Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/de1e7c-7d74-4ccc-9c6c-d163b5499e68/1/7X_WSvEFamMfNZjyNbtSSNp_DT4.roa
File: 7X_WSvEFamMfNZjyNbtSSNp_DT4.roa (raw, json)
Hash identifier: BIAWYZiJ2Q5byj31tXy8i/6T7c/qS05IEfJLF0mtR+0=
Subject key identifier: ED:7F:D6:4A:F1:05:6A:63:1F:35:98:F2:35:BB:52:48:DA:7F:0D:3E
Certificate issuer: /CN=7ba289ebe93351236a5580eb5b70102cf3f11dfc
Certificate serial: 019A12DD47C1BAB92088A517E0D6E8C663F2
Authority key identifier: 7B:A2:89:EB:E9:33:51:23:6A:55:80:EB:5B:70:10:2C:F3:F1:1D:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6KJ6-kzUSNqVYDrW3AQLPPxHfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/de1e7c-7d74-4ccc-9c6c-d163b5499e68/1/7X_WSvEFamMfNZjyNbtSSNp_DT4.roa
Signing time: Thu 23 Oct 2025 20:58:02 +0000
ROA not before: Thu 23 Oct 2025 20:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6461
IP address blocks: 91.197.228.0/22 maxlen: 24
185.181.116.0/22 maxlen: 24
2a0a:cb80::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/de1e7c-7d74-4ccc-9c6c-d163b5499e68/1/e6KJ6-kzUSNqVYDrW3AQLPPxHfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/de1e7c-7d74-4ccc-9c6c-d163b5499e68/1/e6KJ6-kzUSNqVYDrW3AQLPPxHfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/e6KJ6-kzUSNqVYDrW3AQLPPxHfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 05:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:12:dd:47:c1:ba:b9:20:88:a5:17:e0:d6:e8:c6:63:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ba289ebe93351236a5580eb5b70102cf3f11dfc
Validity
Not Before: Oct 23 20:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed7fd64af1056a631f3598f235bb5248da7f0d3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cf:8d:b8:d4:d2:e1:67:2b:2a:32:39:10:82:
a9:15:ee:70:7f:f1:cd:cd:03:1f:88:2d:52:fc:04:
96:c6:50:8a:9c:08:48:cb:9e:5f:a4:fc:cf:55:da:
fb:ce:81:f9:74:76:f1:8f:04:3d:91:a9:4c:49:a1:
20:d8:e9:aa:eb:43:f4:f8:4f:ae:3e:1e:ac:a0:72:
2f:a5:32:e7:b5:50:89:b2:77:9e:8f:50:75:ba:e1:
84:ff:47:e6:ae:50:8b:0f:c0:93:99:b6:9a:18:13:
1a:8a:40:23:78:2d:af:3a:85:0d:7e:62:62:a0:13:
75:8c:dc:3b:47:bb:e8:6e:7f:15:26:2a:eb:b7:8e:
31:04:58:b1:ed:2a:2c:10:69:6e:25:d8:5f:9e:45:
43:28:b1:a2:46:5a:8a:91:82:7c:6c:37:98:5f:a9:
49:7d:71:bd:20:e8:e4:bd:b7:a5:20:d5:0b:46:75:
8f:93:17:aa:8a:1c:8e:33:ff:20:1e:fb:8f:6e:0b:
1d:61:ef:a6:51:e7:5c:1d:c8:17:b1:85:71:27:10:
08:f3:99:94:96:41:08:1a:d4:6d:d8:e9:be:0d:bf:
96:69:a4:5b:39:04:db:07:02:e5:c4:6c:3e:62:38:
17:26:6b:5b:a5:ae:06:d7:83:ba:e1:00:65:c7:df:
22:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7F:D6:4A:F1:05:6A:63:1F:35:98:F2:35:BB:52:48:DA:7F:0D:3E
X509v3 Authority Key Identifier:
keyid:7B:A2:89:EB:E9:33:51:23:6A:55:80:EB:5B:70:10:2C:F3:F1:1D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6KJ6-kzUSNqVYDrW3AQLPPxHfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/de1e7c-7d74-4ccc-9c6c-d163b5499e68/1/7X_WSvEFamMfNZjyNbtSSNp_DT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/de1e7c-7d74-4ccc-9c6c-d163b5499e68/1/e6KJ6-kzUSNqVYDrW3AQLPPxHfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.228.0/22
185.181.116.0/22
IPv6:
2a0a:cb80::/32
Signature Algorithm: sha256WithRSAEncryption
59:d2:88:3c:ee:ee:52:f2:0c:f2:1e:f6:e3:b2:af:77:be:73:
f1:03:75:d3:6b:58:96:b3:a4:88:5a:e6:e4:57:6a:94:ef:a9:
fa:a8:df:e6:22:6e:11:6f:86:d7:23:fe:c2:be:c3:dd:c5:39:
2c:ef:aa:76:a2:12:34:d6:ff:aa:3f:31:d2:8f:d1:0f:bd:21:
20:e2:41:f3:4a:1c:23:2d:a7:c5:92:ed:11:18:43:2e:e9:6c:
b2:89:80:07:f9:c2:9c:7b:0a:83:89:4e:c9:7b:17:4a:b4:8f:
47:78:5c:6f:fb:98:ee:48:7f:92:62:b5:de:4b:7c:11:b9:eb:
44:98:47:41:4f:db:97:7c:0b:74:16:01:48:0d:b2:df:54:35:
d7:31:d2:e0:e0:ed:a5:d4:75:87:c1:86:6f:7f:54:fd:82:4f:
d9:be:50:ef:d2:85:88:7b:d8:8d:ad:64:42:8f:04:e8:0f:c2:
fc:5c:31:5d:86:b9:ce:08:8d:96:92:e1:bb:51:c0:3d:74:0d:
f4:49:b4:62:0f:92:1a:65:ac:fa:46:2b:8c:32:ce:62:66:83:
98:eb:0d:bc:53:38:56:05:00:ab:2b:ac:42:f0:66:bd:fc:1d:
74:7e:61:43:1c:8c:11:25:ca:9f:17:04:e8:22:1c:56:96:a4:
9a:4b:cb:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:18:41 2025 by rpki-client