Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/1tasxepts6o8GObupt82ZNbjOoc.roa
File: 1tasxepts6o8GObupt82ZNbjOoc.roa (raw, json)
Hash identifier: FEheLlqm3clUKJisTWDCCtriHlOUJ8EaBa4aqH6IA8A=
Subject key identifier: D6:D6:AC:C5:EA:6D:B3:AA:3C:18:E6:EE:A6:DF:36:64:D6:E3:3A:87
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 019D95ED76C6E88B8529762C34CDEBE04AF8
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/1tasxepts6o8GObupt82ZNbjOoc.roa
Signing time: Thu 16 Apr 2026 10:54:20 +0000
ROA not before: Thu 16 Apr 2026 10:54:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62468
IP address blocks: 103.250.172.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:95:ed:76:c6:e8:8b:85:29:76:2c:34:cd:eb:e0:4a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: Apr 16 10:54:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d6d6acc5ea6db3aa3c18e6eea6df3664d6e33a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4d:fc:65:ee:86:f7:5f:7e:1a:56:26:0b:2f:
cc:e0:e3:75:fb:a7:4d:e8:f4:e3:d3:1f:27:60:34:
f1:09:8c:74:a5:aa:0b:5f:bf:f3:9f:5c:30:06:dc:
7e:53:5d:79:92:9c:73:67:f2:a7:d0:2c:1f:a2:05:
0a:70:af:06:45:12:e3:54:9d:3f:71:c3:a4:bd:5b:
cd:0e:73:e0:c8:99:f8:e8:57:f4:6c:e3:fa:7e:76:
e3:eb:43:be:39:da:0f:a3:22:fb:41:af:aa:fd:70:
f1:a3:3a:5a:74:11:5e:18:3c:82:8c:ea:c2:72:71:
3a:4b:41:f1:76:07:39:ed:99:52:3b:2e:f7:10:5f:
c2:34:cb:7d:7e:9c:70:6e:fb:4d:6f:c0:9f:4d:b3:
c0:df:fb:91:7f:0b:af:62:62:11:c0:be:07:ee:ba:
bb:88:f9:c3:9c:b2:ad:a7:b2:5d:4e:80:58:22:e8:
84:92:bd:50:41:ca:7c:07:34:97:5e:61:a0:e3:02:
c5:c3:26:0d:76:36:ad:eb:ee:db:3f:59:ab:b1:f7:
15:ff:8f:cc:49:59:ca:ce:3b:74:52:fb:e9:fd:8d:
f4:52:94:78:47:51:75:8c:1b:ca:c6:96:97:08:aa:
06:07:17:20:d7:86:7d:4c:bb:c2:28:54:55:38:0a:
0a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D6:AC:C5:EA:6D:B3:AA:3C:18:E6:EE:A6:DF:36:64:D6:E3:3A:87
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/1tasxepts6o8GObupt82ZNbjOoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.250.172.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:41:6e:3c:e0:c7:86:1e:c9:82:64:35:e4:82:9e:c4:36:f8:
2a:aa:fb:7c:1c:04:a2:a1:f5:cc:39:2d:cb:ea:88:96:78:df:
25:5a:84:af:2d:87:2c:2c:b1:27:c3:6f:6e:87:c2:ff:ab:82:
91:8f:1a:05:fc:ef:e7:e7:7d:f6:e1:86:cf:a2:04:dd:90:b5:
62:25:ac:ac:0a:85:72:78:34:bc:65:47:fa:4f:9f:74:91:f0:
24:af:31:11:5a:29:87:8e:14:06:8e:fd:24:4a:d6:bf:e7:35:
a4:37:1c:49:5c:94:f8:6e:b4:5e:52:ff:b7:b4:10:d0:eb:94:
ab:3a:8e:3e:6f:61:88:ab:8f:e7:7f:a3:06:d0:20:26:53:31:
8c:4f:df:e2:01:fc:62:4c:8d:0e:31:71:5a:88:df:f5:9f:8d:
99:ce:fb:c5:eb:98:74:c6:bc:67:2f:2c:f4:c7:cd:58:e0:34:
3f:f8:df:1e:f4:65:a8:c0:12:cd:b4:dc:ce:2d:3c:27:36:ef:
ff:e4:64:62:e9:0e:c0:35:04:81:49:48:26:fb:d7:89:42:0a:
46:8b:5b:9f:3b:04:ce:13:06:c1:a6:ba:bc:51:a3:0f:34:dc:
ea:e7:57:ae:d3:04:f3:4c:90:59:e5:bd:23:64:47:88:aa:56:
50:0a:2d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 13:58:44 2026 by rpki-client