Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/qwp0olELPJp0MTJ3tdwMCJr1fnM.roa
File: qwp0olELPJp0MTJ3tdwMCJr1fnM.roa (raw, json)
Hash identifier: jbcE35ErLESlHqxRpnVkWMFlrlagMnRemzz5NJymVWI=
Subject key identifier: AB:0A:74:A2:51:0B:3C:9A:74:31:32:77:B5:DC:0C:08:9A:F5:7E:73
Certificate issuer: /CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Certificate serial: 019CACE04DAC2F139F2695ADAD2FE72068F2
Authority key identifier: E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/qwp0olELPJp0MTJ3tdwMCJr1fnM.roa
Signing time: Mon 02 Mar 2026 04:48:26 +0000
ROA not before: Mon 02 Mar 2026 04:48:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402186
IP address blocks: 62.164.192.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.mft
rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:e0:4d:ac:2f:13:9f:26:95:ad:ad:2f:e7:20:68:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Validity
Not Before: Mar 2 04:48:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ab0a74a2510b3c9a74313277b5dc0c089af57e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:69:18:87:2e:b1:57:01:67:b7:b6:c1:d0:d6:
3d:51:12:16:37:6c:c4:92:54:54:a2:4a:a8:ba:15:
e8:10:8c:e5:9e:e6:0e:b0:db:14:53:e8:78:50:a7:
d7:23:b7:75:e1:f2:6e:c9:19:02:dd:70:45:1d:98:
5b:6d:cb:e2:07:dd:f1:a3:0f:e7:52:36:d1:6f:14:
8d:27:cc:ee:bf:7f:9a:c4:64:a3:53:3a:60:f2:65:
34:78:87:1d:79:9b:94:08:c4:39:67:72:11:0a:b4:
e7:25:e4:23:0a:c6:fc:8e:01:89:8a:21:42:22:38:
9b:62:3f:6c:ba:85:97:83:2e:4a:5b:b7:83:2c:b6:
ec:16:10:ed:cb:17:ec:39:93:2e:ec:dd:ec:d5:d4:
ce:11:11:f3:6b:fa:05:95:25:be:b6:ae:fd:eb:2e:
0a:fd:0f:b7:5b:57:01:55:01:45:65:32:eb:b3:06:
6d:d8:ee:cd:52:03:c6:19:77:47:24:a9:d4:47:36:
ea:08:5f:5a:9a:00:06:5e:03:02:3c:ec:6c:32:28:
59:6c:be:55:25:d6:15:93:42:ec:4c:6b:70:7c:15:
9a:8f:71:cf:94:70:12:24:98:90:84:64:ef:ba:12:
2c:15:9e:e7:25:2e:f5:e2:e8:e5:d1:69:24:23:69:
a5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0A:74:A2:51:0B:3C:9A:74:31:32:77:B5:DC:0C:08:9A:F5:7E:73
X509v3 Authority Key Identifier:
keyid:E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/qwp0olELPJp0MTJ3tdwMCJr1fnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.164.192.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:03:1a:42:81:97:60:7e:ad:0f:95:c6:fc:9e:1e:fc:6f:08:
90:9a:b6:5e:ee:15:33:8d:35:0d:29:2e:86:28:90:97:a7:6b:
88:5f:d9:cd:12:fe:93:bc:c6:39:01:e3:6f:9a:85:a0:f5:b3:
34:30:7e:d3:b8:28:f6:9d:ce:61:9d:29:78:de:c4:fe:91:4f:
b7:ad:1e:61:e7:33:09:a2:00:a2:32:28:85:fc:e7:7e:58:ef:
71:d7:e8:e5:a0:18:4b:9b:01:c6:12:07:56:a3:3d:ee:58:ab:
3a:e3:aa:22:ba:83:b6:69:85:a4:c6:d3:6f:38:5b:23:44:d3:
31:19:ad:52:26:48:7e:60:f8:95:01:d0:12:4c:6f:be:d9:cc:
14:0f:5b:3a:37:35:2a:cc:a8:6a:42:24:0b:37:58:97:3c:23:
01:fb:95:19:a9:d5:97:8b:ba:14:4e:b0:43:23:98:a9:b8:16:
19:7f:7d:e7:04:ed:fb:59:14:fa:c3:06:17:5c:6e:6b:c8:b0:
6c:a1:61:53:fe:6d:82:f0:69:bc:20:b0:65:63:ee:97:14:50:
7b:f6:cf:a5:1c:87:75:70:04:b3:a2:1a:bc:df:c9:bb:f7:45:
50:43:fd:ca:64:b1:16:2f:4b:87:be:fe:da:ba:fa:77:49:fb:
c0:ff:49:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:21:11 2026 by rpki-client