Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/mJLCvhoSr6cG_WzKGxOoGZZUto4.roa
File: mJLCvhoSr6cG_WzKGxOoGZZUto4.roa (raw, json)
Hash identifier: hpbyrKEfdwsgLROU0xd+/p50L8uqw9H0fF1GCNwECek=
Subject key identifier: 98:92:C2:BE:1A:12:AF:A7:06:FD:6C:CA:1B:13:A8:19:96:54:B6:8E
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019C567F5C005C9F74AA4798706C6326F3E3
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/mJLCvhoSr6cG_WzKGxOoGZZUto4.roa
Signing time: Fri 13 Feb 2026 10:15:13 +0000
ROA not before: Fri 13 Feb 2026 10:15:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 6079
IP address blocks: 159.148.131.0/24 maxlen: 24
159.148.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:56:7f:5c:00:5c:9f:74:aa:47:98:70:6c:63:26:f3:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Feb 13 10:15:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9892c2be1a12afa706fd6cca1b13a8199654b68e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:18:a9:69:5c:67:93:4d:8d:9a:50:b5:39:68:
ca:7a:19:95:de:80:bb:9c:80:ea:12:87:f1:be:87:
a3:3d:db:24:28:77:eb:3c:0c:90:77:36:c8:61:7b:
52:9b:af:68:48:03:78:92:db:3c:95:00:d7:c5:a1:
5a:a7:34:e1:c5:98:ea:c0:f2:e8:3b:da:cb:79:c2:
94:8c:82:f6:97:b2:b0:0a:bb:09:04:ea:83:6c:07:
2e:ac:da:63:cf:96:76:c7:25:d3:d9:6c:bc:22:91:
3f:cd:74:ee:37:a2:4a:51:51:18:eb:4c:54:6e:54:
9e:e7:2b:9c:02:f9:de:c5:fe:35:82:96:92:fd:24:
eb:1c:50:3d:b4:84:9e:08:a5:bf:40:51:36:50:f7:
12:fc:10:99:af:0b:3c:96:92:9a:09:f0:74:b2:2c:
11:9f:37:c4:f0:7d:88:cb:d0:3d:8f:eb:6e:13:26:
ff:11:73:e0:64:48:19:e5:11:7a:2b:35:b8:9c:69:
69:26:0d:bf:8e:e1:8b:73:eb:c9:6e:a5:e4:4d:41:
0c:28:9a:c4:5d:3f:77:90:27:55:b7:49:0c:bd:50:
43:35:ad:0d:a2:a7:04:e7:6f:e9:4a:1a:2d:84:d2:
63:8f:00:89:51:7b:7f:1d:e7:5d:7c:2d:9d:2a:ff:
8f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:92:C2:BE:1A:12:AF:A7:06:FD:6C:CA:1B:13:A8:19:96:54:B6:8E
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/mJLCvhoSr6cG_WzKGxOoGZZUto4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.131.0/24
159.148.245.0/24
Signature Algorithm: sha256WithRSAEncryption
55:6d:d2:5f:56:2f:d1:9f:32:2e:42:92:dd:8a:5f:cf:c5:47:
5f:19:3b:8c:95:a1:14:ad:b1:6d:39:bc:8d:ad:0f:ee:a6:fb:
f1:25:07:b5:e7:9a:82:0a:58:c4:ba:be:ad:19:ea:69:58:37:
da:44:c7:39:5e:b5:a0:8c:1e:47:ea:ed:a4:08:d7:b5:cb:95:
a5:bc:bd:04:4f:2c:3a:3e:fa:8e:7a:ec:3d:90:5d:0e:c0:35:
ee:b8:a2:0b:d3:23:14:2a:40:30:4f:a8:cb:0c:b5:1a:3c:21:
c1:0f:d0:a2:9e:38:08:20:4e:9b:ea:aa:14:ef:a6:06:df:e0:
f2:6f:5a:cd:5c:27:68:8b:48:b3:2c:41:0d:de:d3:ce:81:72:
33:ae:d6:e4:9c:80:8f:d8:f9:99:04:f6:a8:ca:85:ec:36:16:
59:ee:f6:f3:16:c8:17:81:a4:6f:21:c2:24:1a:eb:ef:e7:22:
65:9e:ab:6a:a8:b0:f4:d5:cd:d8:81:3a:71:d4:74:f0:6a:f7:
78:41:80:23:5c:80:a7:56:eb:b5:59:ef:4c:e9:a0:0f:4d:dd:
36:83:28:b4:6e:9f:de:65:24:d6:a2:18:1f:ac:ce:5e:bc:f3:
3a:86:2f:a1:47:e8:52:ee:fd:4a:8b:26:ff:f3:a0:26:78:39:
23:ef:a9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:22:38 2026 by rpki-client