Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/UZMJ447vttwTg_huu_OKwoMxvGE.roa
File: UZMJ447vttwTg_huu_OKwoMxvGE.roa (raw, json)
Hash identifier: 8iSOwwrTAx9gSZ9mC5u63bBy7LU/RafYSDAsoyi9XRI=
Subject key identifier: 51:93:09:E3:8E:EF:B6:DC:13:83:F8:6E:BB:F3:8A:C2:83:31:BC:61
Certificate issuer: /CN=7b8254253dc0213fe58a7aff4b82463e47978063
Certificate serial: 019B78352FEBCC3756976C412DB9EEA5652B
Authority key identifier: 7B:82:54:25:3D:C0:21:3F:E5:8A:7A:FF:4B:82:46:3E:47:97:80:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4JUJT3AIT_linr_S4JGPkeXgGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/UZMJ447vttwTg_huu_OKwoMxvGE.roa
Signing time: Thu 01 Jan 2026 06:18:30 +0000
ROA not before: Thu 01 Jan 2026 06:18:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213118
IP address blocks: 79.142.34.0/23 maxlen: 23
79.142.40.0/23 maxlen: 23
94.154.125.0/24 maxlen: 24
178.213.74.0/24 maxlen: 24
2a11:fd40:1000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/e4JUJT3AIT_linr_S4JGPkeXgGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/e4JUJT3AIT_linr_S4JGPkeXgGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/e4JUJT3AIT_linr_S4JGPkeXgGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:78:35:2f:eb:cc:37:56:97:6c:41:2d:b9:ee:a5:65:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b8254253dc0213fe58a7aff4b82463e47978063
Validity
Not Before: Jan 1 06:18:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=519309e38eefb6dc1383f86ebbf38ac28331bc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:98:0a:66:38:2a:7c:48:f1:78:27:b5:45:d1:
c6:02:fc:3c:25:47:0a:d9:a4:38:14:af:98:22:b7:
6d:78:a7:83:c3:ee:4c:eb:13:77:6c:02:3f:f1:bc:
7a:8e:f2:0b:53:f5:54:07:dc:65:ca:3c:22:af:84:
18:cd:08:66:0f:47:80:f6:43:90:cf:74:ff:4b:c7:
24:5d:e1:ec:43:b4:e7:64:a9:24:29:f6:8c:a1:5f:
e9:17:af:59:68:bd:ae:56:f7:bd:d4:59:4e:33:ce:
36:40:9e:27:ab:cf:19:bc:09:af:c7:52:69:f7:bd:
4f:a9:75:5b:7c:bc:24:7d:d1:d9:4a:e6:77:e6:e2:
a1:f3:a8:bf:51:06:7f:b5:f6:0d:07:4a:03:f1:d2:
ae:48:f5:2e:1d:61:65:93:e8:02:88:f6:ad:c0:7e:
46:b9:d0:08:cc:63:f1:39:ef:bc:b2:ce:25:57:f8:
e8:04:20:36:78:43:b3:a5:db:85:4b:ee:18:b5:56:
c6:ec:1a:95:de:85:13:72:e4:06:dc:ae:89:33:a5:
63:7e:5e:dc:c0:c9:e1:67:36:9c:43:ff:0e:5c:7c:
bf:58:81:1c:3f:fd:11:a6:e0:16:2a:0c:a9:fd:b3:
da:ad:86:5c:3b:91:ba:25:0b:cc:a8:5e:ab:58:7c:
d7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:93:09:E3:8E:EF:B6:DC:13:83:F8:6E:BB:F3:8A:C2:83:31:BC:61
X509v3 Authority Key Identifier:
keyid:7B:82:54:25:3D:C0:21:3F:E5:8A:7A:FF:4B:82:46:3E:47:97:80:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4JUJT3AIT_linr_S4JGPkeXgGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/UZMJ447vttwTg_huu_OKwoMxvGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ab7a04-ffe1-4a05-a5ef-8f539b64b8db/1/e4JUJT3AIT_linr_S4JGPkeXgGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.142.34.0/23
79.142.40.0/23
94.154.125.0/24
178.213.74.0/24
IPv6:
2a11:fd40:1000::/36
Signature Algorithm: sha256WithRSAEncryption
46:04:9c:77:46:93:15:2f:95:76:07:8d:89:f8:b7:df:6f:cf:
2b:d9:85:58:1d:60:1a:67:5f:c7:c6:cb:ae:68:06:83:41:95:
4b:6c:58:9f:0d:a7:42:a7:9b:c7:5f:bd:17:54:aa:25:3d:5e:
f3:7a:7e:fd:e6:87:02:6c:e8:c5:38:e4:5d:91:48:5b:bf:68:
34:9d:5b:d0:f7:78:d6:5c:5a:07:23:a7:33:95:f5:ad:e9:73:
47:fa:12:f2:24:93:05:ed:42:2b:9d:ee:ef:17:81:ec:12:79:
ae:0c:15:18:76:f6:af:3f:c5:4e:77:2b:4f:84:b9:9f:2c:a9:
4b:d4:1a:02:8d:81:a0:63:0a:95:18:c0:30:8a:b1:b2:ee:82:
67:f8:2d:b4:8f:17:f0:de:89:1c:bb:c8:e9:34:2e:7f:fd:bb:
41:44:3b:f0:68:9b:78:cc:6a:51:77:30:9f:8d:a0:30:dc:1b:
54:ea:3e:39:46:f2:ca:c8:12:be:1d:2c:2a:54:40:18:7e:b8:
e0:eb:26:c1:b1:9c:82:46:ed:22:76:14:9c:56:f6:8d:4e:9f:
81:c3:b7:eb:20:6c:de:ba:be:d5:a4:e7:61:9a:74:09:76:dd:
b6:3e:dc:ce:1f:9f:72:72:6e:29:5b:cd:92:93:50:eb:39:1a:
40:32:90:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:56:26 2026 by rpki-client