Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Phy0I7Gj2pDTw3D6rRdkfHEySp8.roa
File: Phy0I7Gj2pDTw3D6rRdkfHEySp8.roa (raw, json)
Hash identifier: p1He9juUBweuD3aw5hBIXBKnLA9/ttpNdBu4a9O5Q6M=
Subject key identifier: 3E:1C:B4:23:B1:A3:DA:90:D3:C3:70:FA:AD:17:64:7C:71:32:4A:9F
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 019C7038C195F2B4183CF3696D8BB93230CE
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Phy0I7Gj2pDTw3D6rRdkfHEySp8.roa
Signing time: Wed 18 Feb 2026 10:08:13 +0000
ROA not before: Wed 18 Feb 2026 10:08:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 202332
IP address blocks: 80.96.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:70:38:c1:95:f2:b4:18:3c:f3:69:6d:8b:b9:32:30:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Feb 18 10:08:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3e1cb423b1a3da90d3c370faad17647c71324a9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9a:9a:9a:3c:7b:3a:08:cc:3f:cc:a3:32:86:
6a:43:0b:3d:63:e9:1b:15:af:45:4c:b4:28:0a:a4:
e0:97:42:bc:fc:3b:f9:a0:aa:c3:ce:dc:cd:38:77:
2f:b7:51:58:4e:25:fc:54:b6:56:30:23:ae:6b:b3:
47:78:1d:8b:c0:fc:86:e6:0e:32:63:45:6c:1a:6a:
08:24:bd:ab:15:6c:15:21:e7:3c:cc:0f:ef:b9:f2:
ee:f9:ba:20:46:b5:c3:59:27:6e:9e:c4:22:2f:5d:
04:e8:71:4c:6e:00:a9:cf:56:27:2f:ca:d3:09:80:
30:aa:8b:74:fb:2f:21:b5:02:1a:b3:4d:20:f3:3a:
4a:a9:27:14:00:40:2d:b9:aa:5b:c9:a0:c7:f8:1f:
84:7e:84:38:26:8d:70:a0:59:21:4d:d3:c3:65:f7:
de:e2:7d:f1:2b:3c:e6:09:57:2c:6f:78:61:8d:7a:
8a:fe:8a:87:b2:5d:2f:6e:84:48:38:45:60:80:98:
cd:4b:4f:98:cf:39:2c:0c:85:a1:81:8d:e8:fb:85:
05:ae:6e:3f:ef:21:ec:47:a8:ce:fc:98:2c:7a:34:
cd:b9:64:b3:a2:42:dc:26:73:81:11:53:c5:66:c6:
97:e3:32:ba:85:c8:32:f3:40:6b:d3:d8:02:7c:e2:
56:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1C:B4:23:B1:A3:DA:90:D3:C3:70:FA:AD:17:64:7C:71:32:4A:9F
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Phy0I7Gj2pDTw3D6rRdkfHEySp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.78.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:1b:0d:95:bd:2d:20:08:d7:a6:c5:d2:5f:f3:42:16:29:42:
aa:d6:54:33:15:88:82:eb:cd:13:72:0f:db:90:bc:e0:ba:0c:
32:92:65:79:36:06:c9:46:f1:ca:d0:a9:e6:6f:7a:22:21:b7:
86:5b:fd:9c:5c:04:42:d2:a2:b2:d6:98:78:14:4f:66:e7:14:
eb:e6:a4:f6:d8:53:30:b1:f3:95:06:54:11:a4:a5:e2:b4:0d:
f6:0a:5d:ac:3c:b5:10:a2:27:22:86:ca:e5:67:6a:51:6d:56:
b7:a7:70:b6:61:31:fe:c9:7e:c4:72:2c:db:21:72:44:25:b7:
89:8a:8a:36:33:0c:b7:ff:f6:78:c2:ca:06:07:ea:b4:41:e1:
87:28:e3:b5:5b:b6:e7:9d:ee:b8:be:c6:86:3d:82:ca:8d:04:
b3:f3:85:71:16:e9:2d:6f:b1:da:53:51:df:5d:a3:64:eb:4f:
af:b6:a3:22:80:7d:a9:52:dd:2f:4e:f0:4c:52:9e:e7:fc:9e:
81:31:fc:5c:ca:e5:9d:81:6e:4e:a1:b4:84:2e:0c:92:02:ba:
68:6f:70:6f:70:46:a2:21:eb:c8:7f:98:f6:16:ad:f3:8b:51:
bc:82:e8:84:d6:e9:e3:a0:cb:9f:fe:62:18:80:29:ba:63:ec:
d6:46:2c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:11:52 2026 by rpki-client