Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/n4PyCzNuArzvMMSs4_9M2Rr_Pcc.roa
File: n4PyCzNuArzvMMSs4_9M2Rr_Pcc.roa (raw, json)
Hash identifier: v767wGXxzM+38xa2Dth+I2XGtOv/gRqhBPQGRj3YQas=
Subject key identifier: 9F:83:F2:0B:33:6E:02:BC:EF:30:C4:AC:E3:FF:4C:D9:1A:FF:3D:C7
Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7
Certificate serial: 019D8673F7A74B0B18D45493A88596796914
Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/n4PyCzNuArzvMMSs4_9M2Rr_Pcc.roa
Signing time: Mon 13 Apr 2026 10:47:20 +0000
ROA not before: Mon 13 Apr 2026 10:47:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199144
IP address blocks: 2a06:1301:4100::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:86:73:f7:a7:4b:0b:18:d4:54:93:a8:85:96:79:69:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7
Validity
Not Before: Apr 13 10:47:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9f83f20b336e02bcef30c4ace3ff4cd91aff3dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f7:ea:e1:cb:84:8c:41:78:3e:1a:73:16:54:
2d:30:93:b3:08:4b:c0:85:04:dc:95:7b:47:4a:24:
5b:ed:f2:04:38:42:f0:4b:0f:bb:2e:9b:89:f4:db:
60:34:21:ad:47:d9:b0:50:16:6e:85:26:86:5e:06:
dc:e4:b7:1a:ef:c8:15:d9:0d:ac:2f:dc:c3:ad:28:
73:36:dc:60:e4:f2:b6:5d:d1:52:e5:ec:3a:9d:4c:
84:9c:10:ac:3d:f1:60:6c:b2:a9:c5:16:62:a5:c2:
4d:16:7e:e3:18:4a:e8:22:ad:79:5c:5e:e5:0f:58:
f7:40:92:ff:6b:b2:a2:db:ec:ec:e5:84:af:94:81:
c2:ab:7e:1f:c8:22:86:8b:ec:c7:83:95:88:e3:21:
d0:73:f7:1c:7e:72:ce:f5:42:cb:95:51:3b:a6:b0:
1a:69:77:b7:83:5a:31:5b:08:ce:e0:ee:82:4c:35:
aa:fb:60:97:1f:61:2b:2f:be:75:aa:77:99:cc:eb:
86:d0:95:8e:d8:b0:95:dd:08:94:5b:50:03:34:82:
d5:bf:f8:39:ba:8a:33:4f:6d:7a:ad:7c:74:6d:23:
ac:2e:7b:68:5e:f5:91:7a:e8:a8:c0:b6:61:2b:87:
6b:a0:ec:0a:29:14:6a:5a:d7:a9:8f:ca:5c:1d:c0:
6b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:83:F2:0B:33:6E:02:BC:EF:30:C4:AC:E3:FF:4C:D9:1A:FF:3D:C7
X509v3 Authority Key Identifier:
keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/n4PyCzNuArzvMMSs4_9M2Rr_Pcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1301:4100::/48
Signature Algorithm: sha256WithRSAEncryption
b9:11:c2:60:1f:cc:50:fe:e9:b7:cb:8b:4e:fb:c7:9e:02:d3:
bf:04:40:e0:81:97:c1:e9:24:1e:e8:7a:ab:ec:e1:f5:87:3c:
5f:ba:64:a1:13:f2:6f:db:2b:e2:46:22:5b:c8:db:8c:87:85:
d3:26:f1:d2:6f:22:fe:56:2b:14:e1:e9:17:24:2a:83:92:c9:
af:c9:21:1f:4d:64:f1:f1:b3:1b:a1:b5:8d:14:8e:5a:3a:77:
e8:de:e9:4b:e6:6c:b9:12:f1:83:76:5f:31:8b:be:ad:63:68:
af:f4:3a:80:92:de:80:cd:25:55:9a:ec:1a:a2:4c:94:83:05:
0a:70:ed:fd:25:55:44:16:f4:06:fc:02:c3:b3:d1:f6:35:8e:
47:d1:07:3c:be:f8:29:be:74:4b:b9:6c:fd:16:a7:f6:fb:d3:
ea:0a:46:2d:dd:41:8e:5e:0e:c2:b4:a0:d2:56:43:e9:59:31:
2a:3a:11:34:14:67:30:a1:bc:78:2b:6d:13:d3:6f:16:1f:b2:
01:30:73:a9:b3:8b:d7:cf:39:25:db:90:9e:2c:06:79:e3:71:
35:5b:bf:dc:5c:fc:3b:7c:bb:a1:84:5b:2e:26:f9:cc:ef:31:
3e:4c:14:d2:15:1b:26:fb:a2:92:60:15:56:0f:f7:88:35:e1:
47:c5:ac:aa
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZ2Gc/enSwsY1FSTqIWWeWkUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx
ODhlYTcwHhcNMjYwNDEzMTA0NzIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjgzZjIwYjMzNmUwMmJjZWYzMGM0YWNlM2ZmNGNkOTFhZmYzZGM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Pfq4cuEjEF4PhpzFlQtMJOzCEvA
hQTclXtHSiRb7fIEOELwSw+7LpuJ9NtgNCGtR9mwUBZuhSaGXgbc5Lca78gV2Q2s
L9zDrShzNtxg5PK2XdFS5ew6nUyEnBCsPfFgbLKpxRZipcJNFn7jGEroIq15XF7l
D1j3QJL/a7Ki2+zs5YSvlIHCq34fyCKGi+zHg5WI4yHQc/ccfnLO9ULLlVE7prAa
aXe3g1oxWwjO4O6CTDWq+2CXH2ErL751qneZzOuG0JWO2LCV3QiUW1ADNILVv/g5
uoozT216rXx0bSOsLntoXvWReuiowLZhK4droOwKKRRqWtepj8pcHcBrUQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJ+D8gszbgK87zDErOP/TNka/z3HMB8GA1UdIwQY
MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt
ZTU3NjhkNmIxODJjLzEvbjRQeUN6TnVBcnp2TU1TczRfOU0yUnJfUGNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj
LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgYTAUEA
MA0GCSqGSIb3DQEBCwUAA4IBAQC5EcJgH8xQ/um3y4tO+8eeAtO/BEDggZfB6SQe
6Hqr7OH1hzxfumShE/Jv2yviRiJbyNuMh4XTJvHSbyL+VisU4ekXJCqDksmvySEf
TWTx8bMbobWNFI5aOnfo3ulL5my5EvGDdl8xi76tY2iv9DqAkt6AzSVVmuwaokyU
gwUKcO39JVVEFvQG/ALDs9H2NY5H0Qc8vvgpvnRLuWz9Fqf2+9PqCkYt3UGOXg7C
tKDSVkPpWTEqOhE0FGcwobx4K20T028WH7IBMHOps4vXzzkl25CeLAZ543E1W7/c
XPw7fLuhhFsuJvnM7zE+TBTSFRsm+6KSYBVWD/eINeFHxayq
-----END CERTIFICATE-----
Generated at Fri Apr 17 23:23:14 2026 by rpki-client