Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/84c3d5-8ab2-44ac-942b-c4b9c539407b/1/dqOSF9Ies6urS5k4Ct3cQtw5VN8.roa
File: dqOSF9Ies6urS5k4Ct3cQtw5VN8.roa (raw, json)
Hash identifier: J3BiGkZdoL6h6rfESwdaItaaKVovQQqfeD9nGDkL6og=
Subject key identifier: 76:A3:92:17:D2:1E:B3:AB:AB:4B:99:38:0A:DD:DC:42:DC:39:54:DF
Certificate issuer: /CN=92ddaedf370f35af8b5eeb7f86e6cfaface88d4e
Certificate serial: 0197E68E82AD8AAF40664CFC789F52CC42C2
Authority key identifier: 92:DD:AE:DF:37:0F:35:AF:8B:5E:EB:7F:86:E6:CF:AF:AC:E8:8D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kt2u3zcPNa-LXut_hubPr6zojU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/84c3d5-8ab2-44ac-942b-c4b9c539407b/1/dqOSF9Ies6urS5k4Ct3cQtw5VN8.roa
Signing time: Mon 07 Jul 2025 20:23:08 +0000
ROA not before: Mon 07 Jul 2025 20:23:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200653
IP address blocks: 185.215.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/84c3d5-8ab2-44ac-942b-c4b9c539407b/1/kt2u3zcPNa-LXut_hubPr6zojU4.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/84c3d5-8ab2-44ac-942b-c4b9c539407b/1/kt2u3zcPNa-LXut_hubPr6zojU4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kt2u3zcPNa-LXut_hubPr6zojU4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e6:8e:82:ad:8a:af:40:66:4c:fc:78:9f:52:cc:42:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92ddaedf370f35af8b5eeb7f86e6cfaface88d4e
Validity
Not Before: Jul 7 20:23:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76a39217d21eb3abab4b99380adddc42dc3954df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9b:a8:65:d0:da:ed:d0:18:a1:fa:d9:53:07:
ac:d3:53:10:d7:bc:4b:cc:bc:69:c6:2a:77:32:e5:
aa:af:a7:2e:55:f4:fa:d6:39:4f:93:ba:98:d8:fd:
32:72:c2:11:da:35:7e:5b:2f:17:13:d4:22:7e:05:
ce:9b:75:40:85:f6:dc:f9:bd:b4:95:20:80:ef:69:
bb:86:82:3e:80:d2:01:2e:f1:5d:5e:61:48:85:99:
f8:69:ed:f2:28:29:54:9a:4d:d1:8f:80:36:64:91:
63:a9:56:e0:19:f3:38:48:8d:30:d3:c0:1a:7f:0a:
99:89:4d:a2:cf:9c:76:b5:ab:31:41:ac:28:58:95:
12:f8:41:c7:fd:e1:ae:70:4d:f1:bc:fe:39:65:35:
b0:04:ac:60:6e:f7:2b:9b:ba:e5:29:ed:29:a0:0b:
74:a2:c1:bd:0f:b3:25:19:67:f7:05:ff:d4:97:b6:
01:ea:6a:b5:6e:5b:39:df:1a:e0:e2:f8:ff:06:ca:
b1:d5:e6:d5:80:d7:05:e8:44:42:6d:f8:97:83:0b:
30:82:c0:a6:af:8b:8f:9f:7b:ba:33:7b:0a:07:92:
c3:ba:1e:27:e4:26:ae:9a:2c:ca:29:1d:51:34:1b:
26:ae:17:9c:76:32:52:14:32:58:b9:3b:a0:c8:61:
94:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A3:92:17:D2:1E:B3:AB:AB:4B:99:38:0A:DD:DC:42:DC:39:54:DF
X509v3 Authority Key Identifier:
keyid:92:DD:AE:DF:37:0F:35:AF:8B:5E:EB:7F:86:E6:CF:AF:AC:E8:8D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kt2u3zcPNa-LXut_hubPr6zojU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/84c3d5-8ab2-44ac-942b-c4b9c539407b/1/dqOSF9Ies6urS5k4Ct3cQtw5VN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/84c3d5-8ab2-44ac-942b-c4b9c539407b/1/kt2u3zcPNa-LXut_hubPr6zojU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.6.0/24
Signature Algorithm: sha256WithRSAEncryption
71:32:71:c0:52:9d:9d:39:c4:73:c1:f2:11:9b:03:26:ce:ca:
6a:20:39:39:1a:8d:85:f6:8c:dc:23:9f:9c:0b:7f:eb:7c:2b:
8c:8b:b5:82:a3:13:60:f5:03:ad:62:d5:78:f9:0f:5b:c6:ab:
cd:90:bb:f3:b9:97:d1:38:01:20:1e:7c:11:3e:02:1b:4d:8f:
02:f5:c7:cb:a7:52:21:02:da:f3:e2:36:fd:b6:e7:df:46:1a:
21:b0:5c:29:6e:13:57:10:59:03:f3:a8:83:04:30:91:b0:98:
dc:a5:40:d5:6f:8f:e5:9d:9b:8e:70:3c:7b:98:b5:7c:be:d9:
5d:5a:0e:2c:be:31:d5:95:9e:53:52:44:42:46:e8:7f:56:7e:
43:9d:39:d6:8e:78:e3:f4:ee:6b:fb:d8:d4:f5:b9:11:51:e8:
8a:29:c2:4d:81:ca:1c:98:78:8a:68:c7:73:34:2f:d6:ca:05:
d7:a9:09:66:56:de:7a:6c:9b:46:af:7f:6f:ac:74:58:aa:58:
27:53:71:4e:61:b0:dc:6b:cb:bc:a7:2b:3e:fd:46:1d:49:30:
82:d2:63:82:f6:d1:88:94:8b:61:44:3a:99:b9:b2:89:06:e7:
ad:b4:41:77:de:8f:e1:cc:32:b2:32:2e:4b:18:b6:ac:30:c5:
f6:9c:66:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:47:37 2025 by rpki-client