Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/B7jnmjdaqHhZyDAyX-KGztjthFY.roa
File: B7jnmjdaqHhZyDAyX-KGztjthFY.roa (raw, json)
Hash identifier: wl9Z36J5RuKb5EYiIjtcLIs3BLN5Y4EaBQqFrb4aMQg=
Subject key identifier: 07:B8:E7:9A:37:5A:A8:78:59:C8:30:32:5F:E2:86:CE:D8:ED:84:56
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019C9AD3A422320F50CED537FB88179AC30E
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/B7jnmjdaqHhZyDAyX-KGztjthFY.roa
Signing time: Thu 26 Feb 2026 16:41:27 +0000
ROA not before: Thu 26 Feb 2026 16:41:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 42375
IP address blocks: 192.144.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:9a:d3:a4:22:32:0f:50:ce:d5:37:fb:88:17:9a:c3:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Feb 26 16:41:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=07b8e79a375aa87859c830325fe286ced8ed8456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ec:3b:b0:ac:d0:dc:8d:1a:0f:11:cd:a7:e0:
df:4b:41:39:7d:ec:e4:eb:57:d9:eb:db:90:22:8c:
b1:22:08:e2:4d:fd:8f:d5:de:6e:45:d3:0b:6f:40:
6b:8f:be:31:73:d7:15:aa:a1:19:99:37:ca:24:5d:
24:8f:4a:f9:c2:38:b1:fb:8e:44:ea:bf:a9:a5:21:
30:5e:ce:55:58:3f:b9:8c:01:95:5a:f7:20:34:e1:
37:fc:53:12:cc:9d:95:91:c1:6f:84:d4:48:42:78:
94:1f:10:cb:cb:83:2d:e6:27:fb:1b:37:20:d8:4f:
33:35:20:da:99:15:71:61:4d:88:75:6d:03:83:0e:
a3:2b:9d:31:57:0e:d8:8f:5d:13:de:87:b6:40:dd:
43:22:e7:da:67:c2:b0:c0:a5:25:fc:d0:f7:3b:4d:
57:49:dc:43:2d:bd:af:15:d2:c4:f3:09:b3:ed:f5:
82:f3:c9:2f:d4:e9:f6:e5:57:8a:da:58:03:e7:8e:
46:d1:a3:96:88:99:82:12:a7:7c:48:34:88:55:ee:
22:90:e8:bd:55:19:57:c5:33:30:f6:27:96:8b:7a:
ea:74:52:61:4d:ed:a6:f9:fb:e9:4c:8a:0b:b9:42:
56:a8:01:cb:2a:e0:5a:0b:c0:fe:bc:7c:00:1c:9f:
76:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B8:E7:9A:37:5A:A8:78:59:C8:30:32:5F:E2:86:CE:D8:ED:84:56
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/B7jnmjdaqHhZyDAyX-KGztjthFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.29.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:1d:45:61:09:f6:77:e1:40:5a:9a:fd:cd:b3:18:80:14:4b:
d5:64:4b:75:57:ef:3a:e4:f2:0c:ca:76:88:14:38:bc:2b:c8:
dd:64:f1:41:45:1f:f9:52:b0:09:a2:cb:fd:49:f6:bc:55:d5:
be:c3:1f:47:5e:54:f7:0a:0a:1b:99:43:91:01:79:e4:b0:5c:
5d:07:cf:12:b0:d2:62:2e:9f:fb:7d:86:07:77:72:78:4e:e2:
88:f4:f6:72:97:71:95:4f:b1:0d:65:a2:42:55:0e:db:42:68:
29:0a:bb:38:3e:01:e2:d6:42:13:ba:e6:04:13:2b:6c:71:6f:
af:cd:0e:eb:33:f6:22:92:94:c5:0d:81:02:e6:8e:8c:c7:b4:
63:70:51:80:ce:fd:b3:55:99:29:50:e9:b0:19:55:f2:7a:71:
76:bf:7c:21:fd:ce:25:2b:7e:26:3e:2d:2b:c3:dd:b2:08:19:
b4:a8:75:fe:22:ce:3f:75:f3:f2:f3:a3:16:3b:11:4c:72:bf:
b8:97:c9:49:69:13:4f:16:3d:4b:ea:ef:67:60:f6:7d:4d:7c:
0b:fc:98:6c:48:73:40:a4:fd:b7:36:40:c2:0e:05:5e:75:a5:
1a:03:64:03:92:16:ca:63:70:ae:c0:c2:2e:e2:43:28:ce:c7:
53:1b:a3:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:18:19 2026 by rpki-client