Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/A1CXr4dOt7xuCmQiPBtgt3iWtAo.roa
File: A1CXr4dOt7xuCmQiPBtgt3iWtAo.roa (raw, json)
Hash identifier: GtPqaBuYk/tZ5YQVdapU19lv8Ijc7CBMwLU16C7BxnM=
Subject key identifier: 03:50:97:AF:87:4E:B7:BC:6E:0A:64:22:3C:1B:60:B7:78:96:B4:0A
Certificate issuer: /CN=67ce179cbe13ddb14012985a067100ef98a55601
Certificate serial: 019E8227CD4FADFBC07929492A26011BC2E3
Authority key identifier: 67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/A1CXr4dOt7xuCmQiPBtgt3iWtAo.roa
Signing time: Mon 01 Jun 2026 07:48:26 +0000
ROA not before: Mon 01 Jun 2026 07:48:26 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51345
IP address blocks: 92.42.101.0/24 maxlen: 24
2a13:1c40::/32 maxlen: 32
2a13:1c42::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 22:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:82:27:cd:4f:ad:fb:c0:79:29:49:2a:26:01:1b:c2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ce179cbe13ddb14012985a067100ef98a55601
Validity
Not Before: Jun 1 07:48:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=035097af874eb7bc6e0a64223c1b60b77896b40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ec:b8:65:46:9a:aa:47:fc:3c:2c:0e:c2:ef:
b2:50:16:5f:d2:5d:e7:ad:57:c4:35:41:19:ec:d5:
7c:b7:c2:83:0a:ae:43:94:3e:01:3d:c2:5e:bf:27:
e1:7d:0f:7b:71:4a:03:d1:2b:4d:b0:4f:df:bf:aa:
0d:c0:27:42:8b:5a:40:d6:5e:9f:2c:44:d3:1f:cb:
75:30:08:1b:e3:2c:55:97:6b:ae:e2:02:c6:4a:af:
25:1e:4c:51:b0:cc:ac:e1:86:70:d7:ff:8c:48:9d:
31:2a:3f:13:67:29:4d:5c:b7:10:81:7a:fe:98:31:
8b:38:53:c8:f8:0e:5c:28:0b:c7:7b:f7:cc:7d:09:
5c:1a:ff:84:92:32:47:07:e7:ba:f7:ce:8d:7c:91:
a2:4d:6a:15:fc:7a:94:31:fd:65:f3:90:8a:25:b2:
0e:de:64:cd:df:c0:1d:21:7a:e9:2d:5f:70:0a:4d:
25:c9:36:4b:e3:66:4e:f6:05:cf:e0:cc:96:0e:ea:
3f:f9:5e:25:e5:44:e6:5c:80:67:c6:d5:71:93:03:
1b:e2:14:e8:2e:ce:34:ef:06:4d:70:62:9f:95:7b:
ab:7c:d8:bc:26:bc:1a:dd:ca:ca:1f:e7:f6:65:58:
74:b0:b0:b4:2a:e6:74:a5:5a:df:23:86:1b:36:8c:
04:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:50:97:AF:87:4E:B7:BC:6E:0A:64:22:3C:1B:60:B7:78:96:B4:0A
X509v3 Authority Key Identifier:
keyid:67:CE:17:9C:BE:13:DD:B1:40:12:98:5A:06:71:00:EF:98:A5:56:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z84XnL4T3bFAEphaBnEA75ilVgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/A1CXr4dOt7xuCmQiPBtgt3iWtAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5d7192-a719-4cd7-994a-62c01dc69cca/1/Z84XnL4T3bFAEphaBnEA75ilVgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.42.101.0/24
IPv6:
2a13:1c40::/32
2a13:1c42::/32
Signature Algorithm: sha256WithRSAEncryption
80:25:50:0e:7d:2f:d2:ef:b6:7f:3b:93:40:64:1b:74:62:a2:
66:e9:3a:47:f5:06:91:5a:a8:a5:63:ea:a8:90:41:bb:5f:7f:
d6:5d:d9:77:f0:17:07:6a:3c:2b:4a:d6:82:05:11:1b:bf:3e:
09:5e:d5:84:20:31:e6:9e:72:af:7a:68:10:fa:f2:74:2a:ef:
86:1b:ae:07:dd:c9:c3:42:18:12:af:98:fc:1a:7d:67:db:af:
ab:72:59:31:6d:25:9e:f3:1a:25:49:3b:20:9d:e9:0c:23:29:
c4:ef:45:94:37:fd:9d:86:af:6e:f2:7e:c2:68:21:18:a1:33:
cc:c0:d3:e8:db:60:0b:2b:b9:7f:1d:7e:cd:3d:e5:22:de:3e:
33:bc:ec:11:1f:d3:4b:1c:97:ae:c0:70:7b:8f:fd:07:77:bb:
7f:0b:49:aa:82:71:56:9d:0c:3a:7a:58:9c:c1:9a:af:bd:28:
87:68:ea:f4:67:77:bd:c4:15:de:2d:80:9f:d6:ac:04:ef:72:
08:ea:fa:79:e9:a0:40:ed:c8:b9:e3:00:19:35:4a:52:c3:7c:
0b:7f:99:2b:2e:f8:7f:8a:c7:77:fc:48:c9:61:10:b7:53:12:
3d:d5:dd:24:6c:b8:ae:2b:34:b5:62:5f:5f:f9:6b:83:0f:7f:
59:55:d2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:41:07 2026 by rpki-client