Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/d3e3d7-0357-487e-9fed-a8e8b8931552/1/SeJ_MUIfyEphmZtsrhRCas-Zt7E.roa
File: SeJ_MUIfyEphmZtsrhRCas-Zt7E.roa (raw, json)
Hash identifier: 8yf8UNspB0AXwJ0f5mj6a36u/vut8a8srUMh6OwnuMY=
Subject key identifier: 49:E2:7F:31:42:1F:C8:4A:61:99:9B:6C:AE:14:42:6A:CF:99:B7:B1
Certificate issuer: /CN=f99abe45f21f12e4b802f309444c24759000ebcf
Certificate serial: 01985A360EE4BF50AA87ECEA7B11807002F0
Authority key identifier: F9:9A:BE:45:F2:1F:12:E4:B8:02:F3:09:44:4C:24:75:90:00:EB:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Zq-RfIfEuS4AvMJREwkdZAA688.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/d3e3d7-0357-487e-9fed-a8e8b8931552/1/SeJ_MUIfyEphmZtsrhRCas-Zt7E.roa
Signing time: Wed 30 Jul 2025 07:22:28 +0000
ROA not before: Wed 30 Jul 2025 07:22:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 185.175.188.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/d3e3d7-0357-487e-9fed-a8e8b8931552/1/1-Zq-RfIfEuS4AvMJREwkdZAA688.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/d3e3d7-0357-487e-9fed-a8e8b8931552/1/1-Zq-RfIfEuS4AvMJREwkdZAA688.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-Zq-RfIfEuS4AvMJREwkdZAA688.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:5a:36:0e:e4:bf:50:aa:87:ec:ea:7b:11:80:70:02:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f99abe45f21f12e4b802f309444c24759000ebcf
Validity
Not Before: Jul 30 07:22:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49e27f31421fc84a61999b6cae14426acf99b7b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:18:a5:2a:b1:5a:60:8f:1d:08:da:e7:a3:1e:
b2:53:ed:3b:00:ea:04:f0:7f:46:c2:05:f1:be:28:
86:f9:f2:c3:2e:84:c9:e0:dd:88:65:9e:56:be:86:
7f:ba:38:63:37:21:cb:47:4f:e2:ed:de:5b:8b:9d:
01:56:de:9c:3f:6d:d2:b9:16:d6:c1:ab:3f:98:21:
88:42:aa:c6:89:35:af:f3:c2:b7:c1:68:64:ce:c6:
b0:94:2d:5a:e2:42:df:f1:11:ab:af:3a:71:87:21:
9e:8d:88:3f:2d:56:9b:58:c1:81:b3:8a:66:cf:ab:
da:a3:5c:e2:8c:6a:bc:7c:64:71:07:82:d5:04:6a:
d6:f8:d0:da:16:33:d6:8c:ef:a3:e8:75:44:36:75:
46:38:ee:2e:c7:04:aa:f2:47:4f:99:1b:6a:85:2a:
fd:5a:20:83:76:2e:a3:dc:d4:87:d7:2d:c2:fe:22:
06:c4:25:89:cc:ab:75:d4:5c:31:7e:02:f3:c3:b5:
84:00:69:1e:0a:db:9b:8a:75:cd:9a:46:61:13:7a:
ef:38:84:fc:4d:2a:2c:c5:94:dd:af:86:66:12:7b:
99:c5:1d:39:e2:1b:83:0c:34:1b:f6:00:d6:29:e6:
14:59:05:ca:b5:68:05:15:c7:3c:9d:22:e5:55:90:
c5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E2:7F:31:42:1F:C8:4A:61:99:9B:6C:AE:14:42:6A:CF:99:B7:B1
X509v3 Authority Key Identifier:
