Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/5H9UC00gN17YAUVaVmDOUMC-djw.roa
File: 5H9UC00gN17YAUVaVmDOUMC-djw.roa (raw, json)
Hash identifier: VhBKBtpxsj0ufVM0C4fB65JVHQs6B/Gg4eju1lxHXI8=
Subject key identifier: E4:7F:54:0B:4D:20:37:5E:D8:01:45:5A:56:60:CE:50:C0:BE:76:3C
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 019E872064B6C5238265C7C2B3524C0AF0BD
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/5H9UC00gN17YAUVaVmDOUMC-djw.roa
Signing time: Tue 02 Jun 2026 06:58:27 +0000
ROA not before: Tue 02 Jun 2026 06:58:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 213423
IP address blocks: 79.172.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:87:20:64:b6:c5:23:82:65:c7:c2:b3:52:4c:0a:f0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jun 2 06:58:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e47f540b4d20375ed801455a5660ce50c0be763c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d6:8a:52:fe:e1:3b:fa:88:31:af:89:54:c3:
b4:b0:38:ae:63:0b:5a:44:5f:78:9d:76:5b:b4:59:
45:1a:c1:08:a3:7d:90:4a:db:d3:62:d7:02:83:52:
db:29:98:26:12:3f:06:c0:e0:ca:eb:42:3d:54:82:
05:c9:cb:e0:54:eb:19:5d:41:86:3e:9a:0b:f7:dd:
15:2f:97:c1:0c:97:b0:96:f8:9a:79:6a:7a:e8:28:
b8:43:4a:9d:45:7e:d5:4c:18:30:6d:dd:b6:e4:c6:
b0:60:73:1b:21:f2:d8:b6:db:6e:3b:0f:35:87:94:
16:64:93:fc:89:78:4f:08:2e:8b:e4:68:13:76:5f:
e2:65:11:49:4a:06:74:bb:1e:d0:f5:da:06:a9:95:
69:8d:fc:08:02:bb:6c:1f:e1:2b:cc:1c:cf:ee:34:
70:d0:40:1c:c5:2f:6a:7c:2a:aa:b8:6c:0a:c4:29:
21:13:be:65:72:fb:8f:81:4f:b9:88:fd:fa:61:75:
40:c9:91:cf:e7:7c:89:ad:ca:52:1b:0e:46:53:6e:
5d:b7:90:b4:c3:34:ef:ff:bf:0a:6d:1a:6c:56:14:
50:95:dc:38:a2:18:ca:52:f1:0d:07:77:da:93:fc:
cc:b1:0f:bf:7f:c4:25:be:f5:45:8e:85:ca:51:6f:
c1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7F:54:0B:4D:20:37:5E:D8:01:45:5A:56:60:CE:50:C0:BE:76:3C
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/5H9UC00gN17YAUVaVmDOUMC-djw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:bb:84:c7:a9:84:76:57:75:cc:b9:60:f4:0f:34:ee:2e:93:
ac:8d:d6:ed:6f:e1:dc:80:81:16:08:08:5c:1c:46:0b:4e:8d:
ed:9c:40:4b:a1:e1:cf:15:ba:06:17:7e:fe:69:b5:72:83:3f:
be:6d:32:0f:83:59:8d:e6:60:64:df:94:66:f0:f1:10:f4:4e:
89:17:e1:cd:27:a1:ee:e5:ba:fe:01:33:1e:36:a2:aa:93:d6:
3d:a6:4b:68:0b:96:ad:83:98:50:b0:cc:94:23:d9:b2:ac:b0:
91:c1:43:1e:1a:fd:1e:ac:06:4e:29:1d:72:3d:70:6b:67:b9:
54:94:8c:c5:0e:3a:ad:d5:f2:2a:1e:24:f3:da:10:e1:4f:54:
20:81:0a:84:4f:ef:62:68:b5:b2:a2:72:61:64:62:65:37:74:
e7:db:00:11:c6:a7:ce:ef:3e:75:98:c2:28:1b:73:6e:75:1b:
89:c1:16:62:7c:ca:5c:54:e3:2f:bd:ff:17:b9:fb:f9:b7:27:
02:f0:9a:ff:54:07:74:ee:0f:fb:5a:e0:60:90:25:33:42:32:
cb:93:d7:d0:26:be:82:2e:33:f3:fb:6f:92:1f:56:db:5d:16:
47:33:d9:e5:40:ef:06:4b:a7:99:26:98:12:d2:2e:33:62:60:
b6:09:e1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:51:30 2026 by rpki-client