Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/7t9h0EmLJDymzV1ISEm_pwwv5gE.roa
File: 7t9h0EmLJDymzV1ISEm_pwwv5gE.roa (raw, json)
Hash identifier: dCWr9ySeitmuMdQ/XDmnCOtGQ72/I3M8iBYtmK9Hqz8=
Subject key identifier: EE:DF:61:D0:49:8B:24:3C:A6:CD:5D:48:48:49:BF:A7:0C:2F:E6:01
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 019D956B741DF5B53C4277455AB1529DF5A0
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/7t9h0EmLJDymzV1ISEm_pwwv5gE.roa
Signing time: Thu 16 Apr 2026 08:32:20 +0000
ROA not before: Thu 16 Apr 2026 08:32:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 214025
IP address blocks: 212.100.165.0/24 maxlen: 24
212.100.176.0/24 maxlen: 24
212.100.178.0/24 maxlen: 24
212.100.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:95:6b:74:1d:f5:b5:3c:42:77:45:5a:b1:52:9d:f5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Apr 16 08:32:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=eedf61d0498b243ca6cd5d484849bfa70c2fe601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:e5:29:f8:36:0f:6b:ee:7d:b4:1a:8c:98:
f6:95:ed:8b:ed:a1:60:08:03:4b:ff:55:23:0a:46:
d1:30:59:c0:54:f7:4d:4a:f2:de:a1:bf:8a:fb:3e:
4c:7d:31:e8:f5:34:12:70:ca:b3:46:92:1f:0d:9e:
b6:c2:66:b2:d9:ee:54:05:5f:fb:a2:22:fd:61:19:
b4:8d:e0:02:a6:37:ab:63:9d:76:25:6a:b6:7e:94:
fe:8f:45:7f:87:77:c0:70:79:33:33:82:15:6f:d5:
a8:28:74:f9:56:49:9b:71:11:52:31:75:a5:4e:23:
c7:0f:41:66:77:fb:ea:98:c7:f6:c8:a9:c6:40:e1:
d8:ce:6c:b4:25:f4:65:31:d5:43:24:9b:ad:fe:b3:
33:58:00:ed:52:65:82:94:1d:be:6d:7d:d8:61:65:
c7:75:f7:7c:89:95:7e:4f:45:a1:39:9a:77:23:e2:
c8:12:8c:e4:18:e5:0f:d9:bc:f8:94:38:23:02:39:
e5:d8:49:4a:6d:94:f1:0e:83:33:6c:1b:53:73:87:
5d:55:7b:d2:4b:5d:95:b8:17:9d:f1:86:37:80:5c:
a5:83:8d:11:14:96:9e:a3:0d:ed:cc:08:4b:1c:a6:
ac:86:ef:4a:26:64:49:91:a2:77:7a:96:78:4c:f5:
d6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DF:61:D0:49:8B:24:3C:A6:CD:5D:48:48:49:BF:A7:0C:2F:E6:01
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/7t9h0EmLJDymzV1ISEm_pwwv5gE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.100.165.0/24
212.100.176.0/24
212.100.178.0/24
212.100.191.0/24
Signature Algorithm: sha256WithRSAEncryption
18:1a:08:5d:73:b1:5d:8b:fa:fe:4e:ed:ab:27:f4:7b:cc:ed:
90:db:00:b2:31:49:f0:e9:e6:10:f5:de:9c:79:cd:2e:59:41:
c4:26:e1:fa:28:08:44:05:70:bb:54:2e:62:cd:27:ec:cd:fa:
98:b6:b2:d8:e1:6b:40:02:aa:aa:be:b9:73:37:f8:a7:92:d4:
6a:7d:42:a3:ea:15:f3:fd:ec:d5:23:70:cd:84:5c:f7:bb:36:
42:11:e6:cb:ad:4f:06:0f:c8:70:65:d6:26:40:42:af:65:0c:
85:82:7b:8d:6f:b0:a5:81:df:0d:70:e3:89:1a:88:19:f4:ae:
60:e7:cd:26:f1:18:27:63:79:df:7b:b5:92:8f:9b:2d:de:4e:
f2:7c:f2:9d:5d:e0:02:04:15:b7:12:18:e9:df:96:ae:2c:81:
7d:bd:00:c3:c7:b1:5a:d9:d2:4f:b2:58:18:75:60:8c:ca:67:
7c:67:09:09:b0:b3:bd:2b:6f:d1:2f:f0:0d:02:62:f6:dd:48:
bc:61:ff:9d:a9:31:80:54:58:22:ed:44:bc:15:3d:ce:a1:3e:
3b:a5:36:a5:19:a7:6f:6b:32:33:88:fd:94:7c:d3:c2:d7:22:
68:0e:92:fe:b0:6b:1f:7b:1a:1f:e2:31:29:31:14:a4:0c:b4:
4d:ec:40:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:37:46 2026 by rpki-client