keyid:F9:9A:BE:45:F2:1F:12:E4:B8:02:F3:09:44:4C:24:75:90:00:EB:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Zq-RfIfEuS4AvMJREwkdZAA688.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d3e3d7-0357-487e-9fed-a8e8b8931552/1/SeJ_MUIfyEphmZtsrhRCas-Zt7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d3e3d7-0357-487e-9fed-a8e8b8931552/1/1-Zq-RfIfEuS4AvMJREwkdZAA688.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.188.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:53:1a:57:48:44:0a:e1:ea:33:58:71:d6:d5:83:33:79:fd:
34:26:d9:4c:b9:cc:47:03:ee:2d:2d:1e:f5:94:25:89:f4:4f:
a2:4d:77:3e:ca:a9:cf:cc:a8:ca:4f:28:70:0c:b5:3b:7b:95:
57:bc:23:e0:ef:e2:e0:43:c1:58:f8:ce:a6:56:6d:38:86:84:
3a:9b:70:03:72:0b:2a:d4:be:4d:86:f3:f8:3a:6d:03:ad:47:
e9:80:b3:a5:ce:92:11:59:90:43:73:1b:74:26:9e:68:01:68:
c9:0a:f8:70:4c:2d:4e:39:70:e9:9b:2c:60:f7:10:41:78:68:
59:71:71:0e:14:61:b0:ab:d3:4e:1d:ae:37:1e:15:6b:d3:97:
3d:49:38:48:7b:21:d7:ad:78:63:90:05:b0:4c:f9:9a:68:ee:
04:f3:74:8d:36:2c:16:1e:71:76:d4:e4:30:cd:e4:91:d3:43:
3f:df:92:71:d4:43:84:8b:62:b4:a6:fd:0e:1d:a3:3d:47:f5:
24:8b:16:23:30:c1:eb:3e:cb:99:d1:0f:7f:24:e4:80:33:c6:
d2:8f:fa:92:d6:3b:53:4b:c4:ef:06:8e:99:50:45:99:ac:68:
98:1c:9a:34:0c:8e:ca:4a:8d:ba:28:68:58:17:c9:48:80:49:
ab:c3:fa:64
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZhaNg7kv1Cqh+zqexGAcALwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5OWFiZTQ1ZjIxZjEyZTRiODAyZjMwOTQ0NGMyNDc1OTAw
MGViY2YwHhcNMjUwNzMwMDcyMjI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWUyN2YzMTQyMWZjODRhNjE5OTliNmNhZTE0NDI2YWNmOTliN2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBilKrFaYI8dCNrnox6yU+07AOoE
8H9GwgXxviiG+fLDLoTJ4N2IZZ5WvoZ/ujhjNyHLR0/i7d5bi50BVt6cP23SuRbW
was/mCGIQqrGiTWv88K3wWhkzsawlC1a4kLf8RGrrzpxhyGejYg/LVabWMGBs4pm
z6vao1zijGq8fGRxB4LVBGrW+NDaFjPWjO+j6HVENnVGOO4uxwSq8kdPmRtqhSr9
WiCDdi6j3NSH1y3C/iIGxCWJzKt11FwxfgLzw7WEAGkeCtubinXNmkZhE3rvOIT8
TSosxZTdr4ZmEnuZxR054huDDDQb9gDWKeYUWQXKtWgFFcc8nSLlVZDFOQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFEnifzFCH8hKYZmbbK4UQmrPmbexMB8GA1UdIwQY
MBaAFPmavkXyHxLkuALzCURMJHWQAOvPMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1acS1SZklmRXVTNEF2TUpSRXdrZFpBQTY4OC5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcvZDNlM2Q3LTAzNTctNDg3ZS05ZmVk
LWE4ZThiODkzMTU1Mi8xL1NlSl9NVUlmeUVwaG1adHNyaFJDYXMtWnQ3RS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZjcvZDNlM2Q3LTAzNTctNDg3ZS05ZmVkLWE4ZThiODkzMTU1
Mi8xLzEtWnEtUmZJZkV1UzRBdk1KUkV3a2RaQUE2ODguY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK5r7ww
DQYJKoZIhvcNAQELBQADggEBAKZTGldIRArh6jNYcdbVgzN5/TQm2Uy5zEcD7i0t
HvWUJYn0T6JNdz7Kqc/MqMpPKHAMtTt7lVe8I+Dv4uBDwVj4zqZWbTiGhDqbcANy
CyrUvk2G8/g6bQOtR+mAs6XOkhFZkENzG3QmnmgBaMkK+HBMLU45cOmbLGD3EEF4
aFlxcQ4UYbCr004drjceFWvTlz1JOEh7IdeteGOQBbBM+Zpo7gTzdI02LBYecXbU
5DDN5JHTQz/fknHUQ4SLYrSm/Q4doz1H9SSLFiMwwes+y5nRD38k5IAzxtKP+pLW
O1NLxO8GjplQRZmsaJgcmjQMjspKjbooaFgXyUiASavD+mQ=
-----END CERTIFICATE-----
Generated at Wed Aug 6 05:23:39 2025 by rpki-client