Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/GC08QJ8vqcZbchKkqPwP8cf0XKU.roa
File: GC08QJ8vqcZbchKkqPwP8cf0XKU.roa (raw, json)
Hash identifier: rBtLHlVuYDvBMD0iO8jL2FzT2BZgIkepGzjg4WAsTWI=
Subject key identifier: 18:2D:3C:40:9F:2F:A9:C6:5B:72:12:A4:A8:FC:0F:F1:C7:F4:5C:A5
Certificate issuer: /CN=302d11e852615740076b3281b8aff0fac5ca2f33
Certificate serial: 019B7DCAF90674F5982501AB0CEA95187909
Authority key identifier: 30:2D:11:E8:52:61:57:40:07:6B:32:81:B8:AF:F0:FA:C5:CA:2F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/GC08QJ8vqcZbchKkqPwP8cf0XKU.roa
Signing time: Fri 02 Jan 2026 08:20:12 +0000
ROA not before: Fri 02 Jan 2026 08:20:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 39212
IP address blocks: 185.182.26.0/24 maxlen: 24
2a0a:df80:26::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/MC0R6FJhV0AHazKBuK_w-sXKLzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/MC0R6FJhV0AHazKBuK_w-sXKLzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7d:ca:f9:06:74:f5:98:25:01:ab:0c:ea:95:18:79:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=302d11e852615740076b3281b8aff0fac5ca2f33
Validity
Not Before: Jan 2 08:20:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=182d3c409f2fa9c65b7212a4a8fc0ff1c7f45ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:13:65:86:ae:e5:39:13:22:9d:97:83:48:f2:
67:be:02:d2:3b:d8:88:4c:7d:2c:23:20:43:ef:3a:
5e:c4:d2:3f:08:df:31:07:9f:66:ce:9a:3a:8a:63:
8c:b7:d0:49:c2:60:4d:4b:22:68:df:77:99:87:0d:
e4:77:70:ca:0f:5f:d4:f1:58:71:ec:5b:c3:2a:db:
98:88:1b:09:21:c1:de:74:40:08:dd:31:7f:c3:2a:
23:1b:4b:f2:e0:cf:ee:71:e6:84:fe:71:f6:63:08:
5c:00:ee:91:91:f9:9f:e5:14:65:4c:88:4c:07:53:
4d:b9:26:2e:6e:5d:e8:4e:06:9d:24:b2:b1:47:f7:
6c:ea:a0:b8:37:26:cc:8b:0f:0d:aa:72:0e:e6:a2:
eb:28:25:8f:37:79:06:87:f0:40:14:2c:06:40:9f:
b0:32:fd:86:2d:bc:4d:26:c7:6f:92:07:a8:cf:ba:
00:21:3a:fd:93:91:f7:1c:92:87:d5:b3:3a:44:ee:
de:73:76:fd:19:84:10:89:02:b9:2d:58:1e:3c:6d:
fd:cc:bb:de:fa:b8:f5:72:82:fe:ab:b2:df:82:e4:
a2:9c:05:1f:20:14:7c:e4:52:e0:9a:39:1f:47:b9:
de:d0:55:7f:7b:a4:9d:a7:c1:5b:1c:95:4f:d8:c6:
5c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2D:3C:40:9F:2F:A9:C6:5B:72:12:A4:A8:FC:0F:F1:C7:F4:5C:A5
X509v3 Authority Key Identifier:
keyid:30:2D:11:E8:52:61:57:40:07:6B:32:81:B8:AF:F0:FA:C5:CA:2F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/GC08QJ8vqcZbchKkqPwP8cf0XKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/MC0R6FJhV0AHazKBuK_w-sXKLzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.26.0/24
IPv6:
2a0a:df80:26::/48
Signature Algorithm: sha256WithRSAEncryption
4a:59:87:8c:6c:4b:91:28:4f:a5:6c:9d:b2:e4:f7:88:99:c9:
35:32:37:62:7c:49:96:c3:d1:29:ad:e0:29:bc:04:a5:d8:42:
de:bd:72:96:3c:57:28:53:79:49:2a:18:ab:2b:bb:90:67:e8:
68:11:e9:1c:0e:21:57:01:a5:17:9c:67:7e:d7:d4:1c:0f:43:
61:84:2b:38:df:f1:ee:46:a0:1d:48:04:dc:db:87:e4:db:1b:
6f:f1:6d:65:f6:c0:04:34:55:0a:08:ca:4f:ba:3b:ae:1d:ad:
bb:ef:d5:94:c1:93:a4:ee:85:e4:0a:bd:23:3b:06:58:2b:54:
b5:b4:dc:d6:d1:71:25:d6:f7:7b:ab:83:63:0c:c5:91:c2:79:
e4:b0:07:20:4c:4a:96:1b:fe:b5:3f:bb:da:6a:1c:c8:db:60:
91:d1:db:2e:26:04:a3:30:11:85:da:92:d6:c3:bd:aa:5a:de:
9d:ca:01:a2:a9:1c:f1:18:61:5e:42:3b:fd:ea:9d:fc:7e:35:
c3:c1:14:27:8c:26:e2:99:6a:3f:1a:45:2f:33:2d:af:27:cc:
5e:1f:2f:8b:2e:46:b4:d3:3b:55:09:f6:f1:1e:03:20:18:9c:
20:ec:df:94:5c:8e:a7:43:26:67:88:95:a0:37:6e:76:b3:17:
49:9d:1a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:04:12 2026 by rpki-client