Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/t18vpttXogOnxguJ7pGpoYLrk2Y.roa
File: t18vpttXogOnxguJ7pGpoYLrk2Y.roa (raw, json)
Hash identifier: w64HKCyG1jpJ4LOOvXrj2J1OE37lFLFqT6Q1/gy6SUE=
Subject key identifier: B7:5F:2F:A6:DB:57:A2:03:A7:C6:0B:89:EE:91:A9:A1:82:EB:93:66
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 01966D385559D687FCEA0D682F75696851AD
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/t18vpttXogOnxguJ7pGpoYLrk2Y.roa
Signing time: Fri 25 Apr 2025 13:52:10 +0000
ROA not before: Fri 25 Apr 2025 13:52:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214002
IP address blocks: 91.212.193.0/24 maxlen: 24
2a01:83e0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:6d:38:55:59:d6:87:fc:ea:0d:68:2f:75:69:68:51:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Apr 25 13:52:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b75f2fa6db57a203a7c60b89ee91a9a182eb9366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:55:6c:d0:90:f5:27:9b:86:d0:09:ff:dc:33:
34:ae:6d:3c:31:0a:64:8b:0c:64:51:1a:71:14:a2:
06:c2:22:04:c8:0d:3c:a7:8e:f4:01:42:1d:ff:e4:
68:44:f0:f7:cd:2d:c6:9d:e6:3c:29:aa:36:30:9a:
36:ec:a9:57:53:27:22:7b:7d:b2:54:8f:a5:e4:6a:
e9:20:ef:03:4d:96:ee:7d:52:62:0f:e3:b3:0f:39:
f1:84:9f:d1:a5:55:6e:7e:fb:b8:e5:8e:92:ee:3c:
f3:77:f0:d0:1e:fd:7d:ff:5e:b1:b6:90:8a:7e:09:
07:f7:46:7d:f1:ff:71:f3:1f:7c:b3:c6:40:b4:30:
49:df:90:cd:d1:1e:38:a5:4a:98:61:5d:76:41:0f:
7e:3c:01:19:fc:20:2b:9b:40:41:cb:7e:f8:43:4d:
7d:d1:7d:b2:4a:60:46:d5:4b:fd:b2:6a:5d:8b:07:
75:77:c0:53:51:67:40:db:3e:ab:ad:49:00:9b:c8:
4e:50:53:31:b3:30:a0:f3:e3:cd:91:6b:f7:20:ff:
89:29:0f:83:66:04:59:d7:9a:48:0b:be:2c:b6:a4:
a6:ea:c0:f9:64:32:c1:8c:1e:f9:81:53:0f:53:2b:
0e:88:bc:9c:b5:76:cc:22:66:22:23:71:57:a6:06:
45:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5F:2F:A6:DB:57:A2:03:A7:C6:0B:89:EE:91:A9:A1:82:EB:93:66
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/t18vpttXogOnxguJ7pGpoYLrk2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.193.0/24
IPv6:
2a01:83e0::/48
Signature Algorithm: sha256WithRSAEncryption
79:03:e6:c2:7c:8c:3d:cd:46:97:6b:19:9b:11:f6:2a:a8:de:
56:65:02:f0:11:cf:74:40:ed:1d:95:9d:0f:5c:75:bc:7b:0a:
0c:0a:58:27:0f:2c:44:2f:e0:cf:a3:33:6a:82:9b:8b:87:a4:
a4:a1:97:b8:aa:fa:51:78:78:c9:a6:09:65:3f:b6:b0:40:a2:
01:4a:19:76:4e:70:67:3d:0e:51:0d:36:d7:40:68:8b:6d:9e:
75:ed:7e:17:b2:0e:97:a1:c2:ce:3b:fb:38:c4:44:7e:01:ca:
30:8e:2d:aa:f8:0b:36:0f:a3:17:92:96:1d:22:f3:6d:84:64:
0d:88:31:ab:e5:0a:46:a2:f6:2f:ca:6c:06:87:b3:75:f9:1d:
33:a6:2e:46:00:a9:07:9d:66:ec:e9:53:81:3d:bf:09:3b:5a:
8c:02:f7:ba:2b:81:4e:c2:bb:3b:03:ac:8a:31:e1:6c:c9:72:
98:e4:11:a8:b4:4d:ec:0f:76:18:62:b3:eb:7a:a4:55:b1:1a:
2b:5f:21:ef:c9:83:68:07:e3:4c:52:61:7e:3c:ba:5e:5b:9f:
1b:d7:43:29:ac:4f:70:94:1c:aa:2d:22:b5:bc:8f:30:f3:00:
cb:e7:49:5e:05:81:82:19:be:7f:63:0e:d9:3e:7b:a5:18:5b:
e6:5a:f6:bc
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZZtOFVZ1of86g1oL3VpaFGtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjNmI0MjAyMTg4NmQ4ZWVkYmFlOTBkOWU2YWIxZGU1MzNj
NTBkMjAwHhcNMjUwNDI1MTM1MjEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzVmMmZhNmRiNTdhMjAzYTdjNjBiODllZTkxYTlhMTgyZWI5MzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4FVs0JD1J5uG0An/3DM0rm08MQpk
iwxkURpxFKIGwiIEyA08p470AUId/+RoRPD3zS3GneY8Kao2MJo27KlXUycie32y
VI+l5GrpIO8DTZbufVJiD+OzDznxhJ/RpVVufvu45Y6S7jzzd/DQHv19/16xtpCK
fgkH90Z98f9x8x98s8ZAtDBJ35DN0R44pUqYYV12QQ9+PAEZ/CArm0BBy374Q019
0X2ySmBG1Uv9smpdiwd1d8BTUWdA2z6rrUkAm8hOUFMxszCg8+PNkWv3IP+JKQ+D
ZgRZ15pIC74stqSm6sD5ZDLBjB75gVMPUysOiLyctXbMImYiI3FXpgZFLQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLdfL6bbV6IDp8YLie6RqaGC65NmMB8GA1UdIwQY
MBaAFOxrQgIYhtju266Q2earHeUzxQ0gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0d0Q0FoaUcyTzdicnBEWjVxc2Q1VFBGRFNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8yNmMzZTEtNjQ4Ni00ZTA5LTk5YTQt
YTY4NzNiMzc0ZTI2LzEvdDE4dnB0dFhvZ09ueGd1SjdwR3BvWUxyazJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8yNmMzZTEtNjQ4Ni00ZTA5LTk5YTQtYTY4NzNiMzc0ZTI2
LzEvN0d0Q0FoaUcyTzdicnBEWjVxc2Q1VFBGRFNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9TBMA8E
AgACMAkDBwAqAYPgAAAwDQYJKoZIhvcNAQELBQADggEBAHkD5sJ8jD3NRpdrGZsR
9iqo3lZlAvARz3RA7R2VnQ9cdbx7CgwKWCcPLEQv4M+jM2qCm4uHpKShl7iq+lF4
eMmmCWU/trBAogFKGXZOcGc9DlENNtdAaIttnnXtfheyDpehws47+zjERH4ByjCO
Lar4CzYPoxeSlh0i822EZA2IMavlCkai9i/KbAaHs3X5HTOmLkYAqQedZuzpU4E9
vwk7WowC97orgU7CuzsDrIox4WzJcpjkEai0TewPdhhis+t6pFWxGitfIe/Jg2gH
40xSYX48ul5bnxvXQymsT3CUHKotIrW8jzDzAMvnSV4FgYIZvn9jDtk+e6UYW+Za
9rw=
-----END CERTIFICATE-----
Generated at Thu May 1 13:35:05 2025 by rpki-client