Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/siKKq03MehIkkaL3bl7O6-qR7Ag.roa
File: siKKq03MehIkkaL3bl7O6-qR7Ag.roa (raw, json)
Hash identifier: rHrqxkZm9DkUAKVoZKpkMj8VVEip8hADBWofW4lJlhg=
Subject key identifier: B2:22:8A:AB:4D:CC:7A:12:24:91:A2:F7:6E:5E:CE:EB:EA:91:EC:08
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01984B57D9C3BB8F341C82DC30F28610A2CC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/siKKq03MehIkkaL3bl7O6-qR7Ag.roa
Signing time: Sun 27 Jul 2025 10:05:05 +0000
ROA not before: Sun 27 Jul 2025 10:05:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7029
IP address blocks: 2a06:1181:2::/48 maxlen: 48
2a09:17c0:22::/48 maxlen: 48
2a0a:2940::/29 maxlen: 29
2a0a:2d01::/32 maxlen: 32
2a0a:2d07:9a::/48 maxlen: 48
2a0c:7884::/32 maxlen: 32
2a0c:7886:22::/48 maxlen: 48
2a0e:15c0:4::/48 maxlen: 48
2a0e:15c2::/32 maxlen: 32
2a0e:1a80:1::/48 maxlen: 48
2a0e:1a80:1312::/48 maxlen: 48
2a0e:2240::/29 maxlen: 29
2a0e:c785:1::/48 maxlen: 48
2a0e:c785:273::/48 maxlen: 48
2a0e:f200::/48 maxlen: 48
2a0e:f604:10::/48 maxlen: 48
2a0f:1200:2::/48 maxlen: 48
2a0f:1203::/32 maxlen: 32
2a0f:1580::/32 maxlen: 32
2a0f:1587:100::/48 maxlen: 48
2a0f:1e80:d9a8::/48 maxlen: 48
2a0f:1e84:3f::/48 maxlen: 48
2a0f:1e86:100::/48 maxlen: 48
2a0f:3043::/32 maxlen: 32
2a0f:3047:fc1d::/48 maxlen: 48
2a0f:31c2::/32 maxlen: 32
2a0f:3d80:bac::/48 maxlen: 48
2a0f:3d86:77::/48 maxlen: 48
2a0f:7d01::/32 maxlen: 32
2a0f:7d06:102::/48 maxlen: 48
2a0f:7d06:9c8a::/48 maxlen: 48
2a0f:bc00:100::/48 maxlen: 48
2a0f:df45:fc78::/48 maxlen: 48
2a0f:df47:200::/48 maxlen: 48
2a0f:e202:55::/48 maxlen: 48
2a0f:e6c3::/32 maxlen: 32
2a0f:e6c6:5532::/48 maxlen: 48
2a0f:e7c1::/32 maxlen: 32
2a0f:e7c5:f8f9::/48 maxlen: 48
2a0f:e847:77::/48 maxlen: 48
2a0f:e847:acab::/48 maxlen: 48
2a10:5c00::/29 maxlen: 29
2a10:67c2:3::/48 maxlen: 48
2a11:b200::/29 maxlen: 29
2a12:ac43:1::/48 maxlen: 48
2a12:ac44:1312::/48 maxlen: 48
2a12:ecc3:2::/48 maxlen: 48
2a13:18c0:2::/48 maxlen: 48
2a13:18c0:22::/48 maxlen: 48
2a13:8c82:1::/48 maxlen: 48
2a13:9281:100::/48 maxlen: 48
2a13:c900:fd1a::/48 maxlen: 48
2a13:e103::/32 maxlen: 32
2a13:e107:99::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 18:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:57:d9:c3:bb:8f:34:1c:82:dc:30:f2:86:10:a2:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 27 10:05:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2228aab4dcc7a122491a2f76e5eceebea91ec08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:45:6f:63:f5:d6:2c:f2:9d:f1:cc:ca:ec:6a:
5f:57:07:1b:b5:bd:5e:64:32:d7:5c:73:43:f1:78:
c4:44:a1:da:49:f3:da:25:aa:68:95:c4:63:22:b7:
21:ad:ba:70:1c:fe:52:2c:9a:8f:43:5f:f0:cf:36:
