Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/ZKCq0MRIz_wY-is4Esg_Ap8VvJA.roa
File: ZKCq0MRIz_wY-is4Esg_Ap8VvJA.roa (raw, json)
Hash identifier: tvwe6Drbodo79eA+J+7zMlQ1/tHVaUTCyJ/+D5sX2Hs=
Subject key identifier: 64:A0:AA:D0:C4:48:CF:FC:18:FA:2B:38:12:C8:3F:02:9F:15:BC:90
Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce
Certificate serial: 0197637E6831B2620856E50DF4CB1204CFA8
Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/ZKCq0MRIz_wY-is4Esg_Ap8VvJA.roa
Signing time: Thu 12 Jun 2025 09:35:18 +0000
ROA not before: Thu 12 Jun 2025 09:35:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 103.151.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.mft
rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 03:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:7e:68:31:b2:62:08:56:e5:0d:f4:cb:12:04:cf:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce
Validity
Not Before: Jun 12 09:35:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=64a0aad0c448cffc18fa2b3812c83f029f15bc90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9f:09:cd:c0:31:02:02:94:91:36:e6:74:24:
bb:9c:ee:0d:32:79:fd:95:e2:a6:6b:6e:0b:80:93:
0c:92:94:8f:25:ee:c9:e6:d9:fa:cb:b0:ea:af:60:
77:db:50:bb:75:28:71:07:a4:e1:7b:41:d2:9b:4d:
f5:d6:51:cf:2e:d2:a9:34:89:07:bf:99:c6:63:aa:
0b:18:a8:6e:0b:d6:fd:b5:94:74:c1:24:44:bb:df:
cd:6f:e2:e9:f0:ac:79:21:4c:8e:24:6e:5a:67:5c:
5f:48:af:62:91:90:38:99:fb:2c:c9:ba:1a:18:fc:
35:75:d5:b1:aa:8d:1c:88:1a:98:8a:1b:96:8f:e4:
47:0b:91:14:9e:d3:ec:b8:66:94:13:d1:fe:4f:3c:
85:79:40:db:be:a3:f2:e8:1c:c4:31:bc:b4:bf:58:
d6:84:7b:3f:e8:ab:42:5b:c9:13:35:ad:3b:f7:03:
5f:11:6d:a4:a9:ef:eb:aa:c4:6a:36:21:29:73:fe:
8a:59:a3:da:6d:8c:d3:5a:e2:f1:29:fb:24:de:57:
91:4b:66:d7:f9:92:5c:7e:0a:78:1d:4d:0a:10:2f:
64:11:9a:20:3a:5b:3f:b0:0f:64:63:71:87:0b:6a:
2a:fa:7c:39:3a:9a:d1:a7:c4:ef:b7:5a:3a:98:42:
b0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A0:AA:D0:C4:48:CF:FC:18:FA:2B:38:12:C8:3F:02:9F:15:BC:90
X509v3 Authority Key Identifier:
keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/ZKCq0MRIz_wY-is4Esg_Ap8VvJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.103.0/24
Signature Algorithm: sha256WithRSAEncryption
61:30:b5:99:e6:7b:81:4e:65:5a:8f:a4:10:92:96:f7:f6:c0:
08:71:77:93:d9:50:a1:07:5c:48:37:34:b5:ff:03:b0:b0:94:
5f:d0:7b:41:df:6f:5c:d2:02:8b:12:08:04:2a:c5:2c:fd:a9:
fd:11:fd:04:71:a0:57:6b:4c:32:77:26:49:00:42:db:17:99:
d2:9e:8f:6c:31:33:67:29:9a:b0:34:63:fb:7c:c0:09:18:38:
14:61:68:77:5a:4c:c2:eb:fa:d1:25:7a:18:5b:49:cf:6d:0d:
cd:2e:08:65:e1:be:32:1c:f7:e8:dc:c8:3a:19:52:8d:5d:2b:
15:72:b4:96:68:e0:32:60:b7:14:18:54:43:18:f7:16:a2:40:
a3:af:94:86:db:38:2b:c1:d9:d8:f4:38:3f:dc:8e:38:7e:4a:
08:fa:d7:af:04:d7:a3:67:26:d6:89:3c:4a:8d:11:90:9a:c4:
e1:21:05:da:7c:ed:76:88:e2:78:69:91:89:29:07:52:d1:5a:
57:0a:03:1a:57:9b:eb:3b:61:f9:a9:cb:97:15:4f:c5:da:bf:
4e:8a:f4:51:75:77:db:55:df:f8:53:49:b4:3f:8e:11:8a:d1:
b3:2e:65:3f:57:a2:0c:d1:f7:29:30:4e:ea:f4:78:5c:7f:31:
bf:fa:a2:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZdjfmgxsmIIVuUN9MsSBM+oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNmE4NmU2MmYwY2U5OGUwMmU5ODA4NjlmZjQ0MTRlZTJh
MGYwY2UwHhcNMjUwNjEyMDkzNTE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGEwYWFkMGM0NDhjZmZjMThmYTJiMzgxMmM4M2YwMjlmMTViYzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJ8JzcAxAgKUkTbmdCS7nO4NMnn9
leKma24LgJMMkpSPJe7J5tn6y7Dqr2B321C7dShxB6The0HSm0311lHPLtKpNIkH
v5nGY6oLGKhuC9b9tZR0wSREu9/Nb+Lp8Kx5IUyOJG5aZ1xfSK9ikZA4mfssyboa
GPw1ddWxqo0ciBqYihuWj+RHC5EUntPsuGaUE9H+TzyFeUDbvqPy6BzEMby0v1jW
hHs/6KtCW8kTNa079wNfEW2kqe/rqsRqNiEpc/6KWaPabYzTWuLxKfsk3leRS2bX
+ZJcfgp4HU0KEC9kEZogOls/sA9kY3GHC2oq+nw5OprRp8Tvt1o6mEKwgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGSgqtDESM/8GPorOBLIPwKfFbyQMB8GA1UdIwQY
MBaAFC5qhuYvDOmOAumAhp/0QU7ioPDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2Et
YTY2N2JiNzY1MDYwLzEvWktDcTBNUkl6X3dZLWlzNEVzZ19BcDhWdkpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2EtYTY2N2JiNzY1MDYw
LzEvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5dnMA0G
CSqGSIb3DQEBCwUAA4IBAQBhMLWZ5nuBTmVaj6QQkpb39sAIcXeT2VChB1xINzS1
/wOwsJRf0HtB329c0gKLEggEKsUs/an9Ef0EcaBXa0wydyZJAELbF5nSno9sMTNn
KZqwNGP7fMAJGDgUYWh3WkzC6/rRJXoYW0nPbQ3NLghl4b4yHPfo3Mg6GVKNXSsV
crSWaOAyYLcUGFRDGPcWokCjr5SG2zgrwdnY9Dg/3I44fkoI+tevBNejZybWiTxK
jRGQmsThIQXafO12iOJ4aZGJKQdS0VpXCgMaV5vrO2H5qcuXFU/F2r9OivRRdXfb
Vd/4U0m0P44RitGzLmU/V6IM0fcpME7q9HhcfzG/+qKx
-----END CERTIFICATE-----
Generated at Mon Jun 16 10:21:20 2025 by rpki-client