Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/HrMv_FYrdkaHEcurXx6vBq9jyi0.roa
File: HrMv_FYrdkaHEcurXx6vBq9jyi0.roa (raw, json)
Hash identifier: 58Bm8D826M7QyL4locfu8idT5rMJvWnT/QxJA04t5vI=
Subject key identifier: 1E:B3:2F:FC:56:2B:76:46:87:11:CB:AB:5F:1E:AF:06:AF:63:CA:2D
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 019D8F7D84805A5C226538EBABD6394F98A7
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/HrMv_FYrdkaHEcurXx6vBq9jyi0.roa
Signing time: Wed 15 Apr 2026 04:54:20 +0000
ROA not before: Wed 15 Apr 2026 04:54:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213323
IP address blocks: 80.96.48.0/23 maxlen: 23
80.97.150.0/23 maxlen: 23
81.181.114.0/23 maxlen: 23
81.181.232.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:8f:7d:84:80:5a:5c:22:65:38:eb:ab:d6:39:4f:98:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 15 04:54:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1eb32ffc562b76468711cbab5f1eaf06af63ca2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:66:16:62:78:da:10:49:f2:b7:f7:a1:71:c1:
12:f4:ce:3b:ca:5e:22:d4:7f:cd:cc:78:ed:b2:d9:
a0:b8:fe:67:53:7f:8f:65:e2:9d:b1:e3:7c:3b:65:
64:0f:24:b9:7d:3f:3b:09:1d:30:9e:71:6d:98:49:
3d:8b:fe:b2:5c:72:cb:70:d2:cd:ac:a6:5d:a1:2b:
48:23:db:53:3e:f4:f3:8d:cc:d1:0d:5e:22:6b:8f:
fa:38:69:a4:76:d9:9d:54:3d:05:9c:ce:57:53:f4:
0c:29:96:a4:be:e7:c3:21:0e:1b:a5:29:e8:52:96:
99:24:43:1b:9b:54:af:ea:3c:88:00:fa:25:27:1a:
f6:65:f8:33:dd:3a:4d:ce:8e:4d:80:d3:85:7a:5d:
4d:f0:e7:eb:10:69:45:01:ae:f2:f6:b1:d0:89:8e:
e6:59:df:d2:b1:b2:40:75:ab:da:ee:8a:9d:13:a2:
11:f5:69:6e:8a:f8:97:2a:3a:73:8d:da:54:a8:d0:
26:58:a9:ef:df:d7:ef:db:87:61:99:d4:8b:c8:de:
3e:3b:98:6c:b6:a9:40:ff:a3:d7:d6:cf:52:7c:d7:
5f:eb:29:36:93:38:44:c7:6f:59:3c:05:e6:1a:6e:
ae:dc:f2:61:b9:10:b8:b6:75:fc:cc:56:b3:b2:d8:
37:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B3:2F:FC:56:2B:76:46:87:11:CB:AB:5F:1E:AF:06:AF:63:CA:2D
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/HrMv_FYrdkaHEcurXx6vBq9jyi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.48.0/23
80.97.150.0/23
81.181.114.0/23
81.181.232.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:5e:4d:46:47:3c:3c:02:bc:a8:c6:b3:ff:d5:d5:8a:1a:bd:
2c:67:93:b2:a5:5f:9a:b1:d8:e2:02:00:73:c1:72:28:3b:7c:
a2:1a:91:34:66:78:ef:85:30:6a:6b:1a:00:c8:72:65:e5:48:
46:0d:70:26:2c:db:3c:4c:85:f1:95:eb:61:3e:b3:0a:b7:13:
fd:90:ca:b4:9c:a1:4b:1e:43:f4:26:1f:e9:de:1a:ed:45:f5:
3d:36:65:14:44:5c:d2:f1:4d:d8:79:8f:3a:29:a5:c8:e5:58:
9d:d0:3f:02:99:b3:2e:92:47:13:79:7b:a9:8e:4e:f7:ee:0b:
86:2f:de:a4:21:2c:a7:f5:7f:77:60:60:60:0a:65:06:38:1b:
01:6b:78:6e:5d:f5:85:75:78:ba:1e:02:60:4a:4f:28:b7:b7:
19:c9:df:24:58:35:9d:72:d7:e2:74:e1:a9:4f:9b:22:6d:ac:
84:db:12:9f:25:7b:97:5e:cb:6b:0b:e6:ef:5e:7b:04:4c:fe:
39:31:10:5c:b1:8c:e9:ed:4d:da:c7:f0:73:26:a3:c9:05:9c:
5b:69:35:51:48:99:ef:67:08:d2:9d:14:bb:99:32:d6:6b:0d:
2b:cc:ea:ed:6a:2a:b4:82:e1:1b:27:d9:e7:75:13:5e:90:24:
d0:82:07:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:11:39 2026 by rpki-client