Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vtxM4nxl4ob0ddetbPSQJREmIBg.roa
File: vtxM4nxl4ob0ddetbPSQJREmIBg.roa (raw, json)
Hash identifier: swoXkdoOElKB4aIVkd7pOwjsH4v3L0pWUUrWuQFV5Ds=
Subject key identifier: BE:DC:4C:E2:7C:65:E2:86:F4:75:D7:AD:6C:F4:90:25:11:26:20:18
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019EA6B612938098CBB3F1BCFFFF737C6FC3
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vtxM4nxl4ob0ddetbPSQJREmIBg.roa
Signing time: Mon 08 Jun 2026 10:10:10 +0000
ROA not before: Mon 08 Jun 2026 10:10:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 199707
IP address blocks: 78.17.92.0/22 maxlen: 22
140.225.212.0/24 maxlen: 24
140.225.213.0/24 maxlen: 24
140.225.214.0/24 maxlen: 24
140.225.215.0/24 maxlen: 24
167.17.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a6:b6:12:93:80:98:cb:b3:f1:bc:ff:ff:73:7c:6f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 8 10:10:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=bedc4ce27c65e286f475d7ad6cf4902511262018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3e:bd:63:79:42:03:88:33:7f:33:8b:f0:06:
72:8c:69:67:b1:be:e3:42:e7:eb:53:b8:13:87:09:
57:86:8e:0f:f1:c9:44:6f:2f:0a:49:76:40:64:11:
0e:ff:e1:de:36:b8:87:97:8f:1c:0c:32:14:0d:0e:
6d:a3:53:20:98:15:0e:28:3c:bd:58:bc:45:3e:23:
68:f3:1c:f0:3d:1a:a6:11:95:b7:da:68:ed:29:52:
ab:f0:38:3c:71:27:c8:16:38:59:cf:43:38:98:65:
86:89:04:d5:17:27:5d:eb:0f:9d:fa:aa:f9:30:fb:
e5:28:99:ef:6d:94:e7:5b:05:8c:3d:3f:df:a9:ce:
92:c6:09:cf:33:e1:f9:6b:e2:58:25:35:eb:27:83:
f5:d4:06:87:81:fa:85:89:32:30:4e:a9:3f:74:bc:
22:83:19:15:41:b0:94:e4:73:65:a7:00:ce:40:05:
db:44:bd:90:63:e1:c1:46:35:a5:5a:39:98:09:a4:
1b:04:2a:21:3a:66:d2:21:b8:ff:7e:12:0c:c3:09:
85:23:d3:3c:75:12:b5:d4:a4:3d:6e:55:75:4b:96:
cd:e0:87:00:92:f4:fa:79:86:3e:1e:e4:7b:77:b8:
2c:14:ce:96:be:17:dd:05:eb:ae:e3:65:ab:68:7c:
d9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DC:4C:E2:7C:65:E2:86:F4:75:D7:AD:6C:F4:90:25:11:26:20:18
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/vtxM4nxl4ob0ddetbPSQJREmIBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.17.92.0/22
140.225.212.0/22
167.17.59.0/24
Signature Algorithm: sha256WithRSAEncryption
35:db:95:ff:31:68:fc:c2:3c:70:4c:f0:d1:86:5f:ab:c2:fe:
63:a7:5f:1d:30:77:9d:ae:7f:5d:16:5d:d1:bf:30:10:6c:16:
0a:fb:23:b0:93:ca:63:f6:76:66:0f:1c:d4:55:91:18:a4:a1:
b2:66:90:fa:49:8f:06:9a:39:dc:1f:6f:d8:b2:a8:1e:63:d1:
c7:d8:da:2f:1b:60:89:09:0e:fc:77:32:f7:3d:b6:04:8a:a2:
c9:6c:8a:ad:d8:4a:68:fc:6a:5e:0e:aa:a3:42:2a:c3:a8:35:
bf:19:ea:d7:c1:62:2f:a9:7b:a7:19:68:91:ab:f4:4d:b8:a5:
39:6e:92:d8:74:0d:d4:0e:8b:9c:17:c4:26:d3:91:66:1e:f5:
d1:e7:2f:66:88:28:9b:60:bb:92:92:5c:4e:79:87:71:f3:84:
3c:08:ad:cd:ff:19:98:de:f7:19:4d:9b:26:35:2d:c5:ef:05:
d6:76:5c:9b:ab:a3:85:ab:49:3e:e0:88:07:d8:07:46:d9:82:
5a:b3:be:df:64:a0:31:0c:23:b0:89:81:02:ff:a3:6e:c1:b1:
e5:bf:4e:2a:ee:62:b4:cc:20:a3:4c:7b:4c:5a:42:3a:3d:6b:
47:30:ba:78:57:36:eb:f2:2a:0c:19:01:75:c8:41:b9:79:79:
41:5a:02:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:23:23 2026 by rpki-client