Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/VvLDxcl32RkX6o9cAk2ZhuKfm2s.roa
File: VvLDxcl32RkX6o9cAk2ZhuKfm2s.roa (raw, json)
Hash identifier: GVngVUnES7V1tiNdjBZcMzfC0juakBJRqkf8oHdzHXc=
Subject key identifier: 56:F2:C3:C5:C9:77:D9:19:17:EA:8F:5C:02:4D:99:86:E2:9F:9B:6B
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 019E5B331CC7C7C01186F6F7CC692653B799
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/VvLDxcl32RkX6o9cAk2ZhuKfm2s.roa
Signing time: Sun 24 May 2026 18:15:36 +0000
ROA not before: Sun 24 May 2026 18:15:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 45.134.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 21:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5b:33:1c:c7:c7:c0:11:86:f6:f7:cc:69:26:53:b7:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: May 24 18:15:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=56f2c3c5c977d91917ea8f5c024d9986e29f9b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6a:d6:b8:d8:c9:99:12:96:c8:41:e4:ca:e2:
19:c2:4a:f7:b1:60:b4:a9:5c:11:5f:3b:dc:93:0e:
78:ea:37:67:47:bb:13:a5:3d:9f:48:6d:06:06:b8:
76:f7:47:5a:e7:f9:e5:84:ab:a3:a8:27:c2:02:ba:
1b:ee:8c:34:1c:58:c0:06:4f:d8:99:0f:bd:79:56:
cc:44:b3:4f:3b:98:ea:6c:e7:67:a4:64:53:76:09:
59:bc:44:0d:6d:9b:58:dc:c4:4a:3b:35:1e:a0:39:
6a:45:15:94:3e:b1:ab:cf:5f:b2:4a:5d:a6:fb:53:
79:36:f2:b7:a7:28:46:bd:cf:c8:b3:fa:be:73:48:
bf:44:7a:5c:03:be:53:79:09:14:00:72:c6:28:dd:
fa:b8:f8:67:95:3c:5b:4c:0e:be:e1:8f:0e:5e:c5:
e9:ae:e4:9b:0f:74:b2:0f:4f:5e:c3:fa:25:74:80:
65:f3:8b:40:0e:dd:f1:c8:67:ba:88:c3:a0:60:17:
20:51:55:96:e4:bc:36:79:60:00:e5:8f:45:93:31:
83:cb:51:9e:1a:03:52:fc:8a:78:ff:28:29:8c:f6:
fd:e3:ba:e6:a8:28:98:01:de:83:11:e9:e5:1a:01:
0e:76:59:14:f5:f5:08:4a:a5:6e:6b:8e:0e:bb:37:
0a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F2:C3:C5:C9:77:D9:19:17:EA:8F:5C:02:4D:99:86:E2:9F:9B:6B
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/VvLDxcl32RkX6o9cAk2ZhuKfm2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.8.0/24
Signature Algorithm: sha256WithRSAEncryption
16:b1:30:98:d7:2a:6e:63:a1:19:75:08:c9:5f:d9:7d:64:f4:
67:39:99:00:61:fc:5e:07:84:a6:a3:a9:1e:c9:98:2f:65:8c:
ab:38:a5:05:af:f5:51:f6:1b:36:88:c7:e5:a2:19:9e:13:c6:
dc:55:06:d0:b7:cc:fb:f0:e1:86:5b:a4:98:21:92:40:3d:af:
cc:28:9f:ba:82:43:80:a0:69:98:9a:61:f6:72:8f:88:43:f9:
b7:91:f5:1f:43:ef:7f:b5:f6:e5:c4:21:6c:42:c1:28:9b:72:
87:a4:c7:b2:a5:b4:d6:5d:ea:53:fb:65:3e:b5:9a:53:d1:b7:
c8:1f:d3:07:43:45:9c:b9:da:56:12:1c:de:f8:0f:cc:4f:59:
06:aa:ea:83:71:be:03:c5:10:05:b6:06:61:0a:ec:c4:ac:dd:
0f:58:9f:87:fc:2d:69:72:ff:6c:ae:2b:bc:e9:15:93:ba:37:
79:91:c4:59:21:b4:6f:99:9f:83:d7:94:47:a0:ff:be:69:e4:
fb:0a:c5:f7:36:4f:12:9e:60:65:02:ce:45:5f:ec:9f:f2:60:
4f:c0:ef:64:db:e1:2f:9b:71:34:f7:af:97:06:45:39:77:be:
a8:67:2f:2a:36:90:09:bd:f0:4a:c0:e7:6e:87:58:ec:9c:11:
41:39:dd:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:29 2026 by rpki-client