Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/__micN1HkkLwntyMaeWPJQ49nHo.roa
File: __micN1HkkLwntyMaeWPJQ49nHo.roa (raw, json)
Hash identifier: nS8VtNacJtyZCxSHt7ShlCt/fh6ghdSK4yWCiFSqM34=
Subject key identifier: FF:F9:A2:70:DD:47:92:42:F0:9E:DC:8C:69:E5:8F:25:0E:3D:9C:7A
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 019D6852C00E744190D84DB950BA64938C4F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/__micN1HkkLwntyMaeWPJQ49nHo.roa
Signing time: Tue 07 Apr 2026 14:22:26 +0000
ROA not before: Tue 07 Apr 2026 14:22:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62247
IP address blocks: 93.170.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:68:52:c0:0e:74:41:90:d8:4d:b9:50:ba:64:93:8c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Apr 7 14:22:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=fff9a270dd479242f09edc8c69e58f250e3d9c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8e:d7:ab:3f:86:ed:f7:ff:c2:dc:21:b6:61:
c9:3e:7d:a8:b0:d1:21:d0:a5:a0:89:f5:99:59:0f:
85:6b:5d:ef:4d:20:3f:2d:b8:26:03:da:8b:32:e6:
c0:de:65:c9:dc:dd:4a:5d:10:3e:20:91:34:b8:91:
39:e1:15:cf:34:34:6a:71:e0:fa:e4:39:22:64:6c:
0d:2a:0a:f5:09:d1:7a:06:a5:29:50:fe:35:2b:cd:
77:6c:1d:ef:5b:b4:4a:24:26:ee:93:9c:1d:aa:83:
d1:d9:7e:d0:6e:8c:e2:69:12:a5:3e:36:1d:9c:48:
91:59:ff:ac:6f:70:07:32:d9:cb:d6:4f:db:69:35:
80:87:b7:61:7e:e8:2e:28:44:25:7f:01:b3:db:32:
39:b5:e1:9b:a6:fb:ab:4e:8b:ea:ef:29:5f:8f:ae:
40:ce:5d:e2:fe:92:35:79:78:c5:3b:8b:9e:61:38:
bc:dc:48:b0:10:13:3d:41:a8:3a:33:f0:d5:7d:d2:
52:7e:3f:e3:e1:a6:9c:4d:f3:19:da:14:a4:e8:ed:
8d:9b:36:54:a4:d2:0f:87:c6:a7:0e:d9:de:c5:bd:
7f:c7:5c:7e:69:ab:ce:42:3c:0d:fa:a2:92:c8:a6:
20:f2:5e:df:59:95:d9:13:a8:3c:e3:55:22:9b:9c:
15:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F9:A2:70:DD:47:92:42:F0:9E:DC:8C:69:E5:8F:25:0E:3D:9C:7A
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/__micN1HkkLwntyMaeWPJQ49nHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.82.0/24
Signature Algorithm: sha256WithRSAEncryption
70:2b:d2:21:63:ee:bd:f5:a0:bd:47:de:74:8c:e1:6c:69:fd:
62:6b:b1:74:12:9a:b9:da:eb:b7:ba:d1:3d:cb:cf:48:68:83:
f1:b4:9a:1b:06:54:b0:11:cf:ab:26:7b:76:e8:59:8b:98:a0:
2b:f7:a5:9d:ab:68:00:57:55:ff:8f:6c:69:e6:8c:c7:d0:32:
8b:aa:de:ce:3c:a3:b6:48:76:df:ff:cc:6c:30:2b:35:9c:09:
05:df:f9:ae:cd:e2:4c:b9:f1:54:99:48:1f:27:e6:59:38:79:
6a:b0:e4:42:4d:1f:b4:3b:e1:e3:ce:4d:b1:1a:a1:22:ee:d5:
12:64:9b:5d:ab:bf:12:0f:e6:55:ff:37:99:9d:1a:a1:d5:80:
69:75:95:4b:bc:0b:83:81:67:4f:dc:75:4e:cc:dd:4d:19:24:
0e:6e:42:b5:82:9e:6f:2e:fe:5c:af:f9:cb:5b:cc:a4:f6:f6:
03:02:06:a1:d0:e8:6e:df:99:85:f4:ae:3b:fb:80:ad:4d:cf:
7b:58:cd:c0:ca:02:40:96:46:cb:b0:03:08:be:94:7f:72:39:
9e:d5:89:62:31:1e:ed:d0:8f:05:6c:f0:45:cc:2b:2f:e1:84:
a6:b0:69:e0:e6:65:4a:81:f8:c3:00:df:29:f6:14:38:60:6a:
7a:2c:e2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:58:31 2026 by rpki-client