Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/dmpJN58k6GzVSXopvoND74KjtmU.roa
File: dmpJN58k6GzVSXopvoND74KjtmU.roa (raw, json)
Hash identifier: NWc39toXJPU4gWinXPNN2gWSy8sSCmCzWi4M9rrD59c=
Subject key identifier: 76:6A:49:37:9F:24:E8:6C:D5:49:7A:29:BE:83:43:EF:82:A3:B6:65
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019EBC8D9A4E900B96A6AEE54752E04567A1
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/dmpJN58k6GzVSXopvoND74KjtmU.roa
Signing time: Fri 12 Jun 2026 15:57:36 +0000
ROA not before: Fri 12 Jun 2026 15:57:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 154132
IP address blocks: 78.154.122.0/24 maxlen: 24
80.68.210.0/24 maxlen: 24
82.108.156.0/24 maxlen: 24
87.82.206.0/24 maxlen: 24
87.84.224.0/24 maxlen: 24
87.85.252.0/24 maxlen: 24
195.40.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 20:11:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bc:8d:9a:4e:90:0b:96:a6:ae:e5:47:52:e0:45:67:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Jun 12 15:57:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=766a49379f24e86cd5497a29be8343ef82a3b665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9c:e5:47:84:88:56:35:2e:54:0c:6b:a4:76:
82:5a:46:e4:df:c4:48:c0:43:28:e8:35:f7:00:a7:
5f:d1:a5:a9:a1:68:99:ef:1b:e3:5e:85:86:fc:f0:
a5:85:65:6b:84:30:2c:d5:99:c8:f1:ca:8a:a5:b5:
f8:5b:b0:60:bb:70:90:66:be:5f:b1:a8:14:95:f1:
25:10:b8:53:9b:16:15:6f:12:06:52:b6:07:89:cf:
a7:9a:9f:c0:a0:92:d0:12:e3:d5:3a:ec:b6:8f:a2:
99:1e:e8:b0:58:13:10:43:5b:8c:a7:13:e7:9a:7d:
ed:df:8f:63:d1:99:84:e0:61:7c:29:fb:82:04:5b:
69:ec:bd:0e:ba:0c:34:2f:13:fe:08:9c:b9:a9:14:
33:81:30:b0:82:13:3b:b2:40:71:0d:d7:ba:7d:b6:
5f:fd:cb:91:88:f9:af:ac:88:24:a9:41:55:21:97:
7c:57:36:7c:0f:1c:93:e2:06:1d:9a:fd:12:ac:4f:
2e:85:61:5c:d4:c0:44:9c:dd:fa:09:97:32:bc:e6:
88:40:d1:0b:1c:44:6d:3b:68:fc:79:dc:d3:e9:6e:
20:a7:33:d5:0a:a5:33:bc:62:28:98:aa:27:b6:3d:
92:59:c9:7d:0d:5c:f6:e4:b0:e4:8f:dd:9f:d6:96:
36:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6A:49:37:9F:24:E8:6C:D5:49:7A:29:BE:83:43:EF:82:A3:B6:65
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/dmpJN58k6GzVSXopvoND74KjtmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.154.122.0/24
80.68.210.0/24
82.108.156.0/24
87.82.206.0/24
87.84.224.0/24
87.85.252.0/24
195.40.156.0/24
Signature Algorithm: sha256WithRSAEncryption
38:d2:e1:0e:e2:e6:9a:ee:c6:86:41:77:79:93:ef:70:05:6b:
86:b6:88:a9:a5:40:21:23:09:75:2d:be:1e:44:8a:43:09:df:
e9:50:19:51:34:22:78:8f:5b:22:05:e5:ad:56:73:98:c3:aa:
29:e9:c2:b5:cf:40:c2:35:27:12:2f:75:0b:9a:55:2f:5f:c0:
9e:1d:33:dd:b4:03:eb:db:0f:9c:ec:79:ef:d6:b1:12:ef:a4:
ee:a8:63:5d:8f:53:bf:5b:e5:c9:fe:6b:95:2c:3a:59:fb:fb:
0e:d5:87:db:af:d9:c8:98:1d:06:6c:aa:d4:94:a3:a9:fa:50:
4a:06:d2:fa:50:50:d2:55:dd:ca:5f:fc:6a:aa:17:cf:ab:22:
97:f6:e2:a6:01:a8:86:29:b6:53:ea:d9:00:f2:54:84:2f:3a:
e8:0f:aa:1f:32:8b:1c:d7:5b:97:ea:c0:9f:e8:54:d1:e3:12:
e8:98:4c:68:94:8a:d2:5e:06:1f:8e:e7:76:2e:30:6e:de:d1:
0d:57:c3:f6:fa:bd:4f:c3:70:ee:d5:2d:ce:ca:c2:b3:eb:bd:
04:5f:99:41:34:7b:87:35:9d:30:f2:a6:9e:f7:03:11:35:e3:
a8:ca:cd:7b:48:f1:ea:d2:0c:dd:89:81:de:d8:a4:d9:37:31:
bc:45:07:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:00 2026 by rpki-client