Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/398bbb-184f-4851-b2a0-91f49d8d115d/1/MyDBxuxHjE1UjZ06-D4Xls72e2k.roa
File: MyDBxuxHjE1UjZ06-D4Xls72e2k.roa (raw, json)
Hash identifier: ujdPm62GD2JKSu06a5kdzzKz/zzSLFEp1QNe1saBzo4=
Subject key identifier: 33:20:C1:C6:EC:47:8C:4D:54:8D:9D:3A:F8:3E:17:96:CE:F6:7B:69
Certificate issuer: /CN=4cf80802c6579a4d4a10608dcf92e9ace9905b16
Certificate serial: 019E96C4A47914297C7D1D047A95101F1F09
Authority key identifier: 4C:F8:08:02:C6:57:9A:4D:4A:10:60:8D:CF:92:E9:AC:E9:90:5B:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPgIAsZXmk1KEGCNz5LprOmQWxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/398bbb-184f-4851-b2a0-91f49d8d115d/1/MyDBxuxHjE1UjZ06-D4Xls72e2k.roa
Signing time: Fri 05 Jun 2026 07:52:09 +0000
ROA not before: Fri 05 Jun 2026 07:52:09 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 203038
IP address blocks: 2a0d:bbc0:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/398bbb-184f-4851-b2a0-91f49d8d115d/1/TPgIAsZXmk1KEGCNz5LprOmQWxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/398bbb-184f-4851-b2a0-91f49d8d115d/1/TPgIAsZXmk1KEGCNz5LprOmQWxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TPgIAsZXmk1KEGCNz5LprOmQWxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 19:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:96:c4:a4:79:14:29:7c:7d:1d:04:7a:95:10:1f:1f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf80802c6579a4d4a10608dcf92e9ace9905b16
Validity
Not Before: Jun 5 07:52:09 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3320c1c6ec478c4d548d9d3af83e1796cef67b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:63:6f:48:87:ec:78:7f:8f:f3:10:5b:f9:bb:
34:b2:53:3d:80:63:86:3b:cb:b2:17:c2:85:d1:71:
f8:d6:28:d7:1f:d4:9e:d7:4e:bc:ba:83:00:a1:68:
55:e2:8f:00:35:de:92:96:91:a7:57:c9:d2:44:0b:
18:60:a6:d0:32:5e:bb:ec:f4:39:8f:7b:fb:9a:ff:
5e:95:18:40:ba:0d:e5:eb:5f:82:b3:f9:54:be:52:
4b:d9:74:4b:a7:0f:50:53:97:ef:7a:03:05:78:8c:
fb:d7:05:c6:e4:ff:cc:20:99:0f:7e:88:74:d5:5a:
76:f9:aa:ee:e3:ec:53:77:e9:ac:1d:46:e2:6e:67:
cb:03:bc:27:25:0c:84:c8:aa:65:d8:76:59:9c:ba:
7d:38:ca:9e:d6:1e:e2:84:1d:85:e6:88:29:a2:16:
c9:05:47:69:45:76:be:8c:87:65:9a:63:33:0e:ab:
53:7c:d4:75:c6:cb:02:97:27:d9:3c:1f:99:5b:dc:
fa:27:47:fe:2f:3d:49:95:19:f0:f7:67:83:0c:a9:
7c:e8:3a:d6:ab:cb:92:10:f2:5e:8f:e3:75:b2:d6:
34:1b:fe:4a:fc:68:9e:2b:96:e9:5f:d0:4a:2b:7b:
e1:99:50:95:31:67:a9:81:0c:95:f5:e2:d1:03:de:
c2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:20:C1:C6:EC:47:8C:4D:54:8D:9D:3A:F8:3E:17:96:CE:F6:7B:69
X509v3 Authority Key Identifier:
keyid:4C:F8:08:02:C6:57:9A:4D:4A:10:60:8D:CF:92:E9:AC:E9:90:5B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPgIAsZXmk1KEGCNz5LprOmQWxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/398bbb-184f-4851-b2a0-91f49d8d115d/1/MyDBxuxHjE1UjZ06-D4Xls72e2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/398bbb-184f-4851-b2a0-91f49d8d115d/1/TPgIAsZXmk1KEGCNz5LprOmQWxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:bbc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
1e:ce:22:6f:a1:dc:44:c9:dd:92:72:c5:27:26:7a:44:d0:1f:
7e:ed:77:fb:1f:7e:3e:9c:46:a0:33:fc:d8:eb:aa:7f:a4:b7:
eb:f4:e6:5a:4d:e4:c4:ef:96:66:8a:94:8b:ed:47:21:9d:3b:
00:9f:de:7f:4e:48:0a:62:78:fb:b0:aa:6b:08:77:6b:8f:8f:
46:31:33:3e:fa:9e:63:93:95:3b:33:9e:75:02:79:79:90:78:
33:b4:dd:3c:3e:f5:13:89:bf:16:b7:b8:b8:3e:60:37:b5:80:
15:5b:60:45:31:7c:04:81:53:8e:7b:c0:bf:6e:92:c1:9e:6a:
96:0e:96:ad:a5:56:40:4a:37:49:b0:3d:9d:52:75:f5:fb:df:
77:26:e8:76:35:eb:df:58:da:2f:18:00:23:79:0f:26:4a:29:
2b:e1:78:10:1b:46:ce:5c:23:f0:a4:54:c2:c1:11:3d:53:f0:
73:aa:6a:b6:0c:3e:26:23:0c:89:b2:15:95:c2:ec:04:81:da:
d9:71:d4:95:ef:d6:5e:17:61:52:ef:11:08:d0:e8:fd:cd:e3:
5d:9b:a4:c8:95:3e:78:6f:0f:34:f2:bd:30:a7:26:ec:41:b3:
84:c0:77:d6:92:44:d2:7f:02:4b:87:99:53:e2:b0:50:8b:9b:
c0:e5:ee:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 06:40:03 2026 by rpki-client