Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/GUfx0kxQaRuU4ZNreYw2APXI9pY.roa
File: GUfx0kxQaRuU4ZNreYw2APXI9pY.roa (raw, json)
Hash identifier: RF1Q4ReKdRsen02ofp/EoLwpUqLRnY2vebMTfBPWYSM=
Subject key identifier: 19:47:F1:D2:4C:50:69:1B:94:E1:93:6B:79:8C:36:00:F5:C8:F6:96
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 019EBFBB22C16D946A872B77009B871778C8
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/GUfx0kxQaRuU4ZNreYw2APXI9pY.roa
Signing time: Sat 13 Jun 2026 06:46:12 +0000
ROA not before: Sat 13 Jun 2026 06:46:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 215633
IP address blocks: 62.60.135.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.144.0/24 maxlen: 24
62.60.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:bb:22:c1:6d:94:6a:87:2b:77:00:9b:87:17:78:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 13 06:46:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1947f1d24c50691b94e1936b798c3600f5c8f696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:de:4c:7c:1f:79:71:15:0b:21:60:06:cc:f7:
cd:ad:34:3d:15:7f:6b:30:ab:6e:94:37:0b:fb:b9:
8d:5a:9e:84:cf:74:19:3b:b7:ff:b3:3f:a7:89:44:
1f:a9:d2:26:78:a5:8b:99:fb:67:27:12:b5:7e:56:
6e:f4:2d:fd:d6:f6:38:0f:07:dd:85:04:95:54:7c:
b8:36:96:d2:54:63:10:a6:96:42:44:bd:57:3a:56:
7d:e2:9b:52:37:7d:a6:44:ea:39:a3:fb:31:25:7c:
ec:04:f1:79:4a:d6:40:ea:3c:49:be:94:c8:1b:47:
c8:08:d3:67:cf:73:80:45:82:21:91:a7:f6:09:46:
ec:0a:e6:93:c0:85:5e:f8:51:26:51:82:c9:46:ba:
f8:ba:6b:07:36:69:2c:fb:03:c1:9c:ed:52:a3:ce:
50:d1:7b:b9:d7:39:cf:35:74:30:b7:4f:9f:f3:a7:
d5:8d:c1:ca:28:fc:e2:f0:c1:1b:11:1b:f3:f0:18:
54:5a:a5:20:38:a7:14:bf:0f:6d:98:4c:f1:a4:70:
4a:77:a6:45:68:1c:dc:ed:83:51:56:42:c9:a3:52:
3d:96:a6:da:08:86:92:74:f8:22:6e:fe:84:19:82:
22:de:21:99:67:ae:57:0a:f8:63:a9:16:7a:12:f2:
31:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:47:F1:D2:4C:50:69:1B:94:E1:93:6B:79:8C:36:00:F5:C8:F6:96
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/GUfx0kxQaRuU4ZNreYw2APXI9pY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.135.0/24
62.60.141.0/24
62.60.144.0/24
62.60.146.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:35:5c:79:ea:d6:c4:0a:14:fa:89:04:73:b5:4e:b7:1c:a8:
63:b7:58:90:db:ef:33:1e:67:5b:c3:82:48:c5:8b:a6:ac:a0:
ce:7c:c8:02:eb:27:ee:c8:51:cc:7b:a3:aa:64:ce:13:94:2b:
46:9d:0a:1e:be:59:ae:a6:9b:a1:12:20:b2:21:84:21:69:97:
de:8e:df:93:ad:40:bf:9a:0a:67:26:91:36:20:34:87:5e:61:
26:2c:84:53:ac:3a:ae:9f:e5:5a:70:c0:07:a3:35:b2:a1:db:
d5:29:42:53:a3:e3:8c:02:58:1d:2b:42:86:08:cc:56:2e:33:
04:35:6f:99:18:88:5d:32:9d:ef:2f:91:c6:e8:d4:e2:70:34:
e4:20:65:d0:72:8b:f1:47:5e:e1:3a:3d:e9:c9:3f:92:1d:bd:
96:00:f8:c6:e3:f7:31:b6:b0:28:f2:20:1f:8a:6a:0f:a0:b6:
53:b8:79:e4:29:c9:99:ae:6e:7e:7f:96:6e:09:11:27:f9:06:
3a:86:6e:65:56:56:64:3a:31:13:38:f8:21:89:a8:b4:fd:dd:
22:ad:f0:00:87:60:e5:69:61:33:11:d4:b5:f1:55:52:29:5a:
3e:bd:f1:94:87:e6:4e:f6:aa:6a:aa:c2:0c:6b:2f:92:38:2f:
09:db:ec:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:07:31 2026 by rpki-client