Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/m99HVBXCx7hDNKgGmBI6AQ01Fgg.roa
File: m99HVBXCx7hDNKgGmBI6AQ01Fgg.roa (raw, json)
Hash identifier: S55EgzkrQdOjIvr5DinFR+Trg6/CKfsvGVi4UAC5lgw=
Subject key identifier: 9B:DF:47:54:15:C2:C7:B8:43:34:A8:06:98:12:3A:01:0D:35:16:08
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019EA5AD82DB926030AE0566329E0E489C66
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/m99HVBXCx7hDNKgGmBI6AQ01Fgg.roa
Signing time: Mon 08 Jun 2026 05:21:12 +0000
ROA not before: Mon 08 Jun 2026 05:21:12 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402268
IP address blocks: 151.245.115.0/24 maxlen: 24
151.245.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a5:ad:82:db:92:60:30:ae:05:66:32:9e:0e:48:9c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 8 05:21:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9bdf475415c2c7b84334a80698123a010d351608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:39:c5:14:72:66:9e:de:c8:d7:07:9d:a8:dc:
52:53:70:eb:8f:82:25:91:6d:f6:5d:78:f4:51:e6:
98:39:b8:88:00:10:21:8b:67:38:b2:1c:4a:8e:30:
80:0b:63:6e:e6:99:67:6f:b5:03:20:da:1f:c0:61:
5d:68:f1:2d:a7:21:1f:13:a3:33:ea:87:f6:6e:2b:
51:0b:37:3d:8a:49:49:09:3f:22:d7:7e:cf:3d:c9:
9d:c4:92:3f:dc:8e:3d:4e:ee:1c:98:e2:e7:7f:04:
05:74:7a:68:a4:4f:72:ba:c5:6c:c4:5c:18:f8:8b:
b6:8c:66:3d:a4:c2:40:de:e5:2f:e2:89:33:f4:8e:
67:00:d5:3c:c0:2e:0f:9d:91:f6:fa:a0:4b:db:77:
22:ac:23:c8:7e:06:b1:52:b7:83:e0:cb:51:cf:c6:
93:b5:9d:47:e9:57:3e:26:89:8a:0f:21:53:8a:0b:
da:53:87:02:1b:e3:4b:3d:94:ff:62:cb:72:94:83:
0e:ad:09:c7:01:f9:8e:1b:1d:fd:8e:bb:28:dc:d2:
c4:7f:04:bf:79:b3:2b:9b:7a:e2:15:c2:77:a3:8c:
44:57:a8:d0:0e:c9:fc:5d:4e:e7:e7:f2:b6:05:5f:
99:5a:f6:61:aa:8f:64:be:e2:1c:83:b2:bd:aa:17:
1e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:DF:47:54:15:C2:C7:B8:43:34:A8:06:98:12:3A:01:0D:35:16:08
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/m99HVBXCx7hDNKgGmBI6AQ01Fgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.245.115.0/24
151.245.179.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:94:fa:87:5b:33:29:d8:2b:c7:83:70:ea:13:31:db:4e:9c:
5d:27:68:e3:1f:f9:26:d7:a9:fe:31:e0:69:17:d2:c8:cb:3d:
de:e5:98:03:67:58:ae:ee:a6:d0:b6:9c:ad:0d:0b:83:d7:a6:
f1:0e:12:16:7f:f8:dc:d8:f0:6e:a9:b1:b3:01:cd:cf:96:df:
c8:24:fc:6c:59:74:42:a9:7e:ad:06:f2:66:17:6c:fb:85:76:
ed:32:78:11:18:64:2a:88:3b:6a:72:81:2d:52:3a:35:c6:b3:
7f:a1:85:d8:be:18:3d:11:77:41:7c:c8:a8:a8:64:5b:2c:78:
cb:62:a2:41:1f:0e:26:ae:81:22:e4:6e:ce:3b:a5:fb:eb:09:
52:b6:bb:40:60:05:6b:ad:7a:ed:5b:15:12:ed:56:bb:bc:77:
3c:76:7d:29:84:c3:c2:16:0c:56:d1:22:e7:8d:f5:51:52:6b:
4d:0a:cf:31:26:9c:7e:2a:96:85:0f:e0:cf:4c:27:f4:cd:a5:
fa:26:23:2f:ad:45:69:ef:3f:8d:b1:df:1d:9f:10:8a:8e:02:
07:30:fd:8d:d3:dd:64:06:e5:96:5b:26:d7:73:50:88:19:b5:
9a:0a:6a:e1:d7:f3:af:a9:98:05:f8:98:7d:40:4d:87:21:be:
2e:02:fb:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:28:43 2026 by rpki-client