Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/rN4NLaMID6DZ_1Tf-dsWVDuA2X4.roa
File: rN4NLaMID6DZ_1Tf-dsWVDuA2X4.roa (raw, json)
Hash identifier: 7gf462IZs1uEZ6uPb1SMqjZ8MS74g0QNcTk84kmywms=
Subject key identifier: AC:DE:0D:2D:A3:08:0F:A0:D9:FF:54:DF:F9:DB:16:54:3B:80:D9:7E
Certificate issuer: /CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Certificate serial: 019D4538B588EF2DDD7E2D47399E011BCD03
Authority key identifier: 5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/rN4NLaMID6DZ_1Tf-dsWVDuA2X4.roa
Signing time: Tue 31 Mar 2026 18:47:17 +0000
ROA not before: Tue 31 Mar 2026 18:47:17 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62068
IP address blocks: 178.214.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:45:38:b5:88:ef:2d:dd:7e:2d:47:39:9e:01:1b:cd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6b0c001a99ab6296e242173bf7e7fdcf03c019
Validity
Not Before: Mar 31 18:47:17 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=acde0d2da3080fa0d9ff54dff9db16543b80d97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:24:7e:56:be:c7:c5:92:49:28:87:f2:cd:dd:
0a:b9:21:bf:d1:8a:99:86:45:6d:5a:25:5d:4b:23:
47:ff:1a:9a:c4:e5:ba:1c:d1:48:13:07:ff:db:87:
15:05:c6:37:8d:c6:ee:da:36:f4:b6:e7:94:24:be:
1b:94:5e:89:9f:ad:30:08:b3:42:18:7a:69:b2:3d:
8c:1a:69:08:32:56:08:e6:e9:63:a9:46:7b:6a:cf:
65:6a:15:f8:7e:84:34:f7:42:b5:1d:fe:7e:bf:ec:
f5:0b:a8:d1:34:1b:d3:b2:49:cc:4f:6f:7c:11:72:
5f:59:dd:6a:37:58:dc:bb:87:66:10:5b:ad:55:ca:
93:35:39:26:15:e8:bc:a1:4f:57:62:92:fa:68:37:
3f:10:e3:49:13:db:b9:d6:0e:d1:2f:7d:12:84:9b:
53:6a:f3:07:00:93:18:b1:f3:f3:ea:20:fa:f9:29:
93:b6:77:9c:32:64:7d:96:88:0c:b3:45:63:3f:e1:
41:67:ef:3d:d1:80:19:14:1f:18:1c:9c:d6:aa:49:
95:5c:12:6d:16:76:2c:67:53:64:13:09:cf:5f:d3:
37:bf:8b:cc:80:e5:25:04:e0:54:26:9c:00:21:4b:
45:bb:d8:e8:77:4d:24:24:4d:48:8f:7c:66:38:df:
f3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DE:0D:2D:A3:08:0F:A0:D9:FF:54:DF:F9:DB:16:54:3B:80:D9:7E
X509v3 Authority Key Identifier:
keyid:5C:6B:0C:00:1A:99:AB:62:96:E2:42:17:3B:F7:E7:FD:CF:03:C0:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGsMABqZq2KW4kIXO_fn_c8DwBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/rN4NLaMID6DZ_1Tf-dsWVDuA2X4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/c89677-1d9a-418d-8593-c18e3ccc742b/1/XGsMABqZq2KW4kIXO_fn_c8DwBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.222.0/24
Signature Algorithm: sha256WithRSAEncryption
84:ca:6e:60:99:57:3d:4a:a2:d3:42:71:c4:06:87:2d:ac:a9:
a7:8f:0f:d3:05:25:98:5a:2c:13:d5:b3:c2:24:ed:d9:ab:1a:
73:3e:fc:b3:29:52:4d:39:ce:64:39:46:22:71:09:33:d0:68:
2a:d2:df:f6:c0:b0:1b:ca:35:87:f7:4d:07:68:26:32:62:d0:
8a:d7:16:bd:e9:e2:90:16:ae:4b:81:8d:1c:ba:85:73:e9:4a:
c8:14:35:ac:3f:70:6e:b7:31:c4:2b:b4:2f:e1:ac:ef:90:1a:
9f:9b:8d:05:4b:8c:ff:15:d4:6e:e1:3e:b4:65:e8:45:8e:1f:
68:46:b7:6b:6e:8f:61:76:fb:df:e0:4e:42:33:d1:83:08:34:
72:b4:89:e3:c7:51:b1:15:25:5c:6b:97:2a:14:16:2d:57:46:
6c:a8:77:b4:81:9f:7b:fc:12:be:46:b4:a0:d8:f0:d3:0c:29:
a1:29:e4:a7:54:5e:91:b1:3a:10:6f:ab:5e:9c:89:0c:ac:61:
b9:a2:12:fa:3a:63:67:15:d2:35:f7:88:48:b6:56:4e:e2:aa:
76:e3:9e:3d:f9:4f:87:8a:eb:9e:d4:39:26:41:47:8b:a9:85:
f8:f4:86:57:76:39:6a:4a:b1:5a:aa:90:a0:cf:ac:e6:33:f0:
12:9a:4a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:13:20 2026 by rpki-client