Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/j_dcyVLKqDVBMoURBAaz3OL7Yo8.roa
File: j_dcyVLKqDVBMoURBAaz3OL7Yo8.roa (raw, json)
Hash identifier: Vvqqjsw4+D8abq5cyQ0evfThU8jvZTh04zSyO6jY6IY=
Subject key identifier: 8F:F7:5C:C9:52:CA:A8:35:41:32:85:11:04:06:B3:DC:E2:FB:62:8F
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019C487A7EC9894EA48D4452EB42EFD3E0D3
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/j_dcyVLKqDVBMoURBAaz3OL7Yo8.roa
Signing time: Tue 10 Feb 2026 16:55:13 +0000
ROA not before: Tue 10 Feb 2026 16:55:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 273285
IP address blocks: 45.142.41.0/24 maxlen: 24
203.88.96.0/23 maxlen: 23
203.88.96.0/24 maxlen: 24
203.88.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:48:7a:7e:c9:89:4e:a4:8d:44:52:eb:42:ef:d3:e0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Feb 10 16:55:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8ff75cc952caa835413285110406b3dce2fb628f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e8:bd:75:85:49:94:1f:d3:52:ff:f4:d7:65:
06:cc:d9:f9:3e:3a:92:dc:61:88:8e:bf:92:61:c2:
2e:fb:0f:6c:29:da:f6:c4:8a:61:da:eb:92:19:65:
0a:6d:21:12:4b:21:41:ce:9a:1b:0f:97:d8:59:e8:
0e:cb:51:47:d0:7f:bd:77:78:fe:bf:26:74:b2:d7:
09:77:46:3c:0d:ae:c3:99:22:68:f4:c9:9e:2a:29:
d1:27:f8:f5:4e:de:3a:7a:8b:9b:f7:ec:2a:8c:2d:
71:49:bd:46:70:82:71:79:9e:57:7b:8d:50:89:22:
34:9e:b7:c0:bd:00:49:3e:ae:6d:87:6f:6c:7f:c6:
d1:91:5a:b5:23:7e:0a:6c:35:a6:98:44:8f:54:67:
d7:2d:e8:d0:82:f3:63:58:20:ba:71:b2:99:54:8a:
33:f3:a5:0b:77:50:35:de:32:08:9e:45:2e:40:a8:
a7:f3:e6:5f:04:f7:16:c9:4e:3e:35:ac:46:5e:b0:
e7:0c:fb:8e:b9:89:2b:bc:16:07:56:fb:2e:bc:15:
a8:95:50:2e:bc:c8:72:90:c0:84:1d:6c:4e:6d:13:
d8:47:53:38:33:00:a1:36:1b:53:7f:a9:7c:42:a0:
c6:e2:67:19:5a:38:d4:a5:c3:08:6e:0d:3a:2c:d3:
2d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F7:5C:C9:52:CA:A8:35:41:32:85:11:04:06:B3:DC:E2:FB:62:8F
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/j_dcyVLKqDVBMoURBAaz3OL7Yo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.41.0/24
203.88.96.0/23
Signature Algorithm: sha256WithRSAEncryption
23:7c:d4:81:98:d9:07:03:6e:0d:dc:b6:cd:46:6f:1d:6a:25:
e5:b2:b2:02:2c:ad:c6:aa:28:cb:96:a4:c7:31:b2:2f:30:e5:
38:e0:6a:7f:bd:0a:24:0f:a4:c1:30:f0:f4:f6:47:cb:19:d8:
22:70:c0:13:e9:8b:0c:f3:de:0e:c4:fd:07:60:b7:ea:33:57:
0d:c0:29:d8:4c:b4:56:f3:b2:7b:37:c3:a1:87:44:90:2f:03:
fb:7f:14:9a:15:08:d1:ca:ed:4e:bc:a9:9a:a8:57:38:6d:6c:
d9:18:6a:63:15:4a:b2:5e:0e:9c:27:c7:c9:81:07:7d:67:b5:
56:4e:d5:6d:53:74:a1:60:02:33:02:99:14:9e:7e:3d:aa:57:
45:78:6c:27:e7:d0:9d:de:92:be:de:cc:29:2d:8b:c3:ad:20:
83:62:cd:0f:97:b4:41:9b:7e:66:0a:5c:48:89:4c:fc:5e:ab:
d4:89:c6:c1:f0:9b:52:d0:01:f7:ad:90:b5:22:92:0d:53:cc:
3d:04:6a:ba:e2:cc:7b:1d:91:e4:34:1f:fb:eb:40:de:3a:29:
39:d1:c3:f5:ba:34:e3:ee:7f:38:d8:9c:96:d6:7a:e0:d5:0c:
9d:ce:e2:50:ab:3e:5c:06:b9:c9:73:24:35:be:06:64:a1:86:
dc:e7:f4:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:54:44 2026 by rpki-client