Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/mgeZXaYJi1mGQLwX_WKlPtn0jjk.roa
File: mgeZXaYJi1mGQLwX_WKlPtn0jjk.roa (raw, json)
Hash identifier: iNQ43jlhE2le2IQ9QNlwHj3Mrd2xsSBGVvBmoug3MRI=
Subject key identifier: 9A:07:99:5D:A6:09:8B:59:86:40:BC:17:FD:62:A5:3E:D9:F4:8E:39
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 019A265E91149B937B9C6FC90AEA967C2A72
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/mgeZXaYJi1mGQLwX_WKlPtn0jjk.roa
Signing time: Mon 27 Oct 2025 15:52:03 +0000
ROA not before: Mon 27 Oct 2025 15:52:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207043
IP address blocks: 85.11.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:5e:91:14:9b:93:7b:9c:6f:c9:0a:ea:96:7c:2a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: Oct 27 15:52:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a07995da6098b598640bc17fd62a53ed9f48e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fb:7e:39:1c:a6:fc:d7:28:e9:b2:8a:f5:1b:
1a:9f:db:b8:d9:bc:6d:5c:6d:77:6f:7f:95:be:8e:
4d:90:4e:1f:f2:e5:d7:1b:ec:39:18:15:0a:f1:2c:
4d:79:8a:e8:8a:1d:e6:56:4c:31:2b:e0:b7:3b:96:
30:2d:13:c5:17:01:14:77:b0:e3:5d:c9:1c:18:aa:
5e:f0:b7:36:30:48:de:3e:3d:f6:c8:c6:c1:33:8e:
f0:31:f5:c3:90:9e:d5:57:5a:5a:73:26:34:00:1e:
f6:83:22:22:4d:13:aa:db:81:01:26:bc:31:26:a4:
0f:80:6b:af:c8:28:a4:0a:22:b0:53:9a:71:28:ea:
11:d8:5c:2e:2f:d8:b3:06:5f:1a:05:75:92:84:d5:
ea:1c:79:74:dc:c2:01:00:44:a3:67:cf:36:c0:25:
d4:2f:8b:f2:7b:b8:9a:36:e8:2c:7f:b8:1a:a2:83:
4a:99:82:28:ec:23:b0:4c:81:a7:c0:8c:9d:7d:96:
df:70:94:5b:64:88:7c:db:7f:33:38:59:1c:a1:e7:
1a:2f:53:77:43:9b:c7:07:b0:d4:e1:4f:1c:ce:c9:
4b:36:3e:e0:82:80:92:06:20:6f:27:6b:c6:c0:9a:
ed:16:9f:b8:0a:61:3d:fe:19:f5:20:90:15:da:a9:
27:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:07:99:5D:A6:09:8B:59:86:40:BC:17:FD:62:A5:3E:D9:F4:8E:39
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/mgeZXaYJi1mGQLwX_WKlPtn0jjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.161.0/24
Signature Algorithm: sha256WithRSAEncryption
22:6a:8d:2a:72:6f:65:95:7d:2a:39:4d:1b:c0:ad:2b:92:32:
d6:eb:61:f4:b5:55:55:94:7f:11:d9:7b:03:a2:96:5f:b5:33:
7b:ef:c4:71:1d:2e:db:c4:ce:f9:08:e6:ae:04:b7:24:de:0f:
60:98:e5:5f:3d:5f:eb:a5:d7:9d:0d:2c:3c:4b:8a:69:6b:47:
f2:f0:52:b0:c2:e9:90:fd:d1:ea:22:bc:72:97:3f:6f:32:4d:
a1:06:65:8c:cf:42:2c:8b:58:d2:53:a8:b8:d5:b2:44:57:12:
e6:32:f5:90:17:28:ac:ba:d7:ee:a0:75:63:e1:9a:23:31:fa:
b4:5c:4e:de:4b:87:98:63:f5:15:c4:55:2e:e6:b4:ce:57:3e:
02:c9:f0:89:9a:dc:11:e9:f9:76:59:e5:a4:59:20:53:48:e7:
3b:8b:83:a4:6a:df:92:be:da:6e:8a:2a:b1:f1:77:b3:66:e2:
6c:3d:92:2f:72:90:18:07:79:47:d9:90:f2:75:1d:1d:5e:7b:
63:f1:be:91:66:0e:2c:4b:33:b5:4c:a5:85:c7:3d:43:35:0b:
7e:a7:41:ef:a0:00:1d:68:1d:30:b2:c9:00:70:f2:b0:7c:a7:
37:27:a4:c5:d5:f2:38:30:13:9d:be:0a:8e:50:b4:70:a6:32:
c8:7b:82:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:17:32 2025 by rpki-client