Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/7M8XXV7BdTFViWEte1nbz5GEbO4.roa
File: 7M8XXV7BdTFViWEte1nbz5GEbO4.roa (raw, json)
Hash identifier: tuF5CsCO8BbVxLxXRWn2+2jOxGUCA6Nxg/gzn2ppgJI=
Subject key identifier: EC:CF:17:5D:5E:C1:75:31:55:89:61:2D:7B:59:DB:CF:91:84:6C:EE
Certificate issuer: /CN=e964d2705a9b26fd482a9c10e926eae7bda41e9b
Certificate serial: 019EB0AE934F7196B33A4B4E10908947DF59
Authority key identifier: E9:64:D2:70:5A:9B:26:FD:48:2A:9C:10:E9:26:EA:E7:BD:A4:1E:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6WTScFqbJv1IKpwQ6Sbq572kHps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/7M8XXV7BdTFViWEte1nbz5GEbO4.roa
Signing time: Wed 10 Jun 2026 08:38:11 +0000
ROA not before: Wed 10 Jun 2026 08:38:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 200976
IP address blocks: 185.198.112.0/24 maxlen: 24
185.198.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.mft
rsync://rpki.ripe.net/repository/DEFAULT/6WTScFqbJv1IKpwQ6Sbq572kHps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b0:ae:93:4f:71:96:b3:3a:4b:4e:10:90:89:47:df:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e964d2705a9b26fd482a9c10e926eae7bda41e9b
Validity
Not Before: Jun 10 08:38:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=eccf175d5ec175315589612d7b59dbcf91846cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a6:f1:19:6e:62:6f:56:a7:7e:cd:34:c5:09:
ef:9f:fd:85:17:f6:87:3b:2c:5a:73:b3:7c:da:4b:
07:a9:56:52:55:86:ca:50:31:d2:0f:70:3f:ee:95:
83:c5:75:5f:2e:fe:1a:c8:14:03:bf:17:3f:da:15:
db:b9:a7:53:27:06:44:16:cd:ec:75:60:ca:a4:7b:
ea:7c:61:fe:5e:24:0f:97:85:b7:1a:36:f6:b6:5e:
a4:24:b6:df:03:33:ee:dd:3f:56:64:e4:a5:86:17:
27:15:ea:b8:55:bd:33:ce:8f:a8:cb:e3:3d:dd:d2:
66:63:50:04:2f:49:8b:b2:c6:7d:f1:1d:fd:3e:95:
e0:8d:36:a4:b4:6a:38:54:7c:95:53:c2:1a:4d:9b:
9e:5d:1f:99:ff:7b:fd:e7:e6:11:98:8e:06:a8:0a:
0c:9c:84:1c:a6:c1:15:63:8c:6a:1c:85:28:18:0d:
17:fb:e0:69:b8:da:87:2d:67:c6:03:93:24:5c:34:
4b:fa:ef:59:d0:49:65:df:54:8b:fe:d9:fe:b2:d5:
a4:2c:65:03:5e:76:1e:59:95:f3:ef:33:ff:e1:ee:
ff:b7:ee:74:0b:6b:39:2b:ef:9f:80:36:7f:cd:e4:
19:dc:8d:16:39:03:da:5d:08:44:23:f4:da:6d:cc:
10:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:CF:17:5D:5E:C1:75:31:55:89:61:2D:7B:59:DB:CF:91:84:6C:EE
X509v3 Authority Key Identifier:
keyid:E9:64:D2:70:5A:9B:26:FD:48:2A:9C:10:E9:26:EA:E7:BD:A4:1E:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6WTScFqbJv1IKpwQ6Sbq572kHps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/7M8XXV7BdTFViWEte1nbz5GEbO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a6636d-cc53-4cee-84cc-f4e361e4da2d/1/6WTScFqbJv1IKpwQ6Sbq572kHps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.112.0/24
185.198.114.0/24
Signature Algorithm: sha256WithRSAEncryption
16:cc:69:7c:e0:54:1b:d3:ed:19:9c:8b:45:c8:65:0f:17:c5:
b2:1b:60:8b:39:aa:84:5c:33:21:59:07:7f:ce:90:1c:b1:ae:
b3:01:c8:d2:e4:72:3e:c2:11:bc:95:2f:e1:98:36:ee:61:6a:
e2:16:c2:5c:ee:d6:b8:26:7e:3d:7c:a3:af:5d:27:84:01:0d:
01:41:6e:00:ad:79:9c:d6:9b:0c:7a:ae:84:cc:3f:15:e6:9b:
b4:56:b9:69:d3:7a:f7:e9:df:fb:c3:71:ee:7c:95:78:75:ce:
fd:19:cf:0b:1e:7e:1f:a5:3a:fe:58:02:67:04:4d:55:07:3f:
65:ee:06:e2:f5:54:7d:18:c4:34:49:6a:87:e2:a8:c0:32:b9:
de:c3:e1:a9:49:16:12:21:a0:4f:99:f5:88:69:7f:4a:84:19:
76:82:54:66:56:62:4f:fa:e1:77:94:76:d6:f4:e4:0c:86:6b:
73:9d:8f:fb:b6:3a:97:da:0b:aa:f0:fc:b1:51:fd:dc:6a:93:
40:bb:09:bb:5e:42:51:f5:12:3b:a0:7d:66:e5:93:0d:b5:69:
fb:74:b1:4f:c5:5f:37:0f:03:a2:e9:31:51:76:91:60:29:b5:
92:d8:42:5e:60:75:a5:31:05:d8:8f:65:fb:0e:fc:e4:88:26:
cf:88:32:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:54:37 2026 by rpki-client