Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/eWxjkloqakNfEmZwEtQCfivxqIs.roa
File: eWxjkloqakNfEmZwEtQCfivxqIs.roa (raw, json)
Hash identifier: 5ErIQvliDAsKQcv1GoMnvUfA57BgdmnpadbjnGhR00Y=
Subject key identifier: 79:6C:63:92:5A:2A:6A:43:5F:12:66:70:12:D4:02:7E:2B:F1:A8:8B
Certificate issuer: /CN=8a01ab6cd44a7a3ea4002c106a96c427b52c81d5
Certificate serial: 019D971B95B495CEF430A965D81E719FA3C8
Authority key identifier: 8A:01:AB:6C:D4:4A:7A:3E:A4:00:2C:10:6A:96:C4:27:B5:2C:81:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/eWxjkloqakNfEmZwEtQCfivxqIs.roa
Signing time: Thu 16 Apr 2026 16:24:20 +0000
ROA not before: Thu 16 Apr 2026 16:24:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402215
IP address blocks: 212.66.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:1b:95:b4:95:ce:f4:30:a9:65:d8:1e:71:9f:a3:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a01ab6cd44a7a3ea4002c106a96c427b52c81d5
Validity
Not Before: Apr 16 16:24:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=796c63925a2a6a435f12667012d4027e2bf1a88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:53:30:40:9f:84:68:71:71:7f:11:9d:ea:96:
37:ab:64:a2:06:30:cb:55:c8:e8:a9:0d:b5:1d:d2:
9f:5d:db:8f:a3:29:ae:76:aa:a5:87:24:5f:ed:dc:
8a:e5:18:06:72:4d:66:c4:32:cf:4b:e4:48:7c:e4:
2b:0c:8d:27:1b:08:e0:8e:1f:31:5f:8f:74:cd:6e:
3a:af:13:58:e9:69:83:24:f4:80:4a:b6:2e:6a:ee:
03:5f:d5:84:15:69:19:04:ff:69:d7:1d:fb:ad:36:
00:c4:2f:d8:88:fd:d2:f2:f1:77:d6:ed:62:a7:28:
a3:78:f7:26:17:4d:6e:70:50:a6:4a:6f:ed:b2:8a:
1b:8a:26:25:15:e6:f2:b7:09:8d:30:d5:c1:47:6a:
8b:70:0b:30:a1:29:e9:d8:8d:06:66:23:19:3f:ec:
18:32:63:dd:76:89:33:50:cb:81:ae:16:2c:c0:18:
2f:ff:80:9b:7d:e9:75:dc:49:11:0a:19:69:06:7a:
a1:5a:b0:79:d8:73:c3:c4:cd:ea:b9:c5:fc:01:cf:
6c:09:86:dc:b5:1b:cb:7c:41:ce:b7:32:ee:bc:68:
ec:8b:4b:13:4c:77:23:fa:3a:ec:a8:6e:7c:39:8a:
55:cf:0e:fd:aa:b6:b0:7f:80:d7:1c:3d:3c:cb:99:
75:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6C:63:92:5A:2A:6A:43:5F:12:66:70:12:D4:02:7E:2B:F1:A8:8B
X509v3 Authority Key Identifier:
keyid:8A:01:AB:6C:D4:4A:7A:3E:A4:00:2C:10:6A:96:C4:27:B5:2C:81:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/igGrbNRKej6kACwQapbEJ7UsgdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/eWxjkloqakNfEmZwEtQCfivxqIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5832f4-e4e2-498b-a06a-9febf8c3e33f/1/igGrbNRKej6kACwQapbEJ7UsgdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.66.48.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:a5:60:9f:0f:7f:1c:b3:82:bd:89:cc:23:fb:9d:6b:b1:11:
45:a9:a0:aa:71:70:04:06:4e:d4:b4:dc:16:18:69:31:8e:e7:
5b:e6:1f:cf:8a:0a:14:06:fd:69:77:4b:6a:9f:a3:3c:9c:0f:
14:e8:cf:c9:19:0f:34:59:6f:81:1a:78:a3:17:d9:99:91:4a:
66:61:b5:de:71:a8:fb:00:cb:96:87:91:ab:61:c1:cb:e3:fb:
f3:c5:d1:8f:99:c9:ab:0d:f5:0e:60:44:ba:71:1c:b0:41:0e:
7b:91:2e:a1:48:1c:1d:65:15:77:a8:fc:f6:11:80:cb:e6:d7:
48:92:b1:c1:a0:16:d0:57:d4:81:01:f1:82:48:67:73:a4:ae:
83:8b:4a:65:4c:11:69:c4:b9:6a:bd:e2:fa:e4:c5:35:40:b5:
9c:00:37:ff:b8:30:69:47:d0:a8:88:4d:5d:6a:9c:a5:8a:42:
1b:5d:f7:3f:a0:ee:f0:13:27:3d:e7:3c:b4:ac:f0:31:e3:dd:
af:33:8b:17:c9:69:ec:a3:69:5f:62:fd:78:be:3c:b7:a8:02:
55:fc:1b:7b:e7:cc:16:7e:d3:55:57:04:07:3f:2c:43:c5:2c:
a0:30:b2:63:32:05:de:27:d8:95:c2:ce:cf:31:0e:35:0b:56:
15:b2:88:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:26:56 2026 by rpki-client