Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/eNLpsW8xm79yedbOa3QWuydVW40.roa
File: eNLpsW8xm79yedbOa3QWuydVW40.roa (raw, json)
Hash identifier: A6X88q1hQaY/wfcLvXZ84b3udePUqPcCyXEXa/OfiTQ=
Subject key identifier: 78:D2:E9:B1:6F:31:9B:BF:72:79:D6:CE:6B:74:16:BB:27:55:5B:8D
Certificate issuer: /CN=0f0f9f044e2b929878d747c5ffbb80ad10e3d6bd
Certificate serial: 019E832575C0C29B82B4C1A4775C80F6257B
Authority key identifier: 0F:0F:9F:04:4E:2B:92:98:78:D7:47:C5:FF:BB:80:AD:10:E3:D6:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dw-fBE4rkph410fF_7uArRDj1r0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/eNLpsW8xm79yedbOa3QWuydVW40.roa
Signing time: Mon 01 Jun 2026 12:25:30 +0000
ROA not before: Mon 01 Jun 2026 12:25:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 201589
IP address blocks: 2a13:1ec0::/44 maxlen: 44
2a13:1ec0:100::/44 maxlen: 44
2a13:1ec0:110::/44 maxlen: 44
2a13:1ec0:200::/44 maxlen: 44
2a13:1ec0:1000::/44 maxlen: 44
2a13:1ec0:1010::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Dw-fBE4rkph410fF_7uArRDj1r0.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Dw-fBE4rkph410fF_7uArRDj1r0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dw-fBE4rkph410fF_7uArRDj1r0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:83:25:75:c0:c2:9b:82:b4:c1:a4:77:5c:80:f6:25:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f0f9f044e2b929878d747c5ffbb80ad10e3d6bd
Validity
Not Before: Jun 1 12:25:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=78d2e9b16f319bbf7279d6ce6b7416bb27555b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d2:85:c8:23:c1:c5:f8:0d:aa:0d:9b:b4:50:
58:d9:6c:0c:68:f3:96:0d:be:cb:8b:83:29:33:78:
6f:8d:e1:c6:4f:34:d2:ce:e8:59:93:7b:a5:30:ae:
c2:2b:64:5f:0c:ba:5c:0e:75:38:40:9a:db:70:85:
c5:e4:c7:75:54:f1:a3:87:64:93:5c:e3:e9:b7:82:
3b:99:e9:45:f6:46:1f:a6:9c:e1:a7:31:d8:e4:00:
64:7a:c0:85:47:31:f3:4a:a0:b0:a7:53:8c:03:7c:
eb:28:57:02:02:ab:9b:d8:ab:60:6b:ee:d3:2b:78:
ee:c7:82:68:10:67:05:c1:c3:2f:f6:27:1f:90:b0:
10:c0:a9:ad:1b:3a:e2:ce:fc:d5:ef:9b:d4:57:a3:
2f:2f:b9:05:b3:44:db:a9:88:5b:e8:a0:b5:97:1b:
ef:47:84:b1:a6:02:a3:18:3f:4e:40:d7:15:29:ab:
47:b2:6e:aa:33:5d:cd:ef:3f:d5:c9:31:b0:3e:d2:
ee:24:e4:c1:d0:9f:65:5a:59:51:dc:7c:d5:93:d8:
58:51:10:ec:0a:97:52:af:76:21:04:da:c1:dd:e7:
4b:29:29:ee:50:c1:1e:20:21:70:ec:f2:b4:51:c9:
df:cd:d3:54:d0:0f:b9:e3:84:d9:67:6f:d0:f5:ed:
14:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D2:E9:B1:6F:31:9B:BF:72:79:D6:CE:6B:74:16:BB:27:55:5B:8D
X509v3 Authority Key Identifier:
keyid:0F:0F:9F:04:4E:2B:92:98:78:D7:47:C5:FF:BB:80:AD:10:E3:D6:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dw-fBE4rkph410fF_7uArRDj1r0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/eNLpsW8xm79yedbOa3QWuydVW40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/93d460-368c-46d7-8e7a-cdbd3b6ce777/1/Dw-fBE4rkph410fF_7uArRDj1r0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1ec0::/44
2a13:1ec0:100::/43
2a13:1ec0:200::/44
2a13:1ec0:1000::/43
Signature Algorithm: sha256WithRSAEncryption
33:9b:95:10:31:79:5c:eb:25:93:1e:b2:03:1d:19:d6:b7:35:
79:6a:11:c8:e7:ab:56:fa:01:a6:0e:15:be:61:fd:c2:9a:e1:
c7:0d:6d:24:7e:b5:bb:12:8e:cd:5e:bb:b4:07:90:0a:04:8a:
ca:79:02:fb:f4:c4:38:a8:f5:1b:64:8f:71:81:74:7c:10:61:
d4:f5:6e:1c:9e:a7:a4:e4:72:b4:aa:af:82:c2:71:5f:9c:86:
20:b2:1c:ad:bf:aa:ed:39:e3:dd:49:1e:a3:be:56:63:fc:e5:
8d:3d:a2:be:96:d6:54:ed:17:63:76:d1:75:f0:02:1d:05:3c:
5f:e0:be:75:58:d2:55:2f:05:4d:3f:70:7c:da:39:60:48:21:
0b:35:8c:be:04:56:0b:94:7c:58:f4:b0:2d:9d:66:93:a9:0d:
f6:11:70:c7:4b:d3:8c:ab:bc:39:fa:14:a9:9a:fb:2e:c1:71:
d1:63:51:be:37:70:8b:46:5b:39:fd:05:dc:b1:4a:80:a7:74:
36:58:9a:13:85:de:fa:8f:23:9d:6a:a7:1a:f9:76:ab:78:c7:
70:48:5d:b0:8e:5d:a8:0a:b9:88:af:02:7b:8b:76:0d:38:3a:
a5:aa:e6:5c:e7:1c:51:bd:dd:63:08:ce:e1:7a:c7:4d:9d:6a:
23:c7:af:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:40:54 2026 by rpki-client