Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/M14xo_CjfWqzAqnbxh_nHmNq1aA.roa
File: M14xo_CjfWqzAqnbxh_nHmNq1aA.roa (raw, json)
Hash identifier: 4CoJeZzMAxXXWnHh4hW+p8AyqZ5yU/74Z6UgXwaueCY=
Subject key identifier: 33:5E:31:A3:F0:A3:7D:6A:B3:02:A9:DB:C6:1F:E7:1E:63:6A:D5:A0
Certificate issuer: /CN=7698c999e7f0493ee36634e892b37c9f3bf9407d
Certificate serial: 019EACF92D649DA2DD730346010C35445564
Authority key identifier: 76:98:C9:99:E7:F0:49:3E:E3:66:34:E8:92:B3:7C:9F:3B:F9:40:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpjJmefwST7jZjTokrN8nzv5QH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/M14xo_CjfWqzAqnbxh_nHmNq1aA.roa
Signing time: Tue 09 Jun 2026 15:21:11 +0000
ROA not before: Tue 09 Jun 2026 15:21:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 35627
IP address blocks: 195.160.166.0/23 maxlen: 24
195.160.166.0/24 maxlen: 24
195.160.167.0/24 maxlen: 24
2001:67c:5c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/dpjJmefwST7jZjTokrN8nzv5QH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/dpjJmefwST7jZjTokrN8nzv5QH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpjJmefwST7jZjTokrN8nzv5QH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ac:f9:2d:64:9d:a2:dd:73:03:46:01:0c:35:44:55:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7698c999e7f0493ee36634e892b37c9f3bf9407d
Validity
Not Before: Jun 9 15:21:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=335e31a3f0a37d6ab302a9dbc61fe71e636ad5a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ac:50:e8:0c:39:a4:e9:05:0f:aa:ad:7a:48:
da:cd:41:fa:af:bc:3f:5c:47:1e:87:20:a6:38:6c:
5d:e1:f7:8c:18:d2:eb:10:01:1e:7e:ec:c8:c7:15:
52:c4:a8:c1:86:ee:fd:aa:30:d2:2b:33:c8:95:e9:
3d:cc:5b:bb:d3:b3:f9:37:77:ae:4b:9f:c9:5f:19:
44:8e:05:82:55:da:93:1f:27:62:fb:b0:a0:1b:eb:
01:fb:36:79:ec:96:e0:09:c6:c9:66:99:87:f2:96:
c2:06:b4:a7:69:6f:67:32:f4:0b:27:00:67:ea:52:
34:ec:a9:d1:2d:3e:48:3f:36:98:62:76:47:a9:a0:
82:aa:22:4e:18:cd:dd:c5:b0:0f:1a:ec:2e:e3:68:
93:12:30:f5:be:ca:64:e4:a3:31:c4:5f:29:83:ad:
90:f6:fe:fa:58:30:cd:0f:a7:29:1c:ef:b5:bc:be:
97:94:41:59:bd:77:d9:97:3f:cb:ff:a0:78:40:23:
a6:13:f5:4b:68:cd:28:cc:cd:7e:a7:3d:3b:d5:7f:
d9:2f:78:ea:f0:c6:59:34:65:56:9e:9a:f6:ba:49:
94:13:54:52:80:90:51:48:dc:7f:82:75:b3:bc:53:
d3:56:cd:8e:57:b2:48:e4:81:cf:e4:a5:05:65:24:
a6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5E:31:A3:F0:A3:7D:6A:B3:02:A9:DB:C6:1F:E7:1E:63:6A:D5:A0
X509v3 Authority Key Identifier:
keyid:76:98:C9:99:E7:F0:49:3E:E3:66:34:E8:92:B3:7C:9F:3B:F9:40:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpjJmefwST7jZjTokrN8nzv5QH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/M14xo_CjfWqzAqnbxh_nHmNq1aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/910bd4-7fda-4934-a403-b136fe40df4d/1/dpjJmefwST7jZjTokrN8nzv5QH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.160.166.0/23
IPv6:
2001:67c:5c::/48
Signature Algorithm: sha256WithRSAEncryption
09:7c:bd:91:35:2f:14:f4:d1:da:58:23:90:cf:e1:7e:7e:a0:
69:26:81:69:e2:8b:16:74:b3:8d:97:13:85:67:9c:da:df:fe:
57:68:9e:a4:6d:d7:40:94:1d:75:fe:4e:1c:4d:63:e7:33:37:
f3:71:5a:02:48:12:c3:f4:9b:1a:c7:30:c7:5c:56:f3:0d:9b:
42:0b:e1:d9:f4:63:58:53:4c:d6:2e:83:76:cb:69:87:1b:58:
af:49:dd:f6:95:79:29:cc:24:c7:61:de:74:06:ee:ee:fc:3b:
55:06:7b:6d:75:24:70:ba:04:9d:c5:cc:bb:0b:88:c7:69:14:
84:a0:b1:ed:4a:92:f3:5b:42:a8:c5:69:eb:85:97:77:80:f9:
3c:be:9e:5e:97:86:ad:80:a0:dc:86:0f:82:ab:a2:77:7d:ab:
c6:8a:49:5e:c1:42:82:44:05:46:e5:c4:cb:77:2b:c9:f8:11:
9a:59:f8:34:1e:57:6a:48:90:02:82:44:a3:ba:d0:d6:ab:47:
88:de:46:b8:91:7f:55:1c:53:9e:bf:29:36:d9:54:a9:3f:97:
fd:7f:9e:de:1b:f3:b0:28:2c:8a:34:f4:fe:f6:3c:7a:61:a3:
30:46:3e:c0:eb:6d:32:dc:2d:fd:29:79:2e:c0:8e:7b:dc:37:
a1:49:1d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:34:49 2026 by rpki-client