Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/y5pCRiU3FgNh3zC7y8d4w0jwCkU.roa
File: y5pCRiU3FgNh3zC7y8d4w0jwCkU.roa (raw, json)
Hash identifier: BdsfyzjVkAvbUeHeuXepVm7ahm9Ny4kCIdAPZTnKA/0=
Subject key identifier: CB:9A:42:46:25:37:16:03:61:DF:30:BB:CB:C7:78:C3:48:F0:0A:45
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 019D84EC20852B3CC1DCE90237B6781ABBFC
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/y5pCRiU3FgNh3zC7y8d4w0jwCkU.roa
Signing time: Mon 13 Apr 2026 03:39:20 +0000
ROA not before: Mon 13 Apr 2026 03:39:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402215
IP address blocks: 212.135.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:84:ec:20:85:2b:3c:c1:dc:e9:02:37:b6:78:1a:bb:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: Apr 13 03:39:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=cb9a42462537160361df30bbcbc778c348f00a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:10:aa:99:ea:b2:48:6c:c7:73:72:ae:c7:7d:
13:21:51:97:cf:7c:6f:7b:07:36:3e:67:41:40:82:
62:dc:87:9e:a7:69:8f:b5:a5:dc:e1:18:08:6a:48:
be:a1:84:06:d5:6b:1c:b3:56:36:46:bd:68:e9:cf:
0e:b2:5e:b2:27:0b:1d:a1:dd:ba:22:32:89:da:ee:
99:5a:86:85:0c:55:46:e4:d4:ab:ec:e4:78:76:45:
51:35:bb:bb:37:ee:a1:a8:53:3b:e2:a0:01:75:d6:
1b:ac:29:71:e0:ea:99:2f:d0:48:91:cd:37:5b:8e:
97:3c:b3:15:b3:0f:45:b4:9d:2f:15:eb:aa:c1:1d:
73:07:23:88:b8:45:87:f0:97:2f:2b:cb:fc:ee:c7:
5e:7d:e1:5a:73:e9:42:7c:6d:9a:a4:1d:a1:f4:12:
ec:d4:10:72:13:97:e1:be:52:6c:be:43:94:82:27:
b7:7a:20:3d:4c:e8:c0:bc:41:0a:af:72:72:90:11:
2d:33:76:c7:9b:87:44:4d:34:54:b0:e2:5e:b0:b1:
e8:a1:1d:41:c9:7d:73:c2:30:33:ab:c8:dd:60:04:
3c:41:15:90:6a:9a:e2:71:a7:79:ea:46:a8:27:94:
7e:53:5e:7a:47:b3:0a:75:93:df:57:1b:a7:8e:7f:
48:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9A:42:46:25:37:16:03:61:DF:30:BB:CB:C7:78:C3:48:F0:0A:45
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/y5pCRiU3FgNh3zC7y8d4w0jwCkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.135.169.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:c7:f9:77:e9:a1:33:75:e2:2c:18:02:59:04:fc:b8:6d:f9:
ed:4b:10:bf:e1:ac:a5:30:6d:3e:c0:18:bc:3c:63:94:e1:82:
a6:a6:48:df:14:e6:f2:92:36:36:fe:ec:db:cb:2d:83:98:4e:
7b:bc:2a:c4:0d:31:ca:5b:62:4f:5e:07:97:0b:7b:0d:22:74:
ef:f4:b1:98:ec:ce:e0:91:77:a0:3b:0d:d0:13:39:6e:d6:6e:
64:4c:b9:aa:55:98:35:84:d8:a4:57:d8:d5:53:81:07:10:a0:
0a:15:58:70:7d:93:91:54:39:0a:05:22:c3:54:5d:54:2b:3e:
52:0b:12:47:7f:cd:1c:92:69:3f:d0:93:0c:57:09:8e:aa:5b:
4c:00:42:58:35:75:6e:58:4d:a9:e3:ee:e4:b3:1b:b9:08:8b:
76:13:de:e0:2e:07:f6:1b:b2:83:72:8f:34:30:ec:ab:a9:8f:
e8:57:01:24:57:1f:a3:6f:5a:af:ce:8a:03:cf:69:e1:ec:d3:
3c:8d:af:2f:5f:c6:95:03:8c:3a:02:f5:f1:1d:8b:24:b5:93:
95:ce:28:db:89:b3:a0:25:41:c3:cc:3c:df:fd:75:30:fb:2f:
1a:64:fe:fc:9b:ff:cf:77:37:82:cf:79:7c:cc:f3:cf:c8:b9:
b9:b4:cb:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:28:52 2026 by rpki-client