Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/dUM5HIQ_E6X59HfAX1zWrbV1xpA.roa
File: dUM5HIQ_E6X59HfAX1zWrbV1xpA.roa (raw, json)
Hash identifier: gIGScdVuCjnrE9QXopkX8oDOZk/gFHIfPxU49qXFuU0=
Subject key identifier: 75:43:39:1C:84:3F:13:A5:F9:F4:77:C0:5F:5C:D6:AD:B5:75:C6:90
Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Certificate serial: 019D47B8AAC5CB3C20FE9BDF839B07C032D8
Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/dUM5HIQ_E6X59HfAX1zWrbV1xpA.roa
Signing time: Wed 01 Apr 2026 06:26:17 +0000
ROA not before: Wed 01 Apr 2026 06:26:17 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 17497
IP address blocks: 212.100.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:47:b8:aa:c5:cb:3c:20:fe:9b:df:83:9b:07:c0:32:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626
Validity
Not Before: Apr 1 06:26:17 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7543391c843f13a5f9f477c05f5cd6adb575c690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:45:10:89:fe:d1:5d:c0:e4:09:70:89:77:34:
96:58:dc:00:ea:be:0d:68:e1:8f:27:f4:2e:ec:c7:
8a:a4:8b:6c:78:fc:30:31:ea:f5:f1:28:4b:31:c1:
f2:3c:ba:df:d4:5c:4b:e1:67:4a:aa:bc:11:c5:38:
2b:ec:6c:ad:ee:3b:7c:2f:58:48:87:24:cc:7c:45:
0c:72:04:d2:4d:5b:52:eb:bb:ec:3b:2f:69:b3:e6:
5b:3c:38:bc:8e:6d:da:9f:3e:f8:f9:59:8f:f0:c2:
d8:7c:fa:04:5a:ad:ca:db:02:48:21:2b:5e:40:0a:
3c:97:3c:d1:93:53:6d:d4:cd:27:17:cb:60:52:e8:
48:02:49:87:2d:22:63:0c:16:4f:af:16:b4:0b:c5:
b1:32:c8:01:49:ae:68:8a:c7:f1:05:20:fc:53:fc:
04:5e:c3:cd:10:ca:d5:89:0e:43:90:52:6b:69:d0:
12:2b:8f:f7:47:06:ba:6e:e3:fe:e7:09:d2:f0:c9:
c6:b5:dd:2c:c8:6d:6c:ae:17:ec:5c:f7:12:ff:0a:
3a:ea:e1:67:a0:3d:0b:d7:d9:98:f4:5b:96:b9:e4:
05:ff:69:69:87:53:dd:4b:de:31:98:d1:4f:5a:a9:
39:9e:51:47:09:ee:4c:31:4c:8f:c9:62:2f:86:28:
e1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:43:39:1C:84:3F:13:A5:F9:F4:77:C0:5F:5C:D6:AD:B5:75:C6:90
X509v3 Authority Key Identifier:
keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/dUM5HIQ_E6X59HfAX1zWrbV1xpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.100.170.0/24
Signature Algorithm: sha256WithRSAEncryption
20:fc:2a:eb:31:73:b4:af:31:4c:bf:1a:b1:5d:d4:b0:cf:fe:
bd:8b:51:87:2d:79:c5:3b:ee:a2:d9:4b:9f:83:c4:23:94:66:
bb:90:6f:30:81:7d:f4:5b:c6:83:8c:02:f3:d9:33:66:d5:a8:
90:ee:c2:ae:a8:b4:f9:bf:75:28:2b:26:01:29:d2:3f:30:82:
cc:2b:03:2a:75:21:e8:2b:06:da:55:57:91:10:42:78:3b:f6:
f3:57:b2:d0:a0:2e:ba:92:b9:0a:4e:0c:96:0b:8b:47:9d:b9:
8e:7f:35:23:ca:42:ba:01:55:6b:16:1a:66:76:a9:ae:69:1b:
7c:fc:40:b1:f4:57:7c:76:6e:2f:a7:67:08:81:4b:54:05:fd:
41:19:ef:da:a1:bd:c6:e6:49:e4:da:c4:7f:16:4b:fc:6a:1e:
6e:79:49:44:24:f6:ed:82:4a:25:0c:6e:23:99:9a:99:a7:b8:
c8:8d:30:48:d7:59:4a:2f:e8:40:3e:7f:44:ae:01:ae:ec:9b:
cd:66:1d:de:71:26:f5:a4:30:80:62:99:67:22:fa:c5:92:f5:
cc:17:49:82:33:df:c8:ff:b5:3c:e2:cd:6d:f1:9a:22:24:01:
6f:12:a2:bc:5b:41:4d:10:28:6a:45:e1:d9:e4:4e:90:d2:2e:
a5:e1:8c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 13:18:29 2026 by rpki-client