Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/wSJGaLX9QwZTUmdhk4ASNVFogD0.roa
File: wSJGaLX9QwZTUmdhk4ASNVFogD0.roa (raw, json)
Hash identifier: 4zfy1/MhvkcOTenheY8J7j2BRrkVWE52j25oAI0/Qvc=
Subject key identifier: C1:22:46:68:B5:FD:43:06:53:52:67:61:93:80:12:35:51:68:80:3D
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 019D5C97CEFF75BF66C13D915BF309CB6D98
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/wSJGaLX9QwZTUmdhk4ASNVFogD0.roa
Signing time: Sun 05 Apr 2026 07:42:25 +0000
ROA not before: Sun 05 Apr 2026 07:42:25 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 149457
IP address blocks: 185.233.18.0/24 maxlen: 24
193.107.218.0/24 maxlen: 24
202.71.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 11:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:5c:97:ce:ff:75:bf:66:c1:3d:91:5b:f3:09:cb:6d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Apr 5 07:42:25 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c1224668b5fd430653526761938012355168803d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:78:e0:50:f7:41:7a:f7:b4:42:54:36:88:4c:
f1:49:a1:47:e6:96:50:c1:ef:9c:eb:b2:28:a3:80:
17:be:a4:44:d5:b5:28:6a:37:a2:25:d0:39:b8:cc:
84:4f:6d:8e:85:a6:d9:a3:5e:d0:d2:31:1f:5f:73:
de:dd:81:2d:37:b1:5a:17:91:6b:7a:5b:8d:06:b6:
a2:ab:29:67:f9:16:8a:78:c7:9f:2b:98:ce:47:e6:
ca:13:6a:ef:7d:37:83:95:8e:10:2d:3c:c1:f8:ea:
74:e8:fa:8d:5f:ce:a3:12:47:ad:87:71:28:85:ce:
8b:99:70:21:50:be:40:c7:e2:70:81:93:db:34:79:
e5:af:67:7a:63:ea:43:a0:1e:68:71:65:89:da:ff:
32:f9:6d:84:f7:69:be:44:37:4e:63:5c:29:81:a8:
53:5f:cd:d7:c6:7b:d7:0a:7d:6c:28:48:fc:6d:00:
c7:e3:9b:75:d2:19:5b:c5:02:34:20:3f:45:62:5d:
94:a7:fb:50:d0:76:a6:be:11:c4:4c:cc:f0:f8:9a:
10:47:a9:95:7b:22:8f:b2:4e:4f:76:e6:79:50:2a:
4a:dd:3d:f1:27:7d:5b:15:c8:d0:70:89:55:c6:66:
7e:9a:90:d5:9d:91:2d:c7:15:ef:a0:dc:c1:f8:91:
03:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:22:46:68:B5:FD:43:06:53:52:67:61:93:80:12:35:51:68:80:3D
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/wSJGaLX9QwZTUmdhk4ASNVFogD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.18.0/24
193.107.218.0/24
202.71.5.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:db:8e:ac:73:63:63:76:83:b6:ba:b9:5a:50:27:f6:09:9f:
8f:84:42:9a:bd:98:64:8b:ae:9d:90:eb:d4:ef:c6:f3:b8:37:
b2:0d:bf:ef:0a:7a:ad:8b:17:0f:c2:c1:ac:70:a5:a9:2e:87:
7f:22:7d:25:f0:0f:de:83:d7:84:8f:9d:af:2e:19:ec:48:f2:
b3:d9:06:0a:b3:57:a5:2f:76:c0:fe:b6:62:6a:25:32:c0:65:
0c:84:d6:ff:9a:0f:c8:0b:d5:54:07:96:ae:b7:87:9e:e5:b6:
32:4f:ff:2e:b8:1c:0b:0c:fb:54:58:f0:bd:12:39:b9:06:bc:
e4:f6:b6:ed:cf:3c:7b:60:9b:97:ea:ab:fd:e8:f6:87:3c:b1:
35:3d:18:8d:51:e7:a0:8f:d4:e0:2b:dc:52:7f:73:70:e0:8c:
14:19:9f:eb:42:09:56:a8:6a:17:5b:7d:06:58:bc:19:55:aa:
e5:a0:aa:f9:27:34:c5:af:e7:dd:29:1e:cd:ad:70:d2:a1:14:
b4:d3:32:66:8a:9c:a7:51:ad:fa:bd:07:a4:0b:0e:09:c7:37:
8a:45:6b:25:ee:03:d8:46:eb:2d:12:34:26:6b:d5:ba:a9:90:
39:9f:d5:c7:da:d9:05:ac:c4:2a:e8:d0:ed:73:30:17:df:8c:
eb:1c:6b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:42:50 2026 by rpki-client