Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/Y2J0ixWXxyomNLXlfR9-SEkEV10.roa
File: Y2J0ixWXxyomNLXlfR9-SEkEV10.roa (raw, json)
Hash identifier: rF2y/Uk8exCgCNC1RyMdj+bUcWV6XwhV1eBMJvHv7Ns=
Subject key identifier: 63:62:74:8B:15:97:C7:2A:26:34:B5:E5:7D:1F:7E:48:49:04:57:5D
Certificate issuer: /CN=6f9e9696dccf6c1a432090408514aecdc3f60739
Certificate serial: 019A26105A68D67EADDC2FDF6103F7A1F0E5
Authority key identifier: 6F:9E:96:96:DC:CF:6C:1A:43:20:90:40:85:14:AE:CD:C3:F6:07:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b56WltzPbBpDIJBAhRSuzcP2Bzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/Y2J0ixWXxyomNLXlfR9-SEkEV10.roa
Signing time: Mon 27 Oct 2025 14:26:37 +0000
ROA not before: Mon 27 Oct 2025 14:26:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8308
IP address blocks: 194.92.0.0/16 maxlen: 16
194.92.32.0/24 maxlen: 24
194.92.33.0/24 maxlen: 24
194.92.34.0/24 maxlen: 24
194.92.35.0/24 maxlen: 24
194.92.36.0/24 maxlen: 24
194.92.37.0/24 maxlen: 24
194.92.38.0/24 maxlen: 24
194.92.39.0/24 maxlen: 24
194.92.40.0/24 maxlen: 24
194.92.41.0/24 maxlen: 24
194.92.42.0/24 maxlen: 24
194.92.43.0/24 maxlen: 24
194.92.44.0/24 maxlen: 24
194.92.45.0/24 maxlen: 24
194.92.46.0/24 maxlen: 24
194.92.47.0/24 maxlen: 24
194.92.48.0/24 maxlen: 24
194.92.49.0/24 maxlen: 24
194.92.50.0/24 maxlen: 24
194.92.51.0/24 maxlen: 24
194.92.52.0/24 maxlen: 24
194.92.53.0/24 maxlen: 24
194.92.54.0/24 maxlen: 24
194.92.55.0/24 maxlen: 24
194.92.56.0/24 maxlen: 24
194.92.57.0/24 maxlen: 24
194.92.58.0/24 maxlen: 24
194.92.59.0/24 maxlen: 24
194.92.60.0/24 maxlen: 24
194.92.61.0/24 maxlen: 24
194.92.62.0/24 maxlen: 24
194.92.63.0/24 maxlen: 24
194.92.77.0/24 maxlen: 24
2a0a:3a40::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/b56WltzPbBpDIJBAhRSuzcP2Bzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/b56WltzPbBpDIJBAhRSuzcP2Bzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/b56WltzPbBpDIJBAhRSuzcP2Bzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 11:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:10:5a:68:d6:7e:ad:dc:2f:df:61:03:f7:a1:f0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f9e9696dccf6c1a432090408514aecdc3f60739
Validity
Not Before: Oct 27 14:26:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6362748b1597c72a2634b5e57d1f7e484904575d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cf:8d:ce:3d:b8:3b:5f:61:75:56:a9:e9:be:
73:8b:15:35:ca:9e:ac:81:d2:72:8e:9e:eb:ab:14:
e5:e9:f9:f6:c8:4b:ce:b5:7f:e1:ed:39:fc:92:70:
a3:42:46:1d:cf:95:58:da:46:d0:68:cb:1b:bd:e6:
14:f6:94:18:a9:b4:e9:13:33:c5:f9:c6:41:6d:42:
72:03:eb:28:12:8d:06:0b:83:c3:30:32:34:6c:d1:
dd:0a:17:b7:dd:1f:cc:d1:f3:0c:b1:69:d4:4e:84:
90:d1:db:3a:bb:2e:b5:15:76:9d:13:29:e0:41:8a:
f4:7c:e3:1d:0d:12:1a:9b:fa:cc:f7:69:e2:ee:5e:
63:dc:bf:cb:22:27:ed:ae:8a:01:10:2c:da:57:94:
1c:dc:da:ba:55:10:2c:42:bb:27:c7:42:fb:67:6c:
e8:13:96:db:77:b9:cd:7a:23:c8:e9:ac:cb:c7:22:
a5:38:64:05:cd:a4:a4:71:42:b5:2c:87:7f:7d:51:
e5:d3:89:49:a9:13:28:3b:b6:f3:ee:0f:e4:64:39:
71:7a:68:5f:bc:bc:2e:c4:1f:28:a3:8c:1e:82:b3:
36:e0:09:f7:f2:c1:83:76:9c:28:2b:68:7a:fc:f5:
04:e7:0d:82:e4:9f:f7:e7:8d:f0:9d:ef:87:77:c8:
a6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:62:74:8B:15:97:C7:2A:26:34:B5:E5:7D:1F:7E:48:49:04:57:5D
X509v3 Authority Key Identifier:
keyid:6F:9E:96:96:DC:CF:6C:1A:43:20:90:40:85:14:AE:CD:C3:F6:07:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b56WltzPbBpDIJBAhRSuzcP2Bzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/Y2J0ixWXxyomNLXlfR9-SEkEV10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/57cd72-33e4-42dd-9f22-baf4e0b4a69e/1/b56WltzPbBpDIJBAhRSuzcP2Bzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.92.0.0/16
IPv6:
2a0a:3a40::/32
Signature Algorithm: sha256WithRSAEncryption
a7:0f:c8:17:98:8e:48:c4:f3:48:b4:d1:f9:fc:17:20:f7:af:
79:30:d9:5f:4f:8e:b7:3d:62:ff:ef:0b:8c:16:9f:b4:18:4b:
70:f2:66:c1:c9:b0:df:d9:8c:53:fa:c3:f3:8f:47:79:a9:54:
3d:ec:9e:38:00:b6:6f:84:8b:d6:b2:a4:0d:fc:43:d1:64:f2:
43:30:5f:d1:1a:62:dc:ed:a3:4e:85:25:88:33:f2:2d:e8:4b:
53:5b:c6:05:81:f9:c1:29:d7:23:dc:7d:46:37:05:67:37:5f:
1d:d0:04:0e:d1:31:b4:19:14:86:e0:60:3c:8f:fb:c3:4e:28:
f0:20:3b:36:61:ab:2c:b1:65:75:46:e4:75:db:a9:d2:80:bd:
13:05:b7:9b:38:5d:3c:93:32:90:bd:06:ff:b7:d3:61:41:b8:
a1:9b:74:42:c2:50:93:48:0c:8e:91:f8:56:96:a0:dc:f8:99:
f9:a8:e8:fa:b5:d8:61:6c:c4:a9:34:06:6e:77:22:c1:ea:c1:
95:6a:9c:ae:d1:89:16:82:66:13:dc:e8:32:27:dc:f7:5e:4e:
87:48:00:c3:04:25:70:88:c0:fc:00:5a:3e:76:45:ec:e0:e5:
1d:92:7f:80:39:6f:87:bf:42:1b:0a:1e:57:ab:d9:fb:8b:15:
0e:63:3c:d4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:50:21 2025 by rpki-client