Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/eGVQPDJRbDrd5_a3UmWMVZHa-8k.roa
File: eGVQPDJRbDrd5_a3UmWMVZHa-8k.roa (raw, json)
Hash identifier: LKHRqLRJV1gZKOuLVGZ3Vuar1sTz1MyENv0xQ5bLMr4=
Subject key identifier: 78:65:50:3C:32:51:6C:3A:DD:E7:F6:B7:52:65:8C:55:91:DA:FB:C9
Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Certificate serial: 019D7265B092B78BA9AB0A4C51D83D0361DA
Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/eGVQPDJRbDrd5_a3UmWMVZHa-8k.roa
Signing time: Thu 09 Apr 2026 13:19:20 +0000
ROA not before: Thu 09 Apr 2026 13:19:20 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 20473
IP address blocks: 2a14:c380:27::/48 maxlen: 48
2a14:c380:28::/47 maxlen: 47
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:72:65:b0:92:b7:8b:a9:ab:0a:4c:51:d8:3d:03:61:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Validity
Not Before: Apr 9 13:19:20 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7865503c32516c3adde7f6b752658c5591dafbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e9:d5:f5:cc:3c:a2:33:19:fd:84:0f:a6:6d:
c1:5a:2a:d3:f7:d9:c7:94:65:d9:fa:23:54:eb:bf:
1a:a2:22:65:6e:e0:cf:27:7f:a0:9a:00:5e:9e:cd:
4e:ca:8d:3e:46:6c:74:57:1b:40:6b:c3:fa:b3:c0:
ae:66:6c:81:6b:f6:11:4b:48:21:f4:d8:3b:75:33:
67:5a:ba:2f:f5:1b:25:82:2d:6e:78:6c:15:8b:e6:
9b:84:ed:01:23:fd:a5:00:b4:a2:73:1b:c3:6e:08:
39:2d:7c:fc:dc:b9:4e:11:d0:33:96:a0:ad:a8:b9:
80:d7:36:f9:1a:fb:9d:c3:96:46:d9:fc:2b:d3:88:
52:dd:19:d4:f6:3f:3e:6e:d2:9c:87:7a:ed:12:c2:
a1:63:b9:f7:28:c0:46:ab:07:22:39:2d:48:3a:93:
15:7f:a8:80:fa:af:cf:1c:07:91:44:ba:44:8f:17:
5e:f6:a9:d0:70:ff:93:d7:da:bd:5d:24:82:eb:a1:
41:1d:22:0f:c5:be:84:9f:2c:cb:f1:cf:c4:27:d8:
7d:45:07:a1:cf:e8:89:4e:c4:fc:a5:ba:98:52:2e:
05:ea:f2:1d:34:ba:57:ff:8c:09:f8:0c:1c:73:92:
5c:25:83:81:62:e5:11:bb:24:96:0e:98:61:07:ce:
7f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:65:50:3C:32:51:6C:3A:DD:E7:F6:B7:52:65:8C:55:91:DA:FB:C9
X509v3 Authority Key Identifier:
keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/eGVQPDJRbDrd5_a3UmWMVZHa-8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c380:27::-2a14:c380:29:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4e:79:bb:aa:a5:7b:9d:a8:20:18:6e:29:be:da:96:41:bf:85:
5d:e6:83:4f:a7:f0:9c:78:a0:d4:2e:8a:db:b3:b8:6f:a5:dd:
7e:92:2f:19:ff:78:8e:39:bb:0c:b4:d2:75:e0:ec:6b:cf:6a:
fe:b3:7a:05:9e:eb:dd:71:5e:75:69:25:bd:93:71:ba:2b:28:
ba:d2:46:6b:4a:43:df:11:71:46:a2:27:18:3a:1e:d8:8a:31:
d1:71:e4:16:ee:a8:0e:85:10:a2:25:86:f9:ff:02:d6:16:9f:
d1:59:ae:f2:18:03:35:12:6b:67:0e:7b:80:5d:53:88:f6:20:
e2:c8:a1:90:e7:e5:62:55:e6:cd:d5:e2:05:ed:6c:21:a0:83:
fd:da:8b:f9:80:e1:34:d0:15:70:f7:28:88:a0:04:02:27:b1:
2b:b9:f1:51:3a:40:c7:b4:f5:6e:50:0b:26:b9:12:32:ac:23:
69:9c:15:36:7e:35:57:43:3a:7b:56:1a:5d:bb:58:79:49:38:
a1:8c:9c:72:ed:f0:86:28:7c:da:4f:b3:6f:9a:c9:ce:d4:81:
96:9c:05:0b:7b:d5:31:69:fb:2d:79:c4:ac:6f:5f:46:15:91:
1e:5d:62:27:5b:e5:7e:fa:64:5a:bb:ce:ac:9c:82:48:91:38:
e1:f2:fe:59
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 17 05:48:47 2026 by rpki-client