Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Jt2XtzTOx9mMHVDfGopDRW0f6YU.roa
File: Jt2XtzTOx9mMHVDfGopDRW0f6YU.roa (raw, json)
Hash identifier: 1AhHu9dXIskxJOcoXbYzksE4q9Id9ZNInIRwdtln5vY=
Subject key identifier: 26:DD:97:B7:34:CE:C7:D9:8C:1D:50:DF:1A:8A:43:45:6D:1F:E9:85
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019D8103746E18F87B6759B8BD00A066A283
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Jt2XtzTOx9mMHVDfGopDRW0f6YU.roa
Signing time: Sun 12 Apr 2026 09:26:20 +0000
ROA not before: Sun 12 Apr 2026 09:26:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63199
IP address blocks: 147.90.6.0/24 maxlen: 24
147.90.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:81:03:74:6e:18:f8:7b:67:59:b8:bd:00:a0:66:a2:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Apr 12 09:26:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=26dd97b734cec7d98c1d50df1a8a43456d1fe985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5e:4a:a1:04:61:af:6d:e7:5e:18:8b:bb:a0:
2d:f4:d9:7b:fb:6f:d9:52:c8:89:44:de:e4:56:9e:
fc:bf:e2:0c:40:97:76:b6:e8:b1:f9:85:83:a5:87:
58:df:9a:27:e1:a5:62:b5:a9:cd:4e:35:fd:71:b6:
c2:77:a7:d0:20:10:a1:22:55:0b:bf:53:33:bb:09:
e4:fb:1f:7e:7b:39:55:c9:29:8d:2e:95:a2:6a:19:
40:45:24:dc:77:58:03:8d:ba:78:1b:7e:e0:f5:5d:
02:eb:6a:96:a2:44:07:a4:95:5a:39:62:bd:bd:ff:
d4:fe:fd:31:13:65:85:90:44:97:c1:6f:73:9c:8b:
8f:75:db:b5:89:2b:db:fc:14:4c:12:e7:e4:f3:b2:
6e:94:34:70:71:36:dc:ef:e9:fe:53:95:b9:a0:46:
7f:3c:63:6d:69:6a:a3:ce:bc:e0:20:3d:bf:77:61:
21:ad:49:71:5d:8e:d9:9c:2b:c5:40:4f:67:2c:98:
06:4b:66:3f:00:6a:2e:76:44:38:81:3a:25:ca:c7:
61:68:ed:d5:81:ea:d9:ea:ee:a7:59:5a:e7:16:ef:
de:92:c4:6a:00:d8:12:ad:98:89:53:80:e7:13:dc:
a4:1f:df:37:d1:65:b7:c3:84:40:89:29:63:9d:18:
07:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:DD:97:B7:34:CE:C7:D9:8C:1D:50:DF:1A:8A:43:45:6D:1F:E9:85
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Jt2XtzTOx9mMHVDfGopDRW0f6YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.90.6.0/24
147.90.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:2b:73:e5:3c:d9:33:26:32:95:f5:c1:ee:01:ea:3a:3d:a7:
25:88:5c:af:e0:34:d8:f2:a6:f4:ee:b9:74:00:c2:52:36:1e:
a8:4e:99:04:76:bb:b7:6e:83:2f:e8:fe:c9:31:b7:52:c1:d1:
68:4e:ff:c7:b5:39:94:87:a8:1d:45:58:df:51:25:fe:4f:1c:
85:17:f4:91:8b:7b:3a:1f:af:e2:ef:33:e2:88:f4:a1:47:21:
0f:d4:5c:17:3b:f4:8f:97:09:e1:db:53:8f:f4:82:56:ea:e9:
ff:90:8f:eb:82:8d:21:a4:f2:ef:fd:dd:a7:b3:64:2c:cb:b9:
08:70:ef:95:cb:35:9a:55:9b:1c:e7:3c:76:5e:3c:68:f0:0e:
b9:ec:a1:b8:83:dd:59:44:7a:6e:0f:f6:6a:7d:49:25:35:75:
59:00:2c:c5:30:11:4d:03:4c:98:52:32:18:38:35:b2:2c:64:
64:68:dd:14:9a:42:b3:6b:3f:9a:e8:a3:32:7a:18:5c:19:7f:
e1:b8:0b:6a:ae:40:22:33:65:e7:4a:4a:17:df:79:d2:34:44:
df:78:c2:3f:44:fa:0f:20:bf:0b:e7:f7:35:4b:83:76:e9:6f:
a7:cc:e7:f3:80:84:35:4c:3b:4f:80:13:2f:12:7d:f8:08:7e:
a3:0d:38:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:24:52 2026 by rpki-client