Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Jz131_dtByGOmFxRZsk1AA8ojKI.roa
File: Jz131_dtByGOmFxRZsk1AA8ojKI.roa (raw, json)
Hash identifier: NbYoUMiPRPMz9JCk8drHuB5tABJXo2I7JQ4tL3zwoLk=
Subject key identifier: 27:3D:77:D7:F7:6D:07:21:8E:98:5C:51:66:C9:35:00:0F:28:8C:A2
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 019EAD3943F1176A3A89F0D4268E446AC054
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Jz131_dtByGOmFxRZsk1AA8ojKI.roa
Signing time: Tue 09 Jun 2026 16:31:11 +0000
ROA not before: Tue 09 Jun 2026 16:31:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.151.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.230.0/24 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.66.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ad:39:43:f1:17:6a:3a:89:f0:d4:26:8e:44:6a:c0:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 9 16:31:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=273d77d7f76d07218e985c5166c935000f288ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b2:19:53:61:cc:ae:42:24:ce:2c:ca:71:e0:
b6:29:d9:d7:3b:90:c2:b9:e5:45:c5:14:f4:79:19:
c7:69:7d:78:84:14:ca:6f:5b:85:21:4d:4f:b1:0e:
62:fc:5e:d1:19:3c:2f:e5:6d:47:ff:c7:eb:69:9e:
30:4d:bb:d1:ee:37:a0:a9:fd:4a:1a:a4:f7:b7:cd:
be:7f:51:28:ee:bc:d3:95:4e:2f:a2:58:37:ea:24:
c4:41:d7:6d:f8:a3:66:cb:cd:ab:0f:3a:e1:3e:84:
18:ea:e3:3e:d8:be:e7:e9:75:a8:69:46:60:c5:83:
c9:b0:fe:14:4d:b8:8b:c5:2f:6e:61:a2:d0:e3:b2:
7c:2a:f7:d0:31:3d:e8:60:64:0e:0d:c6:c8:74:00:
a4:ca:d4:38:74:e2:74:86:31:ae:ce:80:09:29:d0:
8b:d9:84:96:e3:4d:82:68:95:6b:61:06:6f:67:81:
28:9a:50:64:49:7f:54:da:3b:3b:e4:92:87:29:45:
b1:ef:a2:22:7f:bf:90:be:ec:e2:ff:f5:85:43:3d:
cd:b7:d9:1f:47:cc:a6:aa:18:90:bc:e1:e8:92:83:
a8:a8:b8:24:0a:a0:47:a0:30:c0:c7:66:e4:13:05:
06:b1:75:c3:e0:d4:b1:b7:80:58:40:1a:0b:22:34:
3d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:3D:77:D7:F7:6D:07:21:8E:98:5C:51:66:C9:35:00:0F:28:8C:A2
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Jz131_dtByGOmFxRZsk1AA8ojKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0/24
84.32.20.0/22
84.32.46.0/23
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.230.0/24
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.57.0/24
88.216.66.0/23
88.216.134.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:cf:ac:7f:59:b4:64:af:09:d9:fa:f2:c9:61:68:4a:0a:69:
25:8b:da:ad:75:0b:04:d7:9d:c8:07:3b:88:de:c8:c3:85:63:
dc:96:a0:9c:84:58:56:20:8a:c4:71:37:79:25:b6:a1:86:9f:
5f:45:a9:34:5f:9d:37:59:cd:68:db:74:4c:4b:34:fb:46:80:
df:02:7a:9a:e0:b3:d7:bf:fc:4e:92:87:ef:6b:21:2c:83:6a:
8f:3c:0e:77:7a:55:ac:2a:47:8f:f8:25:3f:97:03:39:27:3a:
92:b0:37:db:a7:83:3b:72:0a:1b:14:36:da:b0:34:91:07:95:
d0:f1:da:fc:6f:1c:39:09:3e:bb:d8:9e:b4:16:be:7d:fe:e2:
1c:ad:e9:ed:e8:79:2e:62:49:eb:52:04:a9:88:7b:25:31:ba:
81:01:c2:ec:6a:11:79:65:d2:2a:91:2c:be:85:10:5f:ac:f9:
fa:9d:df:db:8a:59:2d:2c:3d:bb:95:bd:ea:04:f0:9a:91:cb:
ef:11:c0:29:ac:b8:ab:d1:ad:75:a2:57:85:a9:30:91:62:3f:
f4:82:2e:e4:a0:8a:6b:55:dd:d3:34:2c:6c:2b:aa:5d:a4:3a:
87:32:01:fc:5e:11:57:9d:18:cc:56:19:d4:48:7a:e2:73:14:
2d:e3:86:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:06:54 2026 by rpki-client