65:31:5a:bc:8d:9a:93:1c:9b:7d:b7:71:c3:82:22:
df:c1:f9:41:4f:03:f6:e7:a2:8c:be:4e:18:a3:86:
47:ed:b8:c8:27:f8:72:e5:cc:65:8e:44:01:91:39:
96:b9:ca:15:12:77:8f:c6:d6:04:a3:de:fa:b8:96:
26:23:56:0c:1f:2d:37:03:94:56:bf:de:6b:ce:9e:
fc:0a:38:59:da:2e:b6:ec:5d:f3:ae:69:ef:d2:3a:
ca:16:42:20:df:43:98:42:63:03:e5:3a:21:c2:e3:
8a:4f:52:9a:21:c2:db:fa:38:39:a1:d4:36:4d:02:
9e:ec:3b:b1:92:9c:ed:cd:98:b9:40:42:f1:7a:d3:
9e:b2:c6:26:56:23:65:38:09:f8:c7:ea:40:a3:94:
ab:d5:72:66:5c:4b:78:3c:d9:14:6f:f8:19:7a:72:
0d:08:8b:c7:30:08:7b:70:23:77:7f:92:cc:d6:8e:
b1:c4:28:63:e5:dd:22:b2:04:e7:e2:f6:78:b0:e2:
23:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:22:8A:AB:4D:CC:7A:12:24:91:A2:F7:6E:5E:CE:EB:EA:91:EC:08
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/siKKq03MehIkkaL3bl7O6-qR7Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1181:2::/48
2a09:17c0:22::/48
2a0a:2940::/29
2a0a:2d01::/32
2a0a:2d07:9a::/48
2a0c:7884::/32
2a0c:7886:22::/48
2a0e:15c0:4::/48
2a0e:15c2::/32
2a0e:1a80:1::/48
2a0e:1a80:1312::/48
2a0e:2240::/29
2a0e:c785:1::/48
2a0e:c785:273::/48
2a0e:f200::/48
2a0e:f604:10::/48
2a0f:1200:2::/48
2a0f:1203::/32
2a0f:1580::/32
2a0f:1587:100::/48
2a0f:1e80:d9a8::/48
2a0f:1e84:3f::/48
2a0f:1e86:100::/48
2a0f:3043::/32
2a0f:3047:fc1d::/48
2a0f:31c2::/32
2a0f:3d80:bac::/48
2a0f:3d86:77::/48
2a0f:7d01::/32
2a0f:7d06:102::/48
2a0f:7d06:9c8a::/48
2a0f:bc00:100::/48
2a0f:df45:fc78::/48
2a0f:df47:200::/48
2a0f:e202:55::/48
2a0f:e6c3::/32
2a0f:e6c6:5532::/48
2a0f:e7c1::/32
2a0f:e7c5:f8f9::/48
2a0f:e847:77::/48
2a0f:e847:acab::/48
2a10:5c00::/29
2a10:67c2:3::/48
2a11:b200::/29
2a12:ac43:1::/48
2a12:ac44:1312::/48
2a12:ecc3:2::/48
2a13:18c0:2::/48
2a13:18c0:22::/48
2a13:8c82:1::/48
2a13:9281:100::/48
2a13:c900:fd1a::/48
2a13:e103::/32
2a13:e107:99::/48
Signature Algorithm: sha256WithRSAEncryption
2a:03:a1:9a:5b:62:9b:92:bc:fd:16:b4:d5:73:0c:4e:5c:10:
05:da:ac:d5:81:eb:a0:c9:6e:be:28:e1:8d:84:7c:4d:b1:a8:
da:75:fb:c8:41:e9:40:0a:13:03:0a:98:fa:65:ab:75:50:49:
de:16:60:9f:e0:ae:a7:b4:40:9b:42:c5:c1:4f:58:81:07:ca:
ec:92:6a:80:09:a9:d0:7c:70:8c:bf:a8:b5:72:55:57:3a:02:
fb:aa:36:6f:7e:63:86:60:81:62:7d:c1:0a:c1:74:92:3d:06:
2b:a2:f9:7e:fd:11:3b:92:b6:a3:3d:94:38:7d:1f:ec:a2:2b:
3b:3f:e5:63:04:a5:0f:6f:65:ca:f2:f5:c7:95:40:8f:ac:68:
e5:48:ec:64:dc:f6:96:f9:b4:a0:53:9d:f2:1b:ba:df:0d:a8:
9f:e4:82:8d:54:62:af:93:b9:65:68:7c:80:d0:9f:d9:31:81:
84:db:0a:9e:ee:ba:7c:d1:40:40:be:74:87:de:76:0e:66:0c:
6a:2c:99:26:20:46:92:8e:d5:4d:77:8e:13:a7:c7:48:e3:6b:
32:65:8c:b5:04:e7:89:5a:20:da:5c:6c:5d:58:47:cb:33:18:
46:d2:89:f7:73:99:6b:5f:e2:d9:79:d5:7b:66:b5:e0:7d:91:
4f:ef:0b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:03:35 2025 by rpki-client