Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/hqnYqdzQbVpboiqauYh11uWtv-4.roa
File: hqnYqdzQbVpboiqauYh11uWtv-4.roa (raw, json)
Hash identifier: fycQxMpYXWOq1ROqqEQ4so7htUN3Q95xgyWDllN0H3Y=
Subject key identifier: 86:A9:D8:A9:DC:D0:6D:5A:5B:A2:2A:9A:B9:88:75:D6:E5:AD:BF:EE
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019EA0C1BAD452205B8CFE5A3D04A6927879
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/hqnYqdzQbVpboiqauYh11uWtv-4.roa
Signing time: Sun 07 Jun 2026 06:25:11 +0000
ROA not before: Sun 07 Jun 2026 06:25:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 198810
IP address blocks: 151.246.162.0/24 maxlen: 24
151.246.178.0/24 maxlen: 24
151.246.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a0:c1:ba:d4:52:20:5b:8c:fe:5a:3d:04:a6:92:78:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 7 06:25:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=86a9d8a9dcd06d5a5ba22a9ab98875d6e5adbfee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4d:c3:50:dc:c0:0f:45:ae:e4:39:56:57:60:
67:a8:8f:20:d5:08:eb:9c:4b:6e:83:06:9c:8d:9f:
d1:b4:d4:33:cc:b2:fd:69:ca:b1:96:28:f4:62:9f:
2e:4e:ae:6a:5e:ef:af:0a:ac:55:95:36:63:61:92:
bd:d9:8a:a8:1b:ed:d7:78:8e:cd:a4:9e:c1:cd:a7:
71:53:81:71:49:34:60:cf:c5:51:8a:ab:3d:da:12:
7a:c6:8a:0f:8c:e2:9c:cb:b3:e1:19:56:95:24:e2:
3d:8d:bc:aa:ab:05:51:ff:33:33:6c:b1:c1:7f:ea:
97:3c:ee:ee:0d:18:e8:4a:30:13:f6:8d:3a:7d:c7:
19:8f:df:0b:53:df:fa:f1:3c:2f:03:76:32:c4:b8:
c4:f1:7a:b9:50:43:0c:10:27:9d:c3:51:c1:c2:1a:
f8:09:ba:57:f0:af:db:d5:19:66:d9:2b:d7:8b:ff:
95:48:d7:e9:1b:eb:6c:60:c7:42:ee:a0:18:0a:26:
60:c5:5c:88:2e:b0:b6:43:10:07:82:6a:7c:6b:fe:
f6:4d:19:4c:bc:07:09:bf:19:66:24:49:28:e9:72:
d6:6f:99:0f:59:9e:6c:86:59:42:19:81:c2:54:96:
18:2a:ea:2f:c6:a6:51:14:c7:e3:b2:25:5e:f1:55:
03:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A9:D8:A9:DC:D0:6D:5A:5B:A2:2A:9A:B9:88:75:D6:E5:AD:BF:EE
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/hqnYqdzQbVpboiqauYh11uWtv-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.246.162.0/24
151.246.178.0/24
151.246.251.0/24
Signature Algorithm: sha256WithRSAEncryption
34:3c:4b:f2:ce:05:42:76:4c:aa:38:1c:4e:40:65:98:3b:47:
92:4a:5e:85:3b:42:d1:50:46:93:55:4c:46:ae:e9:59:41:66:
ee:4f:00:30:ea:da:14:3c:09:53:1a:01:52:c3:78:5c:39:e0:
40:70:57:5f:4a:d1:75:dc:b7:1b:33:6f:9f:8e:27:96:84:09:
d6:ff:6f:24:82:ec:80:4a:d9:d1:d8:38:5c:40:a8:7b:09:f6:
f7:26:c0:0b:8e:a9:b7:da:1b:ed:26:47:83:2d:c8:06:74:40:
a5:d9:dd:ae:4b:8b:ee:3d:70:78:8c:13:d3:2d:38:61:0b:e4:
f4:1d:cc:71:b5:27:18:b2:4e:6c:e4:9f:c8:46:93:25:6b:7b:
37:3f:9b:69:ac:74:08:18:44:bf:4f:05:84:ad:2c:06:19:aa:
ab:cf:a4:19:b9:32:00:25:86:06:13:03:95:fd:f2:d9:12:26:
28:78:75:9b:78:f8:cb:97:05:cd:6a:04:af:3c:ab:97:d8:f3:
a9:6b:6d:59:06:5b:cc:40:79:81:9a:be:0e:de:bc:aa:c7:e4:
6e:5b:2a:39:62:d2:a9:4b:0b:9d:05:46:5a:69:11:61:2c:bf:
2a:a6:fc:0c:98:cd:db:d0:9c:d2:1f:36:83:f9:97:2f:76:43:
2d:20:d0:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:13:10 2026 by rpki-client