Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/Mmk6zLU_gv73BOtf2g3APw9lmyQ.roa
File: Mmk6zLU_gv73BOtf2g3APw9lmyQ.roa (raw, json)
Hash identifier: qL0PMP9vArwRqpbzs+j1LZZAXvUbDkXbOFyqaLmsqDo=
Subject key identifier: 32:69:3A:CC:B5:3F:82:FE:F7:04:EB:5F:DA:0D:C0:3F:0F:65:9B:24
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 019EB18A4DBAD5FB35AA36B80F1951E17EC7
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/Mmk6zLU_gv73BOtf2g3APw9lmyQ.roa
Signing time: Wed 10 Jun 2026 12:38:11 +0000
ROA not before: Wed 10 Jun 2026 12:38:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 206134
IP address blocks: 77.91.73.0/24 maxlen: 24
77.91.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b1:8a:4d:ba:d5:fb:35:aa:36:b8:0f:19:51:e1:7e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Jun 10 12:38:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=32693accb53f82fef704eb5fda0dc03f0f659b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:42:81:bb:78:21:2b:ab:ea:0f:11:27:4d:6b:
4a:0b:70:52:87:42:0d:96:ee:6b:5b:28:d1:70:a3:
83:ff:4b:29:a2:ba:6d:cf:a0:4a:a4:7c:7c:eb:f9:
23:e9:65:79:53:1b:c1:e4:39:39:30:a5:9b:5c:82:
e6:37:77:d7:b8:08:5d:ac:f7:28:10:67:f3:eb:c0:
f5:cc:b9:a0:1a:e5:6d:d0:4d:c0:dd:3c:1d:47:06:
d8:4c:63:9e:05:55:0a:6b:15:07:eb:de:33:57:19:
bf:94:5d:1f:97:0a:f3:e7:dd:f1:31:e4:6f:53:f9:
b3:30:ce:fb:ff:94:1a:12:22:f4:49:79:dd:64:a2:
e0:a2:4d:a3:f0:47:28:b4:3e:06:9a:40:0b:83:4b:
84:bd:92:3d:eb:48:8c:04:0c:ea:2b:ef:42:ff:2b:
eb:f2:f6:5f:c6:36:d7:c1:1e:d4:50:82:a8:45:63:
66:60:82:a2:b1:c7:be:ac:26:6e:33:d4:37:cb:62:
c1:55:4e:3c:33:a4:91:6e:2c:f7:c0:6e:56:94:73:
92:c7:d7:5d:a8:be:08:40:86:64:5e:3d:2f:93:84:
a5:43:45:9c:1f:90:d7:9f:6b:54:da:b3:5c:97:f1:
f4:53:37:57:23:5b:ab:50:6c:f7:4d:fa:b5:8a:da:
f3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:69:3A:CC:B5:3F:82:FE:F7:04:EB:5F:DA:0D:C0:3F:0F:65:9B:24
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/Mmk6zLU_gv73BOtf2g3APw9lmyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.73.0/24
77.91.79.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:85:c4:ae:70:c3:0f:ce:ed:a7:a8:bc:bd:74:97:44:09:7d:
38:e8:f2:08:3e:6b:d9:cd:6f:c1:b6:6f:cc:e2:f8:31:d0:2b:
31:28:49:79:20:d6:99:b4:5d:54:57:9e:aa:fe:e8:96:bc:97:
25:d8:88:c7:f9:6a:8c:9e:65:19:9f:ce:df:9c:ab:cf:0f:9b:
8f:e1:71:6e:3e:a0:00:e8:c1:0d:fc:8b:07:76:c5:56:ed:86:
8a:b5:cb:7a:ad:6a:19:be:0e:4d:44:78:2c:91:d8:3d:67:4f:
16:5f:d0:79:3a:22:23:b2:06:e4:75:f6:36:56:8f:4c:44:79:
b5:12:8c:d2:b0:df:8c:12:b0:a1:d2:6a:6b:48:8f:cf:7d:f3:
6c:e1:ee:e7:29:d2:03:90:f3:a3:ec:e9:b2:42:56:a3:db:27:
ad:1f:21:f2:aa:8e:8f:9b:96:06:46:2b:8e:55:2e:7c:81:92:
af:37:8a:5b:9a:76:e6:94:f5:03:24:83:db:fa:92:19:88:58:
59:dd:7e:cf:31:b2:d2:f5:ca:52:d6:f5:54:c2:ce:69:d2:84:
fa:90:cd:08:5d:8b:48:ea:26:98:60:37:be:a5:5a:c3:23:f5:
22:58:da:21:49:e8:d1:6b:d8:07:36:fb:e4:c5:0e:3f:00:2a:
49:19:c6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:05:13 2026 by rpki-client