Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/mi5UdugB7saftfqiUyQPEhUTU6U.roa
File: mi5UdugB7saftfqiUyQPEhUTU6U.roa (raw, json)
Hash identifier: fCT43nAEnI224CXuau2ugHoxaLrrDRNyaSrjl9LFtAY=
Subject key identifier: 9A:2E:54:76:E8:01:EE:C6:9F:B5:FA:A2:53:24:0F:12:15:13:53:A5
Certificate issuer: /CN=b56fa2bcfb1ba199d0a6597fb88954c0a6c512d5
Certificate serial: 019EAD54B9FC995569CF9D1C5526C1FD8023
Authority key identifier: B5:6F:A2:BC:FB:1B:A1:99:D0:A6:59:7F:B8:89:54:C0:A6:C5:12:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW-ivPsboZnQpll_uIlUwKbFEtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/mi5UdugB7saftfqiUyQPEhUTU6U.roa
Signing time: Tue 09 Jun 2026 17:01:11 +0000
ROA not before: Tue 09 Jun 2026 17:01:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 47007
IP address blocks: 45.11.32.0/23 maxlen: 24
45.11.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/tW-ivPsboZnQpll_uIlUwKbFEtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/tW-ivPsboZnQpll_uIlUwKbFEtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW-ivPsboZnQpll_uIlUwKbFEtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ad:54:b9:fc:99:55:69:cf:9d:1c:55:26:c1:fd:80:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56fa2bcfb1ba199d0a6597fb88954c0a6c512d5
Validity
Not Before: Jun 9 17:01:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9a2e5476e801eec69fb5faa253240f12151353a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:37:53:89:3c:84:c6:a5:24:3a:54:8c:4b:07:
a2:5f:cc:7e:28:e7:05:c5:a2:d4:14:93:e9:47:21:
85:8f:83:13:d2:34:42:53:f4:c9:49:32:e8:2b:cf:
60:b1:7d:56:88:c6:c3:d9:08:b1:7f:d3:f5:53:62:
da:9b:23:6e:62:60:83:ba:a3:f3:e9:b7:47:be:57:
ea:24:eb:cd:9b:03:0e:8a:0b:f7:95:41:1c:83:85:
17:eb:b4:a2:bc:3f:0d:8d:45:a7:61:b2:4b:71:7a:
4e:85:10:c6:dd:c2:d6:a0:75:65:4d:31:82:86:59:
57:56:14:b9:19:40:62:e0:37:79:b1:98:12:56:12:
e7:cf:09:f7:1d:39:54:a8:0d:5d:e0:dd:f2:75:c0:
11:12:32:36:c8:52:91:63:42:44:85:93:b0:34:cc:
85:d6:cd:3a:c0:1b:4d:c8:9c:62:77:47:9a:9c:57:
3b:89:f3:4a:99:0c:0e:97:58:79:af:f6:51:5a:66:
a8:33:f7:ae:0c:b6:d8:31:c7:dd:4b:6c:2c:54:82:
7f:56:7d:6f:13:5d:57:a8:f6:8a:64:b7:f0:27:a8:
2c:55:72:9f:5f:30:18:42:66:64:7a:ab:97:c9:6c:
6d:db:0d:39:1c:36:4e:f3:e4:3e:c7:00:88:02:b7:
a3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:2E:54:76:E8:01:EE:C6:9F:B5:FA:A2:53:24:0F:12:15:13:53:A5
X509v3 Authority Key Identifier:
keyid:B5:6F:A2:BC:FB:1B:A1:99:D0:A6:59:7F:B8:89:54:C0:A6:C5:12:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW-ivPsboZnQpll_uIlUwKbFEtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/mi5UdugB7saftfqiUyQPEhUTU6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/tW-ivPsboZnQpll_uIlUwKbFEtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.32.0/22
Signature Algorithm: sha256WithRSAEncryption
59:34:6d:39:c7:c6:96:2e:a9:aa:d1:a3:96:63:33:f4:ac:be:
84:b5:2c:9b:02:b1:44:58:47:01:92:9f:97:56:d4:f0:85:34:
5f:37:3e:e9:be:b2:04:25:42:b2:3b:89:f2:31:71:da:69:b9:
6b:33:1c:1d:e0:6b:85:6e:b8:d8:22:dc:aa:1c:54:88:89:2e:
28:4a:44:44:49:9b:71:85:1e:13:73:ff:d7:da:2c:4e:4b:8a:
dd:b1:12:e8:88:21:59:a6:ea:ab:58:37:5a:4b:6e:8d:c3:4a:
f8:98:84:d4:82:b2:15:cf:22:bd:c6:4e:4f:1f:e6:1e:1d:5a:
24:bb:76:e7:46:d3:22:9d:19:a7:84:e9:ce:53:45:7d:89:35:
ee:79:ad:b4:de:0f:da:f7:fd:fa:66:f7:16:b6:1c:9e:38:e4:
e0:e0:56:24:47:bf:df:6a:4b:4d:d3:90:87:9a:b4:34:f8:21:
d8:66:54:65:e4:00:33:c2:5b:1b:e9:aa:00:6b:aa:55:50:17:
f0:1f:c3:fe:d5:20:00:a3:1e:0f:05:41:eb:bd:75:8e:09:37:
41:8b:ef:85:92:92:d7:76:12:7d:41:be:8d:49:94:e5:46:30:
b7:dd:a2:b3:41:64:77:5e:f0:ad:57:e9:e3:8a:4b:a3:e9:3f:
2b:2a:79:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:55:35 2026 by rpki-client