d3:ec:74:94:fe:a5:c7:
16:f7:82:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:53:03 2025 by rpki-client