Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5d68a2-95d3-4ddf-85f6-805170ac9c0e/1/loPeDfGPyDMlaIz52TWhtcsHUe8.roa
File: loPeDfGPyDMlaIz52TWhtcsHUe8.roa (raw, json)
Hash identifier: eVYCTyXWXF7uzmYgmDXlX+QmiWaxF3k2ICYH5NEVWDE=
Subject key identifier: 96:83:DE:0D:F1:8F:C8:33:25:68:8C:F9:D9:35:A1:B5:CB:07:51:EF
Certificate issuer: /CN=b6b2333f066573f5316e075a01ce2490b58c6ae1
Certificate serial: 019D3BDDB1B304A9D1C00C177F771DEC9354
Authority key identifier: B6:B2:33:3F:06:65:73:F5:31:6E:07:5A:01:CE:24:90:B5:8C:6A:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trIzPwZlc_UxbgdaAc4kkLWMauE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5d68a2-95d3-4ddf-85f6-805170ac9c0e/1/loPeDfGPyDMlaIz52TWhtcsHUe8.roa
Signing time: Sun 29 Mar 2026 23:11:17 +0000
ROA not before: Sun 29 Mar 2026 23:11:17 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402335
IP address blocks: 2001:678:1184::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5d68a2-95d3-4ddf-85f6-805170ac9c0e/1/trIzPwZlc_UxbgdaAc4kkLWMauE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5d68a2-95d3-4ddf-85f6-805170ac9c0e/1/trIzPwZlc_UxbgdaAc4kkLWMauE.mft
rsync://rpki.ripe.net/repository/DEFAULT/trIzPwZlc_UxbgdaAc4kkLWMauE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3b:dd:b1:b3:04:a9:d1:c0:0c:17:7f:77:1d:ec:93:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6b2333f066573f5316e075a01ce2490b58c6ae1
Validity
Not Before: Mar 29 23:11:17 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9683de0df18fc83325688cf9d935a1b5cb0751ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b3:24:91:15:41:28:06:29:55:83:a3:a6:bc:
93:b8:05:3f:ba:82:fe:66:19:30:b2:92:a0:bf:0e:
ff:a8:05:98:4f:4d:a3:33:47:53:76:87:45:a6:03:
1b:2c:69:f2:61:92:ec:20:fd:1e:34:c6:aa:8e:b8:
f9:f5:ed:9a:48:3e:4c:8b:f2:1b:d9:50:45:c0:9d:
76:26:70:89:43:a4:85:5f:f8:27:7d:1d:72:30:d8:
9d:85:00:92:6b:02:2d:58:36:1e:48:4d:d5:69:80:
6c:03:89:be:c0:79:9d:83:4b:22:2f:83:a1:f6:ec:
7d:7e:ae:97:33:eb:5f:d0:94:e3:7b:e8:c9:f8:7b:
09:cd:24:f9:4f:72:9a:30:5f:82:b1:93:13:f4:30:
d1:8b:5e:54:83:60:3a:34:e2:39:ab:36:aa:45:5c:
c0:4e:23:94:4b:ee:17:ac:59:49:94:d8:0d:64:66:
20:76:c7:f9:23:93:34:6a:60:89:03:4a:0f:f3:e8:
0f:c5:a2:f1:bc:f5:d1:15:56:aa:8d:0f:8b:1e:47:
17:a0:a2:69:9c:67:a8:1d:05:3c:18:9c:61:35:89:
bf:10:82:92:93:22:3c:d1:68:d1:a1:ea:36:eb:f9:
66:ea:2f:78:73:c7:73:d0:67:e4:0a:d4:8b:b1:b7:
1e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:83:DE:0D:F1:8F:C8:33:25:68:8C:F9:D9:35:A1:B5:CB:07:51:EF
X509v3 Authority Key Identifier:
keyid:B6:B2:33:3F:06:65:73:F5:31:6E:07:5A:01:CE:24:90:B5:8C:6A:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trIzPwZlc_UxbgdaAc4kkLWMauE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5d68a2-95d3-4ddf-85f6-805170ac9c0e/1/loPeDfGPyDMlaIz52TWhtcsHUe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5d68a2-95d3-4ddf-85f6-805170ac9c0e/1/trIzPwZlc_UxbgdaAc4kkLWMauE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:1184::/48
Signature Algorithm: sha256WithRSAEncryption
ba:ee:5b:b6:ac:7a:ee:e3:82:29:89:49:e9:59:c4:b9:88:d7:
0b:2c:9a:4d:52:f1:12:df:af:44:15:66:5e:15:93:fc:c5:01:
be:05:f9:6c:07:cc:99:27:e8:68:7f:f3:fd:35:99:a2:ea:a6:
bb:6c:77:e7:3c:87:57:65:8b:c1:ed:83:15:84:d6:bf:f3:d9:
cf:85:38:7f:f6:47:6e:67:a4:68:01:40:6e:ac:e6:fc:d9:a1:
7e:89:8b:24:56:49:7a:a9:f4:09:6f:b7:9a:e3:e0:c0:50:48:
4e:04:94:46:bb:b1:9d:0c:c0:4b:f1:c5:34:24:a1:43:aa:db:
8f:45:77:aa:2c:5b:7a:c5:15:b7:60:86:41:47:9d:a2:9b:52:
07:49:df:8e:c1:eb:ca:ba:ad:7f:5a:cd:ca:7e:fc:a7:d2:89:
8d:fd:da:da:46:d0:09:e5:1f:17:6d:7c:09:47:df:f6:97:53:
7b:a1:d5:aa:b0:19:c6:de:0c:e9:36:df:53:e8:89:ab:54:33:
5a:4a:9f:af:53:5a:55:04:cd:ac:09:d1:1c:cf:90:3b:31:65:
3a:35:1a:ac:fc:07:bd:5e:80:11:9f:14:2e:4b:a1:bf:8b:5e:
b6:f2:8c:23:1a:17:9d:5f:68:e4:29:65:91:71:38:c1:1b:54:
c2:d4:51:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:18:29 2026 by rpki-client