Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/TaeiBb-weqmAnS2-aEakCkRvAJg.roa
File: TaeiBb-weqmAnS2-aEakCkRvAJg.roa (raw, json)
Hash identifier: gHpMiaP77RrjoVfj8ohHHdCKPn+U3GBo2UfbpOqwdT0=
Subject key identifier: 4D:A7:A2:05:BF:B0:7A:A9:80:9D:2D:BE:68:46:A4:0A:44:6F:00:98
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 019D4DB1BB089A5FE06A6CE9904B18759BBF
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/TaeiBb-weqmAnS2-aEakCkRvAJg.roa
Signing time: Thu 02 Apr 2026 10:16:26 +0000
ROA not before: Thu 02 Apr 2026 10:16:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63199
IP address blocks: 81.18.48.0/24 maxlen: 24
178.219.0.0/24 maxlen: 24
178.219.1.0/24 maxlen: 24
188.255.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.mft
rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:4d:b1:bb:08:9a:5f:e0:6a:6c:e9:90:4b:18:75:9b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Apr 2 10:16:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=4da7a205bfb07aa9809d2dbe6846a40a446f0098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:20:ba:2d:24:b1:d9:fe:fd:52:6e:75:e5:
2b:b0:f2:6b:1b:40:c5:bf:14:00:56:fb:e2:c5:2e:
2f:1b:e4:ca:27:f7:ce:3e:b6:6b:17:5c:19:77:50:
a6:27:47:67:f9:ff:76:cd:42:6f:46:3e:4e:0c:c1:
d1:54:b0:a9:35:e2:0b:68:3f:3a:f2:bb:41:4b:fa:
28:66:0c:ea:69:67:b6:a1:2b:80:cb:44:f6:ba:95:
a3:d1:76:fe:b6:5c:eb:00:e7:af:74:74:5f:5e:fe:
54:bb:15:b2:d3:6b:90:b7:db:17:aa:19:51:f8:bd:
b4:33:98:f3:e7:ff:ee:aa:d8:77:a9:32:70:9d:ee:
8b:84:f3:83:b7:93:69:cd:8a:ac:0f:c9:7d:15:d7:
a8:74:a5:df:8d:53:41:ef:a8:ad:51:4c:8e:64:55:
b3:e6:d9:cd:c3:60:40:7a:fd:08:8e:33:46:70:ca:
d4:6f:ad:2c:b6:52:60:17:1f:a6:7f:b2:29:6a:05:
6c:86:9d:a0:ba:8b:21:ea:49:4e:7d:95:e9:24:38:
35:d8:fb:6b:7a:b7:09:96:ea:23:4f:e1:b9:3a:97:
cb:57:3a:ed:a3:22:9b:3a:78:82:a1:eb:e0:72:f6:
45:c2:a0:ae:02:08:2e:90:36:69:42:f8:6a:2d:c4:
6f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A7:A2:05:BF:B0:7A:A9:80:9D:2D:BE:68:46:A4:0A:44:6F:00:98
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/TaeiBb-weqmAnS2-aEakCkRvAJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.18.48.0/24
178.219.0.0/23
188.255.164.0/24
Signature Algorithm: sha256WithRSAEncryption
16:03:17:9c:49:ae:db:f2:6e:b4:6d:4c:05:ca:7c:a6:a6:e9:
05:cd:45:90:84:74:50:f1:9e:df:22:b2:81:14:2e:3c:5d:50:
4d:82:7d:19:46:b5:61:e5:50:e9:b8:ea:ea:1e:38:aa:8c:8a:
a5:ec:86:bc:22:10:b7:6f:7e:79:1c:31:60:95:e0:94:15:76:
48:4e:a7:f6:8d:a2:bf:b7:29:ab:01:3e:75:0e:05:77:18:53:
3b:d3:6e:55:6f:a0:76:13:71:85:6f:f0:c8:df:db:d5:c3:65:
ad:64:e8:bb:f1:18:5b:4d:80:e6:34:19:fc:40:48:65:97:0a:
2b:78:80:4a:80:51:31:94:c3:3b:38:5f:01:b0:54:a7:0e:21:
ce:6c:0e:a1:c5:00:27:c9:f4:ee:3c:60:50:13:e3:5f:54:c4:
60:e0:65:47:32:5f:b3:e1:8d:d9:6d:f3:cb:a9:40:19:70:41:
e7:4d:ff:f0:dc:be:72:40:56:bd:b8:6e:35:ac:33:ac:c1:5a:
b4:cf:a1:2a:34:40:cc:46:81:18:b1:c8:36:6f:f6:b7:1c:7b:
8c:4a:3d:b5:53:38:14:16:1e:49:5a:12:50:7f:71:9b:3c:d2:
f2:3a:8a:50:aa:6e:92:43:f8:ab:bd:a7:21:8a:f7:26:21:56:
74:e0:94:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:30:37 2026 by rpki